Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/e_FXITwnczz4l3BNv_SXL8OYP04.roa
File: e_FXITwnczz4l3BNv_SXL8OYP04.roa (raw, json)
Hash identifier: jOSEcgMZNy+3sUV1YGDpu+Oc7np+/cjDAbAFrh+ed50=
Subject key identifier: 7B:F1:57:21:3C:27:73:3C:F8:97:70:4D:BF:F4:97:2F:C3:98:3F:4E
Certificate issuer: /CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Certificate serial: 029FC31B
Authority key identifier: 85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/e_FXITwnczz4l3BNv_SXL8OYP04.roa
Signing time: Mon 04 Jul 2022 11:59:16 +0000
ROA not before: Mon 04 Jul 2022 11:59:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.212.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44024603 (0x29fc31b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Validity
Not Before: Jul 4 11:59:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bf157213c27733cf897704dbff4972fc3983f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:30:f9:a5:40:0b:8a:f9:7e:b5:12:0f:9b:17:
05:41:9e:0d:cf:7a:9a:df:7a:07:5a:6c:f8:6a:fc:
97:e9:20:05:99:50:cf:bf:e4:76:2f:df:a8:98:ce:
27:fd:5c:c4:42:20:b1:2f:7a:4c:b2:50:16:e3:14:
1e:35:07:61:7c:82:3d:32:dc:26:f7:0a:a2:c9:6d:
8e:54:d7:14:63:61:d1:43:6f:6f:5e:18:00:52:d7:
53:0a:22:0b:bb:59:42:39:ee:a1:2a:d0:55:d4:3f:
ad:17:9c:65:ad:af:42:30:a4:7a:1d:be:85:d3:d5:
e0:03:8c:f4:40:ed:83:2b:b9:9d:9d:d0:fc:69:b7:
21:32:98:08:88:46:7d:d8:66:65:da:19:af:28:f8:
a1:b8:7f:82:81:2a:01:d1:68:91:6f:16:13:21:9c:
02:b8:33:32:db:b1:e2:42:9d:dd:e1:e3:b4:1b:cc:
c6:5a:25:21:95:5e:c9:90:b5:94:a0:c3:97:40:95:
80:06:19:ac:5b:60:14:41:67:a0:6c:30:9c:99:ce:
74:09:a9:18:c3:59:fd:04:4a:f1:d8:1a:44:e8:d6:
33:32:4a:ef:64:60:b0:27:aa:9d:ba:bc:63:7d:c8:
d0:df:86:2b:78:c3:5a:12:87:7b:5d:89:f2:b8:8e:
ae:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F1:57:21:3C:27:73:3C:F8:97:70:4D:BF:F4:97:2F:C3:98:3F:4E
X509v3 Authority Key Identifier:
keyid:85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/e_FXITwnczz4l3BNv_SXL8OYP04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/hcP2qehVDAkLw7JX9yuPZbaan2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.119.0/24
Signature Algorithm: sha256WithRSAEncryption
68:e7:5c:ad:c1:cd:f6:84:99:21:ec:05:16:70:3b:b8:de:c0:
c5:e9:7f:e5:b3:fc:1e:ad:76:3e:20:b5:1f:ea:2f:a1:cf:f8:
39:a4:fa:d8:f0:b5:53:7b:dc:1b:1c:45:fd:74:70:34:2a:53:
a1:0f:a5:f1:15:c0:44:56:2f:e4:1e:36:53:fd:82:b7:8c:fb:
63:4b:25:05:9c:71:79:5a:0b:0c:b1:36:8b:e7:09:fb:14:3f:
c0:bf:23:11:dd:cb:e6:dc:c8:ff:1c:5f:c3:a1:43:60:36:a8:
bf:a0:03:72:7c:db:57:e8:5d:9c:7a:ba:2e:ba:40:b0:20:3b:
a4:cc:fa:39:96:05:75:c2:29:cf:53:2a:d6:e4:ad:1a:59:e8:
71:24:89:b6:d1:7a:23:0d:2b:e2:d9:63:a6:b8:a6:ea:84:34:
8f:5b:98:4a:88:01:63:d6:63:be:42:f8:10:ed:7d:9f:38:2f:
bf:20:d2:de:dd:d9:07:d7:fc:9a:f1:79:43:20:b3:1f:85:4d:
ba:5c:55:83:6d:66:20:ed:da:c5:37:b4:e4:ab:6a:3b:e0:89:
4a:b3:4b:95:50:8a:c6:e1:67:ef:85:40:d9:c5:01:4f:28:90:
69:fb:ea:9a:b6:45:9a:5e:46:83:5d:2e:7a:05:cc:57:b1:44:
57:fa:19:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:42 2023 by rpki-client on console-ams.rpki-client.org