Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0f9f02-c2ad-4ec8-b4d5-dfbfa3fcf021/1/ANH7vk83QwwkE2wY9ZwOH5GEVMk.roa
File: ANH7vk83QwwkE2wY9ZwOH5GEVMk.roa (raw, json)
Hash identifier: PCCJ75N2VKJ/TkX9lmdl1/1WkJ5nmBb8nuPgJvlLhVQ=
Subject key identifier: 00:D1:FB:BE:4F:37:43:0C:24:13:6C:18:F5:9C:0E:1F:91:84:54:C9
Certificate issuer: /CN=e4be8efec1fb03d8af979af1cba13a0845a7b0ba
Certificate serial: 0184E77C6679FE9453A1EF607821631AA8CA
Authority key identifier: E4:BE:8E:FE:C1:FB:03:D8:AF:97:9A:F1:CB:A1:3A:08:45:A7:B0:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5L6O_sH7A9ivl5rxy6E6CEWnsLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0f9f02-c2ad-4ec8-b4d5-dfbfa3fcf021/1/ANH7vk83QwwkE2wY9ZwOH5GEVMk.roa
Signing time: Tue 06 Dec 2022 12:50:00 +0000
ROA not before: Tue 06 Dec 2022 12:50:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203937
IP address blocks: 185.253.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e7:7c:66:79:fe:94:53:a1:ef:60:78:21:63:1a:a8:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4be8efec1fb03d8af979af1cba13a0845a7b0ba
Validity
Not Before: Dec 6 12:50:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00d1fbbe4f37430c24136c18f59c0e1f918454c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d2:b6:75:43:52:df:84:9a:5f:58:34:12:3f:
af:b7:4f:90:b9:73:80:ea:72:6f:af:a7:be:da:c9:
c0:f9:33:68:8b:2a:93:54:4d:94:15:f5:01:f1:5d:
88:58:04:9b:5f:4d:17:fd:ad:ca:8a:12:e7:15:0a:
a7:c8:fb:22:aa:bb:35:46:29:ac:ee:a7:6c:00:63:
48:48:80:c8:11:1c:6d:e6:11:ac:d6:b6:28:bf:e7:
82:7c:00:88:c2:31:ea:54:eb:1d:19:9b:bb:2e:bd:
ff:6e:ba:e6:f2:0d:5b:48:25:eb:3a:cd:a5:3b:d3:
76:e1:44:fa:06:a5:44:99:4f:b4:f4:7e:ff:be:fe:
72:f0:ed:e9:ac:dc:73:f8:96:e1:47:8a:88:1c:16:
29:c6:9f:e0:91:a7:42:fb:33:c6:ce:0b:11:44:9c:
26:e8:49:b5:ab:01:62:a5:2e:66:23:00:f0:61:2e:
39:4b:d8:2a:90:d0:fc:4d:75:ae:92:26:5e:7b:e6:
47:4e:e3:ee:9e:1d:91:1f:d7:8f:ff:a1:20:59:42:
65:0b:5b:d8:06:5e:5d:bc:48:9b:92:70:eb:55:e2:
21:41:35:9e:5c:b0:de:06:6a:8a:76:37:b1:f6:cf:
59:8c:52:66:64:8b:92:19:fe:23:cb:45:8f:91:6c:
fa:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D1:FB:BE:4F:37:43:0C:24:13:6C:18:F5:9C:0E:1F:91:84:54:C9
X509v3 Authority Key Identifier:
keyid:E4:BE:8E:FE:C1:FB:03:D8:AF:97:9A:F1:CB:A1:3A:08:45:A7:B0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5L6O_sH7A9ivl5rxy6E6CEWnsLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0f9f02-c2ad-4ec8-b4d5-dfbfa3fcf021/1/ANH7vk83QwwkE2wY9ZwOH5GEVMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0f9f02-c2ad-4ec8-b4d5-dfbfa3fcf021/1/5L6O_sH7A9ivl5rxy6E6CEWnsLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.235.0/24
Signature Algorithm: sha256WithRSAEncryption
63:8a:a9:a3:92:da:a7:b6:4f:c1:83:80:c9:4c:b2:60:fe:e2:
2a:96:15:be:95:81:7b:c5:00:dc:9a:1c:a9:ee:a4:15:7a:32:
8f:63:0c:b9:9e:a2:8a:f0:ff:36:52:d8:2e:26:bb:39:fb:16:
6e:54:9c:8d:de:e3:b6:f5:cd:02:80:0f:91:a5:20:64:a4:0b:
68:9c:9d:4e:74:ab:e5:fd:a2:21:f9:72:01:22:38:dd:09:e0:
b4:33:5a:4b:35:36:61:05:da:9b:70:fe:94:ba:cb:ae:e4:dd:
ef:fc:d4:a9:75:cd:c7:6e:4c:1e:e7:9e:01:8d:0d:6f:b2:56:
5d:bc:e5:2d:ef:dd:18:ad:ce:d9:a0:f2:16:74:ce:aa:cd:69:
cc:d5:7d:d2:df:4a:82:e9:16:86:2a:36:d6:21:20:e8:a1:8d:
59:87:78:be:d0:71:3a:7b:d0:74:06:74:1f:5d:74:2b:3a:a5:
a7:96:c8:55:b6:25:54:a2:ba:53:ec:2f:07:1d:80:58:6c:e4:
59:d2:93:0e:a0:4b:85:1e:63:0a:ee:94:3f:1e:01:06:9d:f4:
25:12:6f:c3:a2:13:ee:5e:71:48:b0:51:87:ec:7e:ad:48:97:
8c:d3:42:49:4f:b1:93:1a:08:e2:06:7a:ee:81:b7:f1:45:85:
22:ff:a4:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:03 2023 by rpki-client on console-ams.rpki-client.org