Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/sXXTEzpftIPSvFGdLXA7IhbISYk.roa
File: sXXTEzpftIPSvFGdLXA7IhbISYk.roa (raw, json)
Hash identifier: vxL7PtyS2r5d4Pv7v/NrGOfRC+uOM65Jggasqhzx/HY=
Subject key identifier: B1:75:D3:13:3A:5F:B4:83:D2:BC:51:9D:2D:70:3B:22:16:C8:49:89
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 0183D115E5ABABE72B496C554533FEB9425A
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/sXXTEzpftIPSvFGdLXA7IhbISYk.roa
Signing time: Thu 13 Oct 2022 11:23:36 +0000
ROA not before: Thu 13 Oct 2022 11:23:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 185.228.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:15:e5:ab:ab:e7:2b:49:6c:55:45:33:fe:b9:42:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: Oct 13 11:23:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b175d3133a5fb483d2bc519d2d703b2216c84989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2b:c8:b9:8e:33:12:52:b7:9a:a7:bc:2e:31:
1a:34:2e:f5:b8:ac:e7:fd:cf:c5:50:9a:dc:fd:3b:
a6:34:64:5a:b2:ce:63:f7:78:58:e7:5a:45:e7:09:
a9:86:ca:de:8e:1d:b1:41:91:26:ed:57:8a:18:d2:
83:95:32:eb:3d:6e:9f:da:4c:1a:28:2b:3b:aa:b3:
73:b2:47:be:b5:2a:a9:10:a2:af:4c:fd:9c:ef:7d:
be:39:d2:c4:ac:24:79:5c:ef:cb:10:96:17:56:96:
2e:c4:0c:6c:88:c7:96:73:ec:73:8c:57:9d:6d:b8:
88:b4:fb:f2:99:39:e0:bf:9d:13:2b:22:a4:91:82:
ef:2d:5b:e6:86:f8:ca:77:45:d1:0a:db:da:18:ff:
88:cd:92:e9:01:48:84:bd:e0:fa:bf:b0:fd:d5:9e:
33:26:ff:c1:69:a5:77:4e:7b:fc:6d:0e:9c:c6:14:
80:9b:15:c3:62:f9:89:ea:3f:66:fe:6f:1a:7b:30:
98:f5:c1:b9:d4:8a:96:0c:11:74:9a:d0:38:f9:00:
43:1d:38:4f:77:9f:7c:68:63:a0:e8:5b:8e:6f:6e:
1a:4f:86:1d:bb:b3:4d:3d:7d:ee:fc:60:42:96:57:
39:68:bf:f4:24:62:bb:2b:dc:46:d0:19:2b:91:4c:
5b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:75:D3:13:3A:5F:B4:83:D2:BC:51:9D:2D:70:3B:22:16:C8:49:89
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/sXXTEzpftIPSvFGdLXA7IhbISYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.1.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:3b:41:3d:99:59:1b:b1:49:a1:f5:35:d8:a6:16:74:c5:4f:
de:32:a9:03:45:83:60:50:57:02:56:42:bf:e5:aa:fe:cc:a8:
c2:a2:a3:97:ae:d5:37:a5:f5:fa:1a:87:2a:c0:d4:2a:6c:7a:
12:91:51:00:6c:12:37:35:29:c6:7b:f1:d2:af:23:29:af:c0:
ca:d9:63:0b:e5:ae:c9:be:16:d8:1b:a5:bb:2c:6d:e8:25:8e:
7e:0e:4b:df:6c:c4:2d:84:1e:e1:8a:bf:c1:a1:bb:d2:86:1a:
e8:2e:8d:fa:fe:9f:c0:9b:a8:a3:22:de:09:12:e7:5d:f3:0d:
95:e9:d0:d2:fb:16:19:b5:11:0a:58:b4:ea:5c:c2:6f:7d:b2:
40:fd:b0:3f:86:92:4e:de:49:28:8e:0a:c2:01:ec:5e:20:cb:
77:4e:7b:f2:f9:a2:6d:83:09:f1:3b:4c:00:7c:a2:b4:45:ee:
6d:a1:9a:69:48:1f:c6:9f:77:86:36:4a:c6:c1:a5:a8:71:7d:
01:31:f5:ef:cd:80:2b:0b:83:7d:1d:a7:e0:fc:30:bc:94:75:
e9:ed:7a:d3:50:b8:51:79:02:f9:64:53:5d:b4:87:06:1b:0c:
da:cb:7d:fd:ab:e8:c2:a3:59:e8:e7:8e:56:4a:28:b4:d0:f6:
12:7b:2d:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:14 2024 by rpki-client on console-fra.rpki-client.org