Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/0dfb97-cc3b-4e7d-88dc-78f0b2a1fe90/1/2T-xntEbXGVhubIGs0tBSUeYYDo.roa
File: 2T-xntEbXGVhubIGs0tBSUeYYDo.roa (raw, json)
Hash identifier: Ryryo/Och5/Ft5UFbAp7YAJ7/eDE9uQEwDN+W5jUo9o=
Subject key identifier: D9:3F:B1:9E:D1:1B:5C:65:61:B9:B2:06:B3:4B:41:49:47:98:60:3A
Certificate issuer: /CN=12e452c77c5de1090a1610bac2a63e83aa72b0d3
Certificate serial: 01B82797
Authority key identifier: 12:E4:52:C7:7C:5D:E1:09:0A:16:10:BA:C2:A6:3E:83:AA:72:B0:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EuRSx3xd4QkKFhC6wqY-g6pysNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/0dfb97-cc3b-4e7d-88dc-78f0b2a1fe90/1/2T-xntEbXGVhubIGs0tBSUeYYDo.roa
Signing time: Sat 01 Jan 2022 14:02:28 +0000
ROA not before: Sat 01 Jan 2022 14:02:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59441
IP address blocks: 185.36.231.0/24 maxlen: 24
2a09:1180::/29 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28845975 (0x1b82797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12e452c77c5de1090a1610bac2a63e83aa72b0d3
Validity
Not Before: Jan 1 14:02:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d93fb19ed11b5c6561b9b206b34b41494798603a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:fb:37:fd:c4:26:dc:17:70:68:7f:de:16:9e:
46:8a:f2:80:4c:99:fc:46:2e:7b:58:71:8e:ce:ae:
92:87:ee:82:54:9f:66:9c:8a:a4:10:5f:3d:74:f9:
39:b8:9a:4b:ac:98:df:23:0a:b5:f1:91:a1:88:37:
ce:68:8b:f9:75:3e:57:cc:96:a9:5d:26:88:26:bb:
ff:72:78:2f:30:6d:dc:7b:82:79:12:f4:7d:9b:ed:
fb:72:9a:e5:25:d9:0b:e1:35:72:5b:16:6a:9c:74:
b3:d6:5b:58:e8:58:c0:db:77:93:e4:9e:42:cd:9c:
c7:37:13:b9:42:f2:d0:2b:fe:77:1f:62:30:a6:01:
4a:d0:5e:d6:92:d5:88:b7:52:e0:c6:41:fd:7c:b0:
28:60:95:f7:2d:80:4f:fe:19:b2:28:08:7f:cb:be:
7d:e2:3c:d8:c4:ef:7a:69:a8:7b:d5:9a:34:1a:ce:
39:18:a8:3d:fb:22:aa:1f:c4:5a:fd:ea:5d:2f:68:
38:de:ea:be:43:37:30:85:dc:ce:e5:ef:62:3a:30:
ca:6f:16:f6:9b:7d:2a:e2:88:21:7a:b7:aa:06:03:
42:31:91:9f:33:69:cf:64:37:59:4c:63:99:9e:70:
49:ee:50:5c:69:ae:33:33:5d:58:b7:95:1f:e1:c7:
48:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:3F:B1:9E:D1:1B:5C:65:61:B9:B2:06:B3:4B:41:49:47:98:60:3A
X509v3 Authority Key Identifier:
keyid:12:E4:52:C7:7C:5D:E1:09:0A:16:10:BA:C2:A6:3E:83:AA:72:B0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EuRSx3xd4QkKFhC6wqY-g6pysNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0dfb97-cc3b-4e7d-88dc-78f0b2a1fe90/1/2T-xntEbXGVhubIGs0tBSUeYYDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/0dfb97-cc3b-4e7d-88dc-78f0b2a1fe90/1/EuRSx3xd4QkKFhC6wqY-g6pysNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.231.0/24
IPv6:
2a09:1180::/29
Signature Algorithm: sha256WithRSAEncryption
3d:a0:5e:e1:6c:01:66:59:ef:38:ab:1f:3d:17:96:83:08:57:
5c:2b:77:76:c5:49:53:5b:e4:62:51:cd:da:ac:67:2f:f5:f3:
f9:cd:e7:88:68:96:2e:46:fb:ac:16:70:08:9c:56:7f:b3:74:
55:1b:8d:8d:b8:d7:66:42:2b:fb:ee:d6:c1:89:31:cc:e5:18:
47:f6:c9:63:ac:9d:4f:f2:7a:bf:bb:39:8f:5c:a9:ee:5d:64:
f8:2b:9a:b3:4b:f0:bd:c1:ff:54:c2:63:04:fe:1e:52:6c:10:
ce:ec:75:37:56:86:90:ad:9c:ec:32:01:ba:ba:aa:1f:b7:10:
b5:8e:f4:8a:55:f9:91:8c:ec:fe:09:c8:f6:f4:d3:9d:6c:ee:
53:6a:c3:13:1b:61:64:5d:70:1b:94:79:d2:ba:f2:08:ff:6e:
5f:2d:33:e0:e1:ac:9a:93:2f:1c:39:ef:c0:cf:de:52:8c:3b:
c7:fb:84:09:bc:c4:38:9d:bd:62:01:50:1c:3f:1b:a0:d8:b0:
94:43:ae:a6:23:38:c5:09:39:b2:87:a6:02:77:2f:18:40:dc:
1a:8e:e7:5e:9c:34:9c:12:f6:12:59:e6:8f:85:4b:0c:32:fb:
42:d5:e6:4b:6e:e7:77:fe:5a:50:69:7c:e9:31:7f:50:2c:d8:
7b:6d:cc:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:15 2024 by rpki-client on console-fra.rpki-client.org