Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/44222e-568e-4c43-8dc8-a54bbc34cce9/1/kGSkMbL7bU1d3dI23p_9H6TBWfA.roa
File: kGSkMbL7bU1d3dI23p_9H6TBWfA.roa (raw, json)
Hash identifier: cNr/f6fkTS52Jrek6AAo1cnFh6yd518ZctSB7kShLQg=
Subject key identifier: 90:64:A4:31:B2:FB:6D:4D:5D:DD:D2:36:DE:9F:FD:1F:A4:C1:59:F0
Certificate issuer: /CN=c2ce59d1af830c94ba8ea11cf8fec6dd9c03b917
Certificate serial: 01B9BEA1
Authority key identifier: C2:CE:59:D1:AF:83:0C:94:BA:8E:A1:1C:F8:FE:C6:DD:9C:03:B9:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ws5Z0a-DDJS6jqEc-P7G3ZwDuRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/44222e-568e-4c43-8dc8-a54bbc34cce9/1/kGSkMbL7bU1d3dI23p_9H6TBWfA.roa
Signing time: Sat 01 Jan 2022 10:04:15 +0000
ROA not before: Sat 01 Jan 2022 10:04:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211147
IP address blocks: 185.120.181.0/24 maxlen: 24
2a0e:ec0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28950177 (0x1b9bea1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2ce59d1af830c94ba8ea11cf8fec6dd9c03b917
Validity
Not Before: Jan 1 10:04:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9064a431b2fb6d4d5dddd236de9ffd1fa4c159f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8e:c3:24:f0:67:83:21:a5:51:73:6b:ef:a1:
13:42:b9:91:a2:31:8a:3b:34:4a:5d:35:e7:d8:17:
10:8c:9b:6a:22:e2:73:ce:1a:b8:2c:55:84:b2:5f:
77:c2:0e:f5:84:50:79:da:e6:a8:3a:df:e4:3c:75:
ac:dc:3a:15:4a:45:a3:08:48:b7:5b:47:f5:6e:dd:
d9:53:b9:76:9e:cd:ca:0c:89:3b:1f:88:35:0f:6b:
c5:5e:20:53:61:4d:f9:63:3b:1a:99:5b:71:18:b0:
3b:0f:0b:03:6a:d1:56:44:b4:ef:db:27:30:15:47:
12:f3:e6:7e:e8:62:dd:b4:ff:1c:44:df:fd:bb:35:
d3:57:36:ac:c8:f8:5c:7b:50:1d:7e:59:bb:96:5d:
cd:34:5b:00:c2:fd:d4:5e:de:31:cf:d9:b4:2a:ca:
58:d1:15:c5:2a:9b:a6:fd:c3:c2:d4:6b:c7:f2:c4:
a0:d4:e4:94:b3:76:87:c9:77:02:4b:0d:f9:dd:86:
62:67:86:07:71:5a:87:9b:17:a8:d7:e7:8c:f9:cc:
b1:1f:3e:3d:99:3a:49:b2:57:6e:9e:0d:2f:d0:a5:
3b:6c:21:8a:7c:15:86:dd:9c:f8:29:a8:73:60:0a:
61:03:00:97:91:e8:7e:69:1b:ae:85:b4:77:5d:ef:
1c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:64:A4:31:B2:FB:6D:4D:5D:DD:D2:36:DE:9F:FD:1F:A4:C1:59:F0
X509v3 Authority Key Identifier:
keyid:C2:CE:59:D1:AF:83:0C:94:BA:8E:A1:1C:F8:FE:C6:DD:9C:03:B9:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ws5Z0a-DDJS6jqEc-P7G3ZwDuRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/44222e-568e-4c43-8dc8-a54bbc34cce9/1/kGSkMbL7bU1d3dI23p_9H6TBWfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/44222e-568e-4c43-8dc8-a54bbc34cce9/1/ws5Z0a-DDJS6jqEc-P7G3ZwDuRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.181.0/24
IPv6:
2a0e:ec0::/29
Signature Algorithm: sha256WithRSAEncryption
12:9d:17:df:48:1f:48:3b:fb:2c:0b:85:46:43:5f:2d:8b:b4:
ce:6c:b3:e3:38:c7:11:37:d7:c0:4d:1d:0e:0f:f0:a3:01:e6:
c6:60:5e:75:0f:dc:29:ea:96:b4:8d:0f:a5:cd:54:b0:64:78:
b4:02:13:dc:0a:2a:a2:2e:d0:af:a0:b7:71:e0:e8:95:a8:15:
a5:de:11:43:48:55:86:1d:df:64:06:cf:b5:ab:bf:a8:7f:49:
8d:34:87:4d:99:82:75:d8:09:46:35:41:c4:89:93:5d:a9:5f:
27:48:50:61:8c:0b:3a:89:59:f5:04:62:af:0d:ff:a2:5b:d5:
d6:b8:d7:84:74:36:00:ab:6f:c6:7e:f9:f6:33:67:23:21:ab:
8e:7d:9a:23:c0:0f:fe:fc:86:c0:e8:0c:37:33:61:5c:f0:a7:
95:e0:d4:58:8a:e9:c0:6b:6a:55:75:b0:d2:dd:cb:cc:12:03:
e4:31:66:f2:54:81:5f:98:4f:15:7d:9a:6d:57:99:85:bf:3e:
81:42:95:b5:5c:06:01:33:86:97:b8:bc:f6:0f:93:cb:f1:53:
f7:8e:bf:66:d8:60:e8:04:dc:72:48:a0:53:f2:29:c4:de:6e:
dd:eb:aa:81:7d:ab:83:38:24:32:f8:a5:40:f1:d5:92:a1:41:
40:cf:90:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:26 2024 by rpki-client on console-fra.rpki-client.org