Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/7183af-67b8-4a6c-ba1a-adaefbdefac9/1/eiqDkYIs2yhzF2Xu16TZMg8Uk5s.roa
File: eiqDkYIs2yhzF2Xu16TZMg8Uk5s.roa (raw, json)
Hash identifier: LbelOFkYpmYOtJGFp7PJvejzTPlsWwocXZCoiKm93t0=
Subject key identifier: 7A:2A:83:91:82:2C:DB:28:73:17:65:EE:D7:A4:D9:32:0F:14:93:9B
Certificate issuer: /CN=14336c78d52ba8115741002b6b070d117ae9bfcd
Certificate serial: 029FC82D
Authority key identifier: 14:33:6C:78:D5:2B:A8:11:57:41:00:2B:6B:07:0D:11:7A:E9:BF:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FDNseNUrqBFXQQArawcNEXrpv80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/7183af-67b8-4a6c-ba1a-adaefbdefac9/1/eiqDkYIs2yhzF2Xu16TZMg8Uk5s.roa
Signing time: Sat 01 Jan 2022 08:54:32 +0000
ROA not before: Sat 01 Jan 2022 08:54:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203021
IP address blocks: 185.147.120.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44025901 (0x29fc82d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14336c78d52ba8115741002b6b070d117ae9bfcd
Validity
Not Before: Jan 1 08:54:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a2a8391822cdb28731765eed7a4d9320f14939b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:87:b4:4f:8a:a9:27:48:b9:b0:bb:73:de:a5:
a6:06:6d:14:e1:cb:62:e2:7e:8a:bc:62:d8:41:93:
10:85:fc:f0:31:7b:dc:25:de:22:ac:75:39:52:8f:
00:db:63:4d:32:98:61:bd:78:47:b1:76:71:0d:54:
f4:b9:f9:af:67:9c:77:b6:e1:98:7b:21:ea:10:ff:
58:9e:f6:dc:16:8c:c3:c4:45:cd:94:89:c8:a1:bb:
90:57:ca:7e:da:bf:ec:8e:b9:88:15:f7:b2:40:af:
1c:16:74:3f:62:b3:ef:cc:89:68:96:4e:df:99:e4:
81:54:dc:12:0a:c0:47:e5:c5:6f:72:c6:ee:fd:44:
e3:14:f2:c9:22:83:dd:52:f6:7e:c8:39:77:8b:a2:
f8:1f:00:43:1b:69:b9:aa:8b:26:1e:2e:a6:bd:09:
3e:e2:01:e6:d3:b6:fe:fe:76:e3:a6:a9:f2:5b:41:
a1:26:90:9a:40:c6:8f:ac:6a:07:89:51:00:62:f4:
4d:21:46:ed:a9:dc:1d:e9:37:c0:dd:b8:18:cf:34:
62:bb:cf:57:10:1e:53:e5:e9:87:fc:a8:8d:55:d8:
79:63:3f:db:68:50:b0:a3:7e:f5:ca:9a:40:81:48:
e0:67:0c:59:1e:7f:08:25:b9:0e:3c:32:82:e3:1f:
1d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:2A:83:91:82:2C:DB:28:73:17:65:EE:D7:A4:D9:32:0F:14:93:9B
X509v3 Authority Key Identifier:
keyid:14:33:6C:78:D5:2B:A8:11:57:41:00:2B:6B:07:0D:11:7A:E9:BF:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FDNseNUrqBFXQQArawcNEXrpv80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/7183af-67b8-4a6c-ba1a-adaefbdefac9/1/eiqDkYIs2yhzF2Xu16TZMg8Uk5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/7183af-67b8-4a6c-ba1a-adaefbdefac9/1/FDNseNUrqBFXQQArawcNEXrpv80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.120.0/22
Signature Algorithm: sha256WithRSAEncryption
ce:ef:07:cc:44:d4:c7:ba:98:d0:74:2a:80:b3:87:1d:c6:7c:
0e:c0:e9:08:c2:1c:25:f9:26:2d:a3:52:12:f5:47:1b:e8:ee:
67:7e:97:d4:2d:41:a7:a2:77:02:7d:36:f6:11:c3:f6:44:2f:
6f:be:57:3f:af:17:3b:b7:75:1f:62:90:b8:2e:c9:60:81:93:
d0:55:31:9a:d9:aa:f3:95:89:b7:57:dd:07:20:3d:7c:52:08:
a7:e3:0c:92:b8:61:96:00:03:20:ec:7d:80:c3:51:02:86:7b:
00:00:c5:e8:a3:7e:fa:fb:50:f5:45:5f:4f:41:9d:f5:b2:27:
82:b1:17:48:fc:f9:a4:28:af:99:6e:b3:77:8d:fc:a2:9e:3b:
21:24:0f:37:38:e1:7c:1a:c1:12:66:49:14:04:92:dd:d4:0a:
db:b1:cd:bb:0f:39:a4:50:69:91:d1:d0:a3:6b:61:2e:37:71:
14:92:f7:fc:f2:28:6d:66:f6:66:66:8b:9f:17:21:e6:f1:37:
4c:f3:04:a2:d4:02:73:09:a2:5e:1f:bb:e4:0e:0d:b1:f9:6d:
8b:55:40:9a:ad:1e:8f:3e:2a:52:cc:ef:6a:b9:7b:19:1b:cc:
bc:2f:f5:cd:1b:45:bf:c1:38:39:e1:45:66:ed:95:e7:4b:53:
bc:4c:b3:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:37 2024 by rpki-client on console-fra.rpki-client.org