Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/9ef60a-73ee-40e1-9006-c0b3b0f54beb/1/so7ZJnsd8JWW-iJXnuYjJcJjLlA.roa
File: so7ZJnsd8JWW-iJXnuYjJcJjLlA.roa (raw, json)
Hash identifier: EmLsUP7n+X+awfR0cEvpms1Xoi+eogZNR9EefmmtDIY=
Subject key identifier: B2:8E:D9:26:7B:1D:F0:95:96:FA:22:57:9E:E6:23:25:C2:63:2E:50
Certificate issuer: /CN=e465acc90809efb45ccda250a1057618494b86eb
Certificate serial: 09A7504C
Authority key identifier: E4:65:AC:C9:08:09:EF:B4:5C:CD:A2:50:A1:05:76:18:49:4B:86:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5GWsyQgJ77RczaJQoQV2GElLhus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/9ef60a-73ee-40e1-9006-c0b3b0f54beb/1/so7ZJnsd8JWW-iJXnuYjJcJjLlA.roa
Signing time: Mon 07 Feb 2022 11:20:37 +0000
ROA not before: Mon 07 Feb 2022 11:20:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1104
IP address blocks: 185.153.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161960012 (0x9a7504c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e465acc90809efb45ccda250a1057618494b86eb
Validity
Not Before: Feb 7 11:20:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b28ed9267b1df09596fa22579ee62325c2632e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6e:5e:bf:6f:99:72:df:0d:4d:95:21:30:54:
78:bf:e7:b7:6c:ba:4b:fd:f7:08:8e:78:ea:bb:68:
af:4a:00:5e:ac:34:f8:ac:36:68:18:e9:0e:1a:b9:
19:f5:b8:06:a3:aa:4a:bb:93:b4:d4:d4:49:f3:03:
bb:8c:5a:bb:75:0c:84:68:c8:6b:9a:63:6f:ca:b6:
f9:86:4f:d8:a0:37:92:4f:43:2e:3a:6d:14:d0:24:
f0:f5:ff:91:9c:81:6b:84:59:d9:e6:1c:3f:1b:6d:
30:36:48:67:a1:1b:ab:ba:be:71:70:73:37:35:dc:
81:e1:1d:fb:97:1b:68:fb:f7:88:c5:9b:06:0b:fc:
95:6b:31:70:37:f9:3f:74:aa:32:66:2d:08:7e:81:
b4:4c:d9:a5:61:b8:81:ea:c5:d9:3c:40:7c:56:9c:
5e:dd:7f:82:11:9a:d1:52:8a:7a:e4:7d:37:2d:67:
c9:21:16:58:41:eb:86:5d:89:98:25:ac:f0:f7:59:
b8:63:d6:5d:c4:b0:91:f3:e4:19:a9:b6:d6:ab:fc:
75:82:5a:39:39:e4:e5:b8:16:00:12:2c:2b:fd:ed:
9d:33:0c:be:7f:40:99:a3:51:5d:46:8b:54:19:1d:
1c:38:7c:cc:ef:78:53:89:be:39:b0:06:5e:05:c3:
16:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:8E:D9:26:7B:1D:F0:95:96:FA:22:57:9E:E6:23:25:C2:63:2E:50
X509v3 Authority Key Identifier:
keyid:E4:65:AC:C9:08:09:EF:B4:5C:CD:A2:50:A1:05:76:18:49:4B:86:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5GWsyQgJ77RczaJQoQV2GElLhus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9ef60a-73ee-40e1-9006-c0b3b0f54beb/1/so7ZJnsd8JWW-iJXnuYjJcJjLlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9ef60a-73ee-40e1-9006-c0b3b0f54beb/1/5GWsyQgJ77RczaJQoQV2GElLhus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.60.0/22
Signature Algorithm: sha256WithRSAEncryption
85:cd:2f:8e:61:7f:67:26:ea:a7:b2:06:ce:a5:4a:37:f1:0a:
6f:93:04:51:cf:2f:e4:52:81:b6:67:63:36:69:9b:de:f2:da:
6a:4d:c7:ea:1a:06:73:91:8a:f7:2c:31:ac:74:da:59:a0:2d:
a5:6f:f7:28:69:33:dc:45:80:01:40:f5:3b:b8:f3:fc:3a:ae:
fa:e7:30:53:85:46:b7:82:a0:de:9d:ba:9b:c9:65:0b:41:b3:
75:7c:50:37:8c:0c:c6:fe:b5:8c:1b:37:26:04:73:ff:8b:33:
49:bb:4d:e3:41:12:4c:e8:9f:ec:8b:ed:7a:4e:0b:4a:a7:9e:
4a:3d:23:b3:2d:67:56:8c:ce:49:46:87:be:68:8d:3c:09:5c:
a8:2f:74:7a:9e:8a:9d:e5:7a:a2:38:29:6d:86:cb:ef:d1:c4:
ce:04:24:78:a3:bc:68:04:07:bb:66:8b:76:38:e3:ce:45:33:
37:91:b6:6a:5f:ce:22:17:b7:de:7a:1d:51:72:2f:85:41:34:
7f:0c:b5:50:2b:31:48:55:fd:9a:17:6d:07:0c:14:7c:30:00:
b5:3b:9b:81:6d:37:b9:e1:22:a0:b5:7c:19:86:b5:94:23:10:
27:f3:45:a2:98:c4:b7:65:c0:9e:a4:b2:80:b1:3d:1e:02:0a:
3b:78:53:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:10 2023 by rpki-client on console-fra.rpki-client.org