Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/xwb3FXuxd8ICjvJOrwJCRiIDC6A.roa
File: xwb3FXuxd8ICjvJOrwJCRiIDC6A.roa (raw, json)
Hash identifier: El2s2BXsRrjkExOnML2VQWbOwcQ2EFotKuXNc1ZiQUI=
Subject key identifier: C7:06:F7:15:7B:B1:77:C2:02:8E:F2:4E:AF:02:42:46:22:03:0B:A0
Certificate issuer: /CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Certificate serial: 03C70C29
Authority key identifier: 11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/xwb3FXuxd8ICjvJOrwJCRiIDC6A.roa
Signing time: Mon 04 Apr 2022 08:48:07 +0000
ROA not before: Mon 04 Apr 2022 08:48:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212830
IP address blocks: 185.239.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63376425 (0x3c70c29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Validity
Not Before: Apr 4 08:48:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c706f7157bb177c2028ef24eaf02424622030ba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a5:6e:76:db:1c:db:cb:c5:23:6c:82:48:75:
b6:19:d5:22:19:af:88:73:f3:27:7e:d5:c1:13:5d:
6b:26:cf:ea:26:0b:99:9c:f6:3c:b3:21:5c:af:35:
50:bd:f9:81:80:5a:84:e9:c0:02:03:e9:eb:60:8a:
a7:cb:0c:f9:52:97:c2:30:a9:c2:a1:ff:d6:2e:cd:
8d:e3:02:fe:b4:47:57:b7:12:a1:59:59:a7:11:eb:
02:d6:2c:53:cb:a3:b6:e5:55:f3:d8:b5:6a:b9:10:
a9:90:89:ef:a3:58:0a:37:b8:6c:3f:cb:c5:73:53:
7c:33:81:2b:74:c3:a0:92:e6:c0:70:0f:79:eb:63:
13:6d:55:10:6a:fa:78:18:b9:c7:4e:83:33:58:fa:
4f:5c:d6:78:3d:b0:45:1d:93:81:6e:91:2d:94:48:
dd:71:1e:2a:1c:33:5f:61:65:05:57:7a:68:77:01:
5a:11:e5:7b:15:ac:46:82:5f:7d:05:3d:c3:31:7e:
5c:61:5f:2e:cd:56:06:bd:06:4f:d3:b5:59:f6:b3:
f5:2e:c6:d8:73:78:e1:71:96:20:86:50:0f:ec:10:
a4:5a:ca:98:64:c5:b0:a9:7c:be:12:c2:3a:d8:cc:
36:bc:7c:b2:93:22:9a:44:fa:36:ce:26:77:ef:e5:
8f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:06:F7:15:7B:B1:77:C2:02:8E:F2:4E:AF:02:42:46:22:03:0B:A0
X509v3 Authority Key Identifier:
keyid:11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/xwb3FXuxd8ICjvJOrwJCRiIDC6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/Ee7NccGT5Kww7QPQufBdoQHGA9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.142.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:c2:b5:c6:93:3d:bf:13:3f:e9:78:24:cf:eb:a0:cf:aa:2d:
46:0a:85:49:04:67:d5:79:69:e1:6d:8f:96:47:a4:fd:3d:a1:
0d:f2:73:b0:66:e6:bc:10:72:5e:33:cd:0a:21:cb:f2:c1:97:
f7:34:07:e6:fa:7a:1f:d4:62:e7:fa:95:66:49:a7:0f:f0:68:
72:d3:c1:a7:66:cd:16:7c:fb:ab:35:a7:fb:bf:b1:56:ce:18:
28:73:c3:60:86:d7:f4:dd:e2:64:06:0e:3f:f8:35:0e:7f:d0:
62:3d:00:42:15:b9:4b:2f:64:29:89:95:56:89:dc:68:26:8a:
bb:4a:bf:c5:33:6c:02:b2:1a:8e:d7:a4:16:96:13:66:40:dd:
b9:e3:77:8c:fa:86:07:7c:d8:3a:54:6a:62:58:40:cb:82:fe:
11:b5:3c:03:39:c6:4e:5f:c8:27:44:01:2d:cf:26:8a:b8:df:
ba:e6:da:a7:75:76:e5:8d:f1:b6:59:75:c5:cd:d3:d8:65:aa:
d6:dd:64:21:bb:66:b8:fd:77:09:30:60:52:97:1b:5a:b2:6d:
8f:58:80:ab:6a:9c:16:c0:fc:e6:af:44:66:df:9b:87:f1:e3:
7e:ce:98:4f:60:a6:db:30:b9:5c:ac:fd:19:04:05:61:5a:fc:
a4:9c:d2:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:25 2023 by rpki-client on console-ams.rpki-client.org