Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/gEdcn96JlvikpPnF9MG7uOn4HTs.roa
File: gEdcn96JlvikpPnF9MG7uOn4HTs.roa (raw, json)
Hash identifier: i8CFLj/LZnks6N4fWznXq1ilyZuzFgy3iuMQeU0xTbw=
Subject key identifier: 80:47:5C:9F:DE:89:96:F8:A4:A4:F9:C5:F4:C1:BB:B8:E9:F8:1D:3B
Certificate issuer: /CN=ce958f181fb507a0a2a821856b8be0d54b118b85
Certificate serial: 03278078
Authority key identifier: CE:95:8F:18:1F:B5:07:A0:A2:A8:21:85:6B:8B:E0:D5:4B:11:8B:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zpWPGB-1B6CiqCGFa4vg1UsRi4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/gEdcn96JlvikpPnF9MG7uOn4HTs.roa
Signing time: Fri 15 Apr 2022 12:50:37 +0000
ROA not before: Fri 15 Apr 2022 12:50:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6282
IP address blocks: 185.168.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52920440 (0x3278078)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce958f181fb507a0a2a821856b8be0d54b118b85
Validity
Not Before: Apr 15 12:50:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80475c9fde8996f8a4a4f9c5f4c1bbb8e9f81d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:79:9a:b0:11:8d:f4:5d:16:ba:1f:d7:6b:b5:
35:e6:33:0c:19:f8:21:86:54:a3:b8:70:2b:6e:65:
cf:ae:eb:c4:78:82:80:06:29:fc:e2:df:ad:9d:96:
78:66:7e:bb:e7:31:08:98:17:3d:b4:30:f3:8b:3b:
ec:35:77:7d:31:9a:b2:5d:10:0d:7e:fe:9b:23:6f:
c8:5b:91:5b:84:91:a7:16:57:16:42:f1:42:f5:94:
6d:c4:24:a0:e6:91:fd:5a:c1:a2:c8:33:16:4f:5e:
b1:2e:9c:3c:bf:80:84:ae:d2:02:03:63:33:3e:a0:
27:01:72:cf:14:aa:d6:c9:fe:c2:83:e3:b1:9c:ba:
b6:01:4e:ee:56:72:ef:04:6b:82:fe:a3:15:a2:5b:
58:5a:66:60:13:7c:20:0e:fa:c4:28:47:f4:10:33:
89:15:c4:71:e7:27:c7:95:0c:7e:b9:c7:12:87:c2:
54:57:9c:1a:7b:47:7a:8e:5f:48:f5:20:08:04:ef:
10:48:fb:6b:95:a8:4b:2d:16:10:26:42:a4:2c:ed:
ea:75:da:30:ea:42:52:05:ed:4a:0d:ba:3f:e9:bf:
01:fb:bf:ff:85:ad:51:98:ef:28:d4:e1:29:89:16:
c2:9b:30:c8:85:1d:02:55:29:56:66:6b:a7:0b:20:
ad:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:47:5C:9F:DE:89:96:F8:A4:A4:F9:C5:F4:C1:BB:B8:E9:F8:1D:3B
X509v3 Authority Key Identifier:
keyid:CE:95:8F:18:1F:B5:07:A0:A2:A8:21:85:6B:8B:E0:D5:4B:11:8B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zpWPGB-1B6CiqCGFa4vg1UsRi4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/gEdcn96JlvikpPnF9MG7uOn4HTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/zpWPGB-1B6CiqCGFa4vg1UsRi4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.157.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:d1:c1:74:d0:f2:c7:c3:e1:f8:7f:cb:8f:9b:d4:68:b2:47:
a8:f3:a6:46:d9:5b:df:9c:91:47:e7:9a:bf:e1:f8:b7:9c:d4:
6a:34:a5:f4:eb:f9:a5:85:c0:a1:7c:2b:d6:10:84:b4:fc:c3:
d8:45:ca:fb:2a:3c:50:eb:67:27:a4:eb:15:67:a0:dc:fc:6f:
20:77:fe:32:4b:4e:46:77:e0:fc:fb:96:80:75:5e:31:02:9f:
15:81:c5:f4:c0:54:5a:95:79:f9:dd:fd:76:cb:f9:42:a0:06:
b1:bf:88:8a:ab:25:19:c4:1a:5b:2e:04:4b:40:d0:aa:27:3a:
7e:4e:07:01:2d:0d:4d:54:bf:33:69:af:fb:5b:1f:ea:87:cc:
20:2e:48:fd:9b:14:c5:ec:01:0f:af:8e:41:fb:92:ab:5e:56:
7f:2f:cb:89:40:bf:8b:eb:86:9e:f6:a2:98:a6:66:84:d0:79:
b6:6b:14:01:19:70:5c:c7:87:6a:60:72:46:66:2b:3c:76:02:
68:b0:1a:d1:33:70:d1:c7:15:45:83:b3:09:09:18:b5:b5:f3:
68:45:0a:70:85:26:ce:3f:7d:e3:9e:a3:d1:e5:af:03:72:e3:
50:fc:05:40:2a:e1:7a:ba:07:1e:28:4b:4a:54:83:34:2d:f9:
63:af:99:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:46 2023 by rpki-client on console-fra.rpki-client.org