Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/e8wqsqDxEpf9ioGSS51EAASpr88.roa
File: e8wqsqDxEpf9ioGSS51EAASpr88.roa (raw, json)
Hash identifier: rJCtVM058a6UpqP62aUm/QFL6clpDLBgcFFBKIJG2rc=
Subject key identifier: 7B:CC:2A:B2:A0:F1:12:97:FD:8A:81:92:4B:9D:44:00:04:A9:AF:CF
Certificate issuer: /CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec
Certificate serial: 03EE03C0
Authority key identifier: 25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/e8wqsqDxEpf9ioGSS51EAASpr88.roa
Signing time: Sat 01 Jan 2022 09:54:15 +0000
ROA not before: Sat 01 Jan 2022 09:54:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137280
IP address blocks: 104.166.180.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65930176 (0x3ee03c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25776c77f8ebe7094ca007ace1a9c0bfdc2b3aec
Validity
Not Before: Jan 1 09:54:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bcc2ab2a0f11297fd8a81924b9d440004a9afcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ea:49:92:80:fb:f3:99:0e:34:0b:bf:63:28:
75:d6:89:54:17:31:3b:19:14:70:78:96:65:6c:e1:
c1:3d:9d:46:ba:25:a7:42:9d:97:7a:c6:96:de:a3:
c0:91:b4:af:0a:d4:58:42:68:be:c3:d6:6f:0a:4c:
23:da:41:e1:74:48:96:05:de:9e:7d:48:9e:54:b4:
bc:90:d0:61:52:c7:50:30:a5:d8:77:36:5e:d6:ba:
4a:f7:65:99:29:8e:2e:be:a9:f2:d2:14:57:34:11:
3d:87:2a:66:ba:76:26:4c:85:69:98:40:86:cb:8e:
7a:6e:9c:eb:c7:2f:da:c1:61:e3:12:b9:0a:86:87:
2a:46:6e:9c:98:ed:e0:49:aa:ca:c1:18:93:6e:00:
ec:24:6a:c3:f0:83:7c:a4:36:d3:27:05:02:bc:71:
db:fc:28:7a:23:e8:a7:df:09:7a:43:f7:d5:67:79:
6f:29:c1:87:92:37:2f:26:8d:52:b4:25:ae:9b:54:
22:37:ac:1a:09:34:93:79:0c:68:a9:f9:29:7b:ee:
00:f5:22:99:73:f6:96:ae:40:47:ca:e3:a1:e3:53:
d1:a2:20:33:aa:e0:64:a9:7b:b5:7d:d5:63:2b:e1:
c0:7c:a3:a8:a0:16:5c:f1:b4:8a:32:a8:cb:b6:90:
5e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:CC:2A:B2:A0:F1:12:97:FD:8A:81:92:4B:9D:44:00:04:A9:AF:CF
X509v3 Authority Key Identifier:
keyid:25:77:6C:77:F8:EB:E7:09:4C:A0:07:AC:E1:A9:C0:BF:DC:2B:3A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JXdsd_jr5wlMoAes4anAv9wrOuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/e8wqsqDxEpf9ioGSS51EAASpr88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/57e08c-ca3a-4099-ae74-e7daec194a69/1/JXdsd_jr5wlMoAes4anAv9wrOuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.166.180.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:9e:93:f2:cf:85:66:1f:03:ce:a2:17:3c:06:86:20:3b:f8:
cd:15:b8:71:4d:55:6a:f9:24:41:d6:51:38:c7:85:ec:85:84:
f8:21:af:c1:4d:88:c0:a9:30:ae:eb:3e:24:ea:c6:92:19:d0:
7c:09:9c:30:31:ca:cc:6a:57:71:41:d3:47:ee:3c:c6:1b:40:
bd:bd:a6:88:49:73:58:21:97:1f:c2:bc:7e:a0:d6:a8:83:95:
4b:ca:33:c6:36:1b:a2:78:ef:49:44:9b:77:09:25:6a:6b:e8:
3d:5e:58:12:5b:8d:91:6e:10:90:8f:e2:3a:dd:a3:ab:a0:8e:
b7:3d:79:15:3d:65:2f:db:84:68:1e:a2:db:e8:d3:b6:f9:f4:
b2:77:47:49:52:b1:9a:75:bc:cf:bd:79:32:3a:74:cb:de:45:
61:75:87:3f:6c:4e:8c:97:fc:c8:33:6b:7d:bc:ff:b8:75:67:
d6:a6:5b:fb:be:e4:33:7f:56:2e:88:e5:99:1b:1d:c3:d0:78:
96:ef:5a:47:72:88:40:84:7f:6b:1e:eb:d0:ae:7e:4a:9d:c0:
d5:8a:b2:96:e3:51:98:1c:a1:5d:cc:f3:75:34:11:8d:df:6b:
f1:5c:ac:39:03:67:cd:1e:51:c0:f0:47:71:e9:80:58:66:9e:
cf:d0:38:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:30 2024 by rpki-client on console-fra.rpki-client.org