Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2e8537-36be-498f-8155-cc03bd315ff9/1/EQnKw7jCqAQEXs7Bz-2C_RdG9dM.roa
File: EQnKw7jCqAQEXs7Bz-2C_RdG9dM.roa (raw, json)
Hash identifier: cHOPVPsHIXfrND6hegSxfWJsfedq6okE+qi4t6mjNTc=
Subject key identifier: 11:09:CA:C3:B8:C2:A8:04:04:5E:CE:C1:CF:ED:82:FD:17:46:F5:D3
Certificate issuer: /CN=1690970ddbb7619cc82186ddb536eb4e8985d2de
Certificate serial: 3529657A
Authority key identifier: 16:90:97:0D:DB:B7:61:9C:C8:21:86:DD:B5:36:EB:4E:89:85:D2:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FpCXDdu3YZzIIYbdtTbrTomF0t4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2e8537-36be-498f-8155-cc03bd315ff9/1/EQnKw7jCqAQEXs7Bz-2C_RdG9dM.roa
Signing time: Fri 11 Feb 2022 10:26:06 +0000
ROA not before: Fri 11 Feb 2022 10:26:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13030
IP address blocks: 185.29.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 891905402 (0x3529657a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1690970ddbb7619cc82186ddb536eb4e8985d2de
Validity
Not Before: Feb 11 10:26:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1109cac3b8c2a804045ecec1cfed82fd1746f5d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:27:f3:e4:29:4a:31:34:55:f8:e2:1a:e2:c9:
c0:cc:a7:bc:fc:0a:f6:9e:b1:22:66:01:46:04:54:
53:57:61:61:64:ef:47:66:eb:18:e0:24:19:d9:9d:
52:f2:7a:9d:fb:ed:a2:26:c6:d9:2f:db:0c:72:8e:
da:5e:a7:fe:bf:f9:f8:26:c5:8a:69:c5:2b:6c:5f:
94:e1:07:33:35:bc:3d:b3:b5:db:92:96:28:39:9a:
bf:b0:89:d7:54:d6:a7:01:d1:3d:13:b2:89:b3:82:
18:bd:3b:55:dc:1a:cb:7c:3d:65:65:1c:c7:0d:45:
04:8e:a2:f8:ed:d4:0e:1a:81:f9:80:1b:5d:99:70:
9f:47:35:55:26:fa:14:c1:bf:bb:63:86:a7:d0:b5:
ba:fe:e0:86:a3:62:93:ea:5f:9c:02:d9:a4:1d:29:
9d:fb:52:08:73:e8:f6:18:b1:ba:8e:60:c4:4e:96:
10:d9:d1:4a:96:9c:a1:ec:ad:80:6c:d1:8c:e7:09:
8f:69:dd:e4:7f:c0:6f:e8:28:c3:44:8c:c9:fe:c2:
bd:da:c4:a4:05:f6:53:7f:15:f6:9c:6c:07:72:36:
2c:7a:0a:34:02:5d:8c:d7:ff:98:7a:e7:5b:f3:4e:
c2:16:f3:4e:d8:cb:9b:df:f3:e9:fa:c2:ac:da:4e:
87:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:09:CA:C3:B8:C2:A8:04:04:5E:CE:C1:CF:ED:82:FD:17:46:F5:D3
X509v3 Authority Key Identifier:
keyid:16:90:97:0D:DB:B7:61:9C:C8:21:86:DD:B5:36:EB:4E:89:85:D2:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FpCXDdu3YZzIIYbdtTbrTomF0t4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2e8537-36be-498f-8155-cc03bd315ff9/1/EQnKw7jCqAQEXs7Bz-2C_RdG9dM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2e8537-36be-498f-8155-cc03bd315ff9/1/FpCXDdu3YZzIIYbdtTbrTomF0t4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.29.76.0/24
Signature Algorithm: sha256WithRSAEncryption
54:6f:0e:db:e8:eb:2b:43:f9:81:2c:9c:47:ee:0e:cd:a4:18:
e2:5c:f3:8d:57:be:04:f0:6b:29:eb:1e:ea:be:04:7a:2a:05:
5b:d1:de:b2:09:cb:a4:9f:a0:72:d0:ce:a3:7c:b4:cd:7a:9c:
27:28:b4:e8:c7:a9:a9:30:33:2c:26:ba:da:f7:7f:97:c9:de:
e9:a0:aa:3a:4c:c5:51:df:97:bc:fb:ed:0b:d1:ae:ee:91:35:
f7:f9:70:4c:d1:4c:db:e5:bc:07:02:c9:20:44:64:d7:5c:63:
17:7d:19:4b:2a:8f:29:f3:48:a8:9e:6a:42:ae:41:84:d6:a6:
f6:1c:d1:b1:64:5d:a1:66:26:1a:a8:7c:4d:29:27:3c:89:35:
ee:2a:a6:49:8c:94:0a:54:e9:1c:16:75:be:61:2d:eb:71:32:
80:c3:aa:5b:6a:c6:b7:85:19:e8:45:2d:f3:c4:84:89:94:da:
0c:6d:f3:73:cb:a9:3f:10:a2:ad:e3:d2:e1:7d:f3:99:7c:1a:
ab:9f:b4:41:e1:31:e3:fb:e5:4b:40:cd:b9:61:06:16:e5:4c:
22:6e:1a:5a:c6:59:d0:0e:4b:25:cb:62:3d:97:d9:dd:ee:2e:
fb:b6:af:73:cb:9d:cb:f6:d8:20:56:9c:db:96:aa:cc:7d:fd:
98:e7:f2:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:51 2023 by rpki-client on console.sobornost.net