Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/1d57dd-5599-45a7-ab03-4d6ce0766eb5/1/ea-l8idNAvGF3fnFrLRKuNE9xKo.roa
File: ea-l8idNAvGF3fnFrLRKuNE9xKo.roa (raw, json)
Hash identifier: y/wm6zw9hkJSGEYnanUzFAZ78lo9UrE6EM75aP94zOQ=
Subject key identifier: 79:AF:A5:F2:27:4D:02:F1:85:DD:F9:C5:AC:B4:4A:B8:D1:3D:C4:AA
Certificate issuer: /CN=6dc0d05f8ee9e958fc95de65dc59a2141c5f1efd
Certificate serial: 1294D7EB
Authority key identifier: 6D:C0:D0:5F:8E:E9:E9:58:FC:95:DE:65:DC:59:A2:14:1C:5F:1E:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bcDQX47p6Vj8ld5l3FmiFBxfHv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/1d57dd-5599-45a7-ab03-4d6ce0766eb5/1/ea-l8idNAvGF3fnFrLRKuNE9xKo.roa
Signing time: Thu 03 Feb 2022 09:47:12 +0000
ROA not before: Thu 03 Feb 2022 09:47:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56552
IP address blocks: 185.71.67.0/24 maxlen: 24
185.71.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 311744491 (0x1294d7eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc0d05f8ee9e958fc95de65dc59a2141c5f1efd
Validity
Not Before: Feb 3 09:47:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79afa5f2274d02f185ddf9c5acb44ab8d13dc4aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:f5:93:6e:3d:8d:cb:f7:34:5d:45:16:00:
a6:d5:37:9f:54:5c:4b:f7:0f:49:f3:97:83:19:05:
26:0f:1c:fc:2d:74:12:f6:9f:41:6a:9c:4c:70:71:
a3:86:95:53:09:09:69:63:81:3d:58:8a:ac:4e:65:
1e:21:41:84:1f:bd:f1:ae:27:74:b9:a3:81:cd:55:
18:d8:16:13:75:00:91:de:d2:e9:54:83:12:5c:59:
36:d6:a5:7a:47:41:92:7d:50:c9:2e:92:4f:c8:7b:
ea:ed:ba:85:ba:2c:d7:f7:ed:9c:66:da:c8:f4:a0:
af:55:42:6a:26:46:c9:b4:d8:a9:a9:ad:07:5c:41:
f7:65:cb:40:1d:1d:8a:87:4c:dd:40:12:ea:ca:83:
49:04:a0:d6:7d:e5:0d:bf:27:e5:73:3e:27:dc:10:
9e:18:9f:42:eb:70:ba:fc:d0:07:64:5e:48:97:6c:
ae:e1:b6:22:40:73:c9:4b:6d:9a:f1:f2:6b:85:bd:
ea:c4:a6:ea:03:f7:ec:47:fe:22:fc:76:92:91:1f:
d9:02:c2:ed:90:e6:6e:df:8b:e7:91:c6:16:18:c5:
7e:90:35:42:9d:7e:73:6d:63:f7:ca:3d:bb:8b:dd:
a1:35:4e:19:8c:a1:f6:04:3d:59:b8:c9:3f:2f:13:
bc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:AF:A5:F2:27:4D:02:F1:85:DD:F9:C5:AC:B4:4A:B8:D1:3D:C4:AA
X509v3 Authority Key Identifier:
keyid:6D:C0:D0:5F:8E:E9:E9:58:FC:95:DE:65:DC:59:A2:14:1C:5F:1E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bcDQX47p6Vj8ld5l3FmiFBxfHv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1d57dd-5599-45a7-ab03-4d6ce0766eb5/1/ea-l8idNAvGF3fnFrLRKuNE9xKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/1d57dd-5599-45a7-ab03-4d6ce0766eb5/1/bcDQX47p6Vj8ld5l3FmiFBxfHv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.65.0/24
185.71.67.0/24
Signature Algorithm: sha256WithRSAEncryption
68:6d:db:5e:ae:73:f8:f6:ef:5d:bf:1d:6f:e8:db:72:ea:fa:
cc:97:7d:46:bd:28:9e:c1:e9:d3:10:02:cf:ac:a9:ba:47:8f:
d1:6b:c9:c5:57:d6:7a:10:f7:b3:2a:33:9c:d9:82:9a:6c:55:
98:49:de:a2:99:f4:e9:f4:3e:28:d6:d4:ca:13:10:78:88:b0:
31:48:e2:b7:69:ae:25:82:de:7b:f7:95:62:dd:16:fd:60:78:
07:a9:df:9c:46:a8:1c:ba:ac:a1:a8:84:7a:1f:bf:39:83:32:
8f:fe:aa:f3:75:ac:2e:7f:10:a4:ab:91:a2:d7:31:be:31:31:
5a:01:d7:ca:69:3c:54:76:11:a7:39:a9:74:0c:84:1a:68:6b:
16:30:83:e7:28:19:a4:8d:34:42:e9:65:cc:47:51:1a:ab:a6:
21:84:c8:f5:46:48:91:c2:ce:eb:6f:a1:1c:1d:ff:7f:b1:e8:
7c:15:f7:d5:69:68:2b:07:a7:11:35:68:37:35:49:ce:db:35:
1e:8e:de:de:9f:2a:39:15:b9:00:a8:26:01:ae:08:e2:8a:9e:
b5:17:13:70:4a:57:2e:e7:78:d4:38:c0:57:09:5c:0a:98:9e:
b5:5f:78:87:93:2c:5b:fc:7c:c2:d8:10:ec:c4:b2:55:68:74:
5a:64:41:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:13 2023 by rpki-client on console.sobornost.net