Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/DVXSjIvE4dw-GkEERBpqtbGrMEk.roa
File: DVXSjIvE4dw-GkEERBpqtbGrMEk.roa (raw, json)
Hash identifier: XtQax25dMOl/m4o1l9I+mZ8L+Pv4jvbgGbpdhPzFK0w=
Subject key identifier: 0D:55:D2:8C:8B:C4:E1:DC:3E:1A:41:04:44:1A:6A:B5:B1:AB:30:49
Certificate issuer: /CN=cc72e633df5635a9f98d2f68a6d2adcb44155cdc
Certificate serial: 08D1FAD9
Authority key identifier: CC:72:E6:33:DF:56:35:A9:F9:8D:2F:68:A6:D2:AD:CB:44:15:5C:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zHLmM99WNan5jS9optKty0QVXNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/DVXSjIvE4dw-GkEERBpqtbGrMEk.roa
Signing time: Sat 01 Jan 2022 08:03:57 +0000
ROA not before: Sat 01 Jan 2022 08:03:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59773
IP address blocks: 185.71.204.0/24 maxlen: 24
185.71.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147978969 (0x8d1fad9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc72e633df5635a9f98d2f68a6d2adcb44155cdc
Validity
Not Before: Jan 1 08:03:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d55d28c8bc4e1dc3e1a4104441a6ab5b1ab3049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:30:17:1e:f3:df:61:ef:75:f8:89:d0:cb:56:
d8:9b:11:52:cc:50:8a:38:67:b0:a0:aa:2c:d4:63:
82:e5:c7:e8:53:b6:b0:d6:9e:fb:dd:fe:c2:6e:5e:
7a:d6:7f:4b:46:81:03:23:c3:d4:87:80:13:f5:63:
b6:56:1e:3d:4b:7b:84:a3:d4:5b:b5:04:e7:8b:e0:
6c:87:0d:b9:6d:92:69:6b:85:46:df:e7:df:5a:34:
54:49:90:db:33:8f:32:e3:15:1f:b3:20:8e:6f:8c:
af:b4:5f:9a:2e:5e:08:7b:7f:8c:aa:c4:0c:02:e3:
97:a8:b0:09:21:c2:91:42:4a:48:47:b4:dc:b3:c2:
cc:0b:b4:cd:28:cc:35:15:b0:f5:50:ee:83:75:b0:
e9:bc:42:e5:af:62:42:43:6c:cb:da:81:df:60:d7:
38:fb:5a:06:11:84:5b:51:c8:a1:35:e9:b4:1f:be:
2b:70:43:5a:8c:b5:ed:a5:a7:8f:78:ec:80:99:4c:
a3:97:49:a5:99:a1:aa:55:41:b0:d9:3c:99:6c:d5:
4c:52:46:52:8a:9a:15:ca:c1:51:0c:f3:11:30:5a:
9f:9d:ca:f9:5c:ec:e5:cf:e0:bd:c0:8c:49:ab:c0:
9c:40:6d:99:72:03:11:32:17:4a:79:21:7f:a5:c4:
96:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:55:D2:8C:8B:C4:E1:DC:3E:1A:41:04:44:1A:6A:B5:B1:AB:30:49
X509v3 Authority Key Identifier:
keyid:CC:72:E6:33:DF:56:35:A9:F9:8D:2F:68:A6:D2:AD:CB:44:15:5C:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zHLmM99WNan5jS9optKty0QVXNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/DVXSjIvE4dw-GkEERBpqtbGrMEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/027036-82b3-4128-b954-d012ca9ec197/1/zHLmM99WNan5jS9optKty0QVXNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.204.0/24
185.71.207.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:4f:8c:ca:93:7e:d6:b6:93:90:7b:e1:31:fc:c1:3f:d2:f4:
a4:1e:a4:fa:ab:5b:d5:e9:c7:06:3e:36:6d:64:8b:e5:f9:c8:
20:1e:78:86:14:71:b0:db:1d:dc:77:d5:31:2a:20:19:c9:e3:
b9:c2:b9:22:18:8f:2c:df:af:ea:72:33:be:e6:c6:0e:ed:7e:
73:55:81:61:d3:a0:79:fa:ef:d1:dc:87:26:5f:48:93:85:cc:
48:41:de:69:ea:aa:63:ac:4e:13:e1:79:ca:a9:c0:c2:d2:c1:
78:b9:c4:4d:c7:8d:0f:4d:a6:d0:47:b1:a8:19:08:db:4a:a2:
d8:11:a4:87:43:fa:6a:7e:56:e5:c7:01:94:16:16:00:1c:e0:
17:dc:f5:ff:14:94:2e:5d:12:e3:c5:cd:79:5a:c5:6e:77:c1:
5d:f3:48:c8:46:83:95:de:ae:92:ad:7f:5f:a6:f9:4b:bf:1a:
95:69:92:62:ec:12:98:5f:00:f2:d3:9b:3a:6a:99:c9:d3:1c:
b6:8c:d2:4b:9d:84:10:41:8d:e0:e0:a6:9e:59:74:c3:fa:c2:
bf:6c:67:87:e5:4d:90:da:4b:cd:cd:c1:00:4e:6d:2d:da:0f:
af:43:9a:94:6d:6c:91:78:d9:60:67:56:06:54:78:a5:31:69:
c0:c1:b6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:24 2023 by rpki-client on console.sobornost.net