Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/vJZe327knsJfqSUTXxJNfs9_jIg.roa
File: vJZe327knsJfqSUTXxJNfs9_jIg.roa (raw, json)
Hash identifier: H56rN7S8Y8RaL1Z9xnGndimTOWHZdJk3wCcYLT6oPw8=
Subject key identifier: BC:96:5E:DF:6E:E4:9E:C2:5F:A9:25:13:5F:12:4D:7E:CF:7F:8C:88
Certificate issuer: /CN=0edda2c6074c56241f5c7e060caccb657f64e91c
Certificate serial: 0918F862
Authority key identifier: 0E:DD:A2:C6:07:4C:56:24:1F:5C:7E:06:0C:AC:CB:65:7F:64:E9:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dt2ixgdMViQfXH4GDKzLZX9k6Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/vJZe327knsJfqSUTXxJNfs9_jIg.roa
Signing time: Sat 01 Jan 2022 13:01:23 +0000
ROA not before: Sat 01 Jan 2022 13:01:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204737
IP address blocks: 185.242.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152631394 (0x918f862)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0edda2c6074c56241f5c7e060caccb657f64e91c
Validity
Not Before: Jan 1 13:01:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc965edf6ee49ec25fa925135f124d7ecf7f8c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:66:e7:0e:e5:46:87:35:eb:b9:b3:c3:21:83:
62:d3:24:16:ad:34:a3:a5:81:58:03:99:75:48:7c:
d2:34:3d:4d:bb:d9:b3:30:03:1a:22:77:70:05:c4:
71:a4:13:a4:51:51:5c:00:11:f4:bb:24:02:00:05:
7d:07:61:fd:7f:92:9b:0c:0d:9b:f5:ff:c2:f4:e6:
54:0c:48:83:8e:f9:51:a1:ae:85:00:6d:2a:cc:db:
a5:a2:ba:98:ef:29:7f:36:2a:4a:4a:f1:e1:8d:06:
ef:29:64:16:8d:4e:d7:b2:4e:8a:20:3b:56:2a:3c:
25:95:df:38:8c:8b:bc:42:2c:be:87:8b:f2:2c:d3:
ba:ff:0d:62:a3:e5:7c:37:dd:62:b3:85:c6:09:b5:
ca:90:b2:30:07:b0:e5:3d:0b:85:9a:22:ae:6a:9b:
8b:5e:3e:93:42:1f:20:99:c9:ef:27:23:ed:f7:27:
fb:81:61:38:98:f4:54:31:78:a1:11:bc:b5:70:a7:
7b:d6:d0:27:8c:4b:33:96:ea:ee:e6:18:53:3c:f0:
a0:67:0e:36:7f:21:16:14:55:5d:bd:c6:c4:75:72:
f8:65:3a:67:fa:49:c4:d4:82:6d:94:ea:c2:3c:3b:
bf:d5:48:64:d7:67:83:db:ab:31:60:70:65:f2:3e:
c3:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:96:5E:DF:6E:E4:9E:C2:5F:A9:25:13:5F:12:4D:7E:CF:7F:8C:88
X509v3 Authority Key Identifier:
keyid:0E:DD:A2:C6:07:4C:56:24:1F:5C:7E:06:0C:AC:CB:65:7F:64:E9:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dt2ixgdMViQfXH4GDKzLZX9k6Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/vJZe327knsJfqSUTXxJNfs9_jIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ba459f-846f-47a9-a625-671158a63c23/1/Dt2ixgdMViQfXH4GDKzLZX9k6Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.52.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:1d:7e:22:24:d4:2c:94:c0:ac:64:c2:43:61:4c:f5:e5:15:
27:db:32:99:20:ea:48:e4:b1:f5:12:c0:af:8c:07:10:82:06:
e1:98:59:a6:84:8f:64:77:1b:bd:c9:aa:40:fc:48:27:39:b7:
97:af:32:d1:77:5c:00:78:68:a4:64:c7:dc:c7:2d:13:74:c9:
54:6d:9d:ac:02:af:d2:d7:8b:5e:b2:47:75:31:5d:82:82:ee:
80:11:03:a5:a0:4e:ee:8c:ea:fe:cf:a2:6e:a8:25:21:b1:73:
2b:a4:d5:e2:a6:79:19:89:82:d7:20:f6:6a:84:8c:e8:7a:5d:
51:cb:df:43:ff:11:8e:e0:cb:5b:ae:1c:ba:55:4e:81:7d:7e:
10:90:97:3c:6a:99:47:52:d3:e9:2d:dd:b5:46:0f:8a:49:95:
68:f0:1c:e8:bf:da:92:50:2c:e8:a8:a1:2b:59:0f:e4:24:32:
28:6e:6d:74:4f:f4:3d:f2:f3:c6:cd:56:26:38:b9:d9:ca:95:
af:ed:7b:cf:3f:56:be:5a:ed:61:08:9c:b8:9b:e2:5f:9d:55:
03:b8:f8:6c:9a:65:d7:1f:c9:67:d0:73:d2:a6:76:2b:dc:8d:
15:18:83:cf:1f:a6:e6:6b:f4:91:3c:98:c8:2f:d2:78:41:91:
ad:86:3e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:30 2023 by rpki-client on console.sobornost.net