Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/cjNdQJ_L5ppyvrBT_5TA49En2zE.roa
File: cjNdQJ_L5ppyvrBT_5TA49En2zE.roa (raw, json)
Hash identifier: pqLAfuqSAQ3WUMVsjQptuBfHolXJOnJu0CBkOw5R9U8=
Subject key identifier: 72:33:5D:40:9F:CB:E6:9A:72:BE:B0:53:FF:94:C0:E3:D1:27:DB:31
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 0183E66D151ACB78225DE5E5314F828D3B4D
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/cjNdQJ_L5ppyvrBT_5TA49En2zE.roa
Signing time: Mon 17 Oct 2022 14:50:51 +0000
ROA not before: Mon 17 Oct 2022 14:50:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212091
IP address blocks: 185.230.103.0/24 maxlen: 24
2a10:b580::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:6d:15:1a:cb:78:22:5d:e5:e5:31:4f:82:8d:3b:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Oct 17 14:50:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72335d409fcbe69a72beb053ff94c0e3d127db31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:79:be:3e:d4:8c:78:19:a5:f2:69:fa:94:50:
72:8d:4a:47:89:ff:ab:7a:21:ae:5e:f0:fd:1b:9a:
92:3f:68:c9:91:e9:14:97:79:1a:1f:29:cc:bf:65:
8f:4d:0a:89:ae:10:1b:83:91:21:f0:47:cc:2d:c7:
37:6a:fd:05:e6:6e:d2:42:23:17:09:c4:36:8d:db:
c7:d6:30:7e:07:10:6b:26:1b:ae:e5:b9:c5:21:69:
fe:c9:3e:af:89:27:e2:bb:36:db:2a:58:c4:ab:ae:
61:ae:a1:6c:2b:10:ae:59:0b:4b:18:72:98:1a:6e:
8c:e3:46:a1:3d:17:38:69:81:3d:e7:bf:1e:df:c9:
36:ef:2f:77:23:05:15:d7:3f:58:b4:00:1b:78:bf:
7b:c7:76:38:50:f4:44:cd:01:ca:51:ea:a9:15:9d:
b6:d6:15:5f:6f:c5:2a:42:59:ea:58:b3:5f:f5:51:
33:96:ff:1f:85:15:3f:2b:74:ad:e4:0e:46:c3:b1:
f3:61:fb:22:b1:76:29:c9:fe:8f:09:e7:74:8a:44:
f3:6b:80:a5:13:7b:84:de:95:8c:e8:ad:c3:ac:d5:
59:66:a9:aa:47:68:ba:05:74:05:3c:e0:4e:81:c4:
4e:0e:31:43:6c:bf:a6:5b:56:70:09:94:5d:46:f7:
24:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:33:5D:40:9F:CB:E6:9A:72:BE:B0:53:FF:94:C0:E3:D1:27:DB:31
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/cjNdQJ_L5ppyvrBT_5TA49En2zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.103.0/24
IPv6:
2a10:b580::/48
Signature Algorithm: sha256WithRSAEncryption
4b:de:b8:5b:ab:44:58:ce:b3:64:79:30:7f:3b:c6:e3:4f:b5:
a9:e8:bb:73:54:35:52:6c:58:30:fa:74:bf:16:3b:63:ec:33:
73:02:ee:e4:97:6b:f2:ec:89:a5:4d:a8:79:e1:c6:03:5a:1b:
9c:47:e3:4c:a5:53:76:da:97:a7:d4:e7:d5:15:9b:a0:9a:92:
d2:1f:cd:d7:ba:40:24:ab:e4:d5:99:57:68:aa:a9:26:84:c5:
43:33:b9:fc:7a:ac:f2:a2:c6:0d:19:de:26:7a:5a:dc:39:95:
2f:5d:61:58:91:04:1d:4e:fc:f2:9b:f9:d9:b9:19:84:13:8f:
24:3a:5b:49:f9:7c:b0:f8:69:ed:48:06:3a:63:62:5a:98:59:
36:ea:61:b0:a5:76:53:5d:a0:a5:20:15:46:76:99:ce:c2:d3:
9f:be:1b:fc:2c:48:d1:10:83:c1:3e:81:e6:5b:5c:0f:0b:9e:
07:cf:c4:1c:e0:b9:fe:10:ef:91:af:3f:8a:1f:38:5f:85:53:
5e:77:b9:cc:41:d8:33:dc:6e:ba:1f:96:5b:b2:2c:70:f8:51:
dc:89:ad:93:fd:9e:e6:ee:9c:36:6f:7a:76:3e:d5:a1:80:09:
f4:49:47:0d:3a:ff:d0:66:c3:83:ca:9c:1a:9a:12:3f:11:2c:
96:16:60:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:55 2023 by rpki-client on console.sobornost.net