Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_2X9FE8zb6oC4RD9DoRqAoPG44M.roa
File: _2X9FE8zb6oC4RD9DoRqAoPG44M.roa (raw, json)
Hash identifier: Dkz5038Ln0YN2rP2o0o7VIh9Iq1dq7sGKJCEaVBYO9A=
Subject key identifier: FF:65:FD:14:4F:33:6F:AA:02:E1:10:FD:0E:84:6A:02:83:C6:E3:83
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 08AFD27A
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_2X9FE8zb6oC4RD9DoRqAoPG44M.roa
Signing time: Sat 01 Jan 2022 13:02:02 +0000
ROA not before: Sat 01 Jan 2022 13:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48557
IP address blocks: 185.138.230.0/23 maxlen: 23
185.138.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145740410 (0x8afd27a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 13:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff65fd144f336faa02e110fd0e846a0283c6e383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:41:82:fb:47:43:15:69:d9:59:52:05:e6:2d:
21:c4:57:57:f2:77:de:e0:79:92:bb:31:31:aa:15:
9f:9c:82:11:b7:87:bd:21:cb:84:c3:a9:7c:6c:2b:
2f:b8:8b:88:5f:b7:08:27:71:81:8d:18:6d:44:9a:
b7:b4:fb:65:af:8a:32:32:42:ba:50:30:7c:46:34:
14:1f:53:3c:2d:14:0f:90:44:f8:ef:ca:5c:84:67:
a1:61:f8:9e:de:ea:aa:02:8c:6b:a1:cd:47:d3:05:
77:ef:82:3d:a8:00:a7:51:cd:02:91:c8:6f:a7:2a:
1f:d6:20:ba:a3:00:50:64:a6:fd:be:17:29:a3:85:
85:8c:da:1b:f0:6c:87:17:db:f8:6a:3e:ea:60:00:
36:1e:45:c9:88:c4:c2:de:4a:69:81:0f:18:5b:d2:
56:9f:d0:d5:f8:b7:4e:61:1b:ae:83:85:e6:c0:37:
8d:80:87:35:5a:94:b3:cb:ec:1b:4c:71:83:76:bd:
d1:1e:a1:ca:2b:80:28:1b:21:ba:5d:1b:e7:e0:e0:
d3:80:ce:11:e2:bf:84:2d:a9:67:1a:7e:0a:ae:aa:
15:1f:84:5c:48:29:e0:e8:a4:70:1a:c6:36:19:15:
18:07:63:c4:1f:dd:11:17:ed:ef:c6:a9:4a:69:6b:
14:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:65:FD:14:4F:33:6F:AA:02:E1:10:FD:0E:84:6A:02:83:C6:E3:83
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/_2X9FE8zb6oC4RD9DoRqAoPG44M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.230.0/23
Signature Algorithm: sha256WithRSAEncryption
33:03:9b:15:4f:a2:6c:f4:c1:28:50:5c:d0:d4:2d:62:e8:60:
20:5f:c1:fe:cb:dc:68:a0:1b:e4:4e:04:04:5e:f3:0e:62:ff:
63:9b:30:b7:60:08:14:ba:22:92:89:02:b0:7c:2e:f1:14:c1:
63:84:a5:7f:d9:b5:4b:50:52:09:63:81:f2:a0:16:a6:1d:55:
a0:4a:8c:7b:db:4b:7f:d3:04:c5:25:b8:18:45:54:45:d3:d9:
4f:a4:7a:69:ea:e3:14:6d:16:11:14:06:19:17:f4:ac:fb:85:
bf:71:50:3b:8c:ee:bc:48:43:11:bd:12:25:7d:dc:61:54:bd:
17:fd:89:86:56:ae:0a:1a:a7:fc:c3:ce:96:10:82:24:13:e8:
0c:f4:69:40:b4:59:73:58:0b:01:35:79:b3:6b:aa:17:81:c7:
12:9c:79:11:0f:65:f5:31:3c:56:2b:92:9d:8f:04:05:ef:cd:
15:77:42:71:ee:21:6a:f0:29:08:81:3b:10:72:b2:f0:8b:4e:
03:99:2b:b7:ed:dd:1a:84:da:73:ad:91:02:43:5d:af:bf:c5:
c8:8a:c0:dd:3c:86:32:df:00:1a:5c:23:07:a5:d3:e6:0d:d2:
8f:f3:51:69:14:de:13:19:35:51:6e:de:9e:7e:3f:0f:9c:0f:
8e:83:99:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:22 2023 by rpki-client on console.sobornost.net