Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/iYIUesAKKuo7_3xcvS0PRl7EGf0.roa
File: iYIUesAKKuo7_3xcvS0PRl7EGf0.roa (raw, json)
Hash identifier: LJVyuQrn5HkCHwEtQiWDmyB8FCfS2JYMChUm3/+D2Ac=
Subject key identifier: 89:82:14:7A:C0:0A:2A:EA:3B:FF:7C:5C:BD:2D:0F:46:5E:C4:19:FD
Certificate issuer: /CN=22d028f1ba3cefb0debd51be9dac68c9ce56c3d5
Certificate serial: 018410FAA3A095E2DBED52FB9FBB954526A0
Authority key identifier: 22:D0:28:F1:BA:3C:EF:B0:DE:BD:51:BE:9D:AC:68:C9:CE:56:C3:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItAo8bo877DevVG-naxoyc5Ww9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/iYIUesAKKuo7_3xcvS0PRl7EGf0.roa
Signing time: Tue 25 Oct 2022 21:09:32 +0000
ROA not before: Tue 25 Oct 2022 21:09:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.204.184.0/24 maxlen: 24
2a0e:c940::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:10:fa:a3:a0:95:e2:db:ed:52:fb:9f:bb:95:45:26:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d028f1ba3cefb0debd51be9dac68c9ce56c3d5
Validity
Not Before: Oct 25 21:09:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8982147ac00a2aea3bff7c5cbd2d0f465ec419fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e2:88:b5:f3:0b:0b:89:5d:56:cf:77:d0:ea:
e0:d9:4c:99:39:1f:ba:1d:14:7a:f3:51:ed:70:c8:
ac:12:bf:e8:d4:23:d4:d4:e0:c6:db:70:2f:65:28:
81:62:46:bd:7f:11:dd:da:37:15:e5:af:2e:59:c8:
6d:fb:c5:5b:51:f7:33:b0:80:9f:8f:4f:94:a9:9d:
a2:13:de:82:6d:fd:99:15:e0:a1:cf:33:e1:65:d5:
73:29:a6:3a:8b:ea:e1:52:4a:82:91:6e:6e:90:a8:
7e:51:0a:e4:55:53:ff:14:7e:d1:17:e1:9e:31:08:
54:39:99:4a:2a:87:4b:40:9b:3e:cb:8b:09:7b:c4:
8e:d0:6e:c4:cb:87:6a:7c:df:eb:fa:39:80:42:70:
2e:a9:a0:82:56:a5:97:f0:ab:27:4e:7c:a3:83:b4:
40:0b:1b:c1:eb:be:0e:ab:ca:6f:3a:ad:1d:59:f3:
61:f4:79:59:6f:a9:b2:59:19:60:11:f5:60:05:d2:
2d:76:4d:17:84:dc:12:42:fb:3f:29:32:aa:5c:3b:
b9:63:c7:eb:3d:61:ba:a0:4f:ce:3f:ad:25:23:d1:
20:3b:8f:bb:5d:a5:bf:94:44:46:b2:74:03:9e:42:
b6:02:86:4c:f6:b7:93:7e:62:09:d0:7d:78:1b:22:
60:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:82:14:7A:C0:0A:2A:EA:3B:FF:7C:5C:BD:2D:0F:46:5E:C4:19:FD
X509v3 Authority Key Identifier:
keyid:22:D0:28:F1:BA:3C:EF:B0:DE:BD:51:BE:9D:AC:68:C9:CE:56:C3:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItAo8bo877DevVG-naxoyc5Ww9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/iYIUesAKKuo7_3xcvS0PRl7EGf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/63a402-a56a-4a89-a745-946817b59148/1/ItAo8bo877DevVG-naxoyc5Ww9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.184.0/24
IPv6:
2a0e:c940::/29
Signature Algorithm: sha256WithRSAEncryption
de:98:93:30:46:89:2f:e2:db:85:fb:18:94:a9:39:ea:e3:cd:
62:e0:c9:24:b9:d1:d5:f5:64:0a:ef:52:e4:5e:dd:cb:91:12:
ec:2d:62:90:6f:b8:36:12:d5:72:8a:21:56:07:5f:20:57:f7:
71:ca:4e:c8:b2:ea:28:1f:40:26:15:bf:bf:60:2b:c3:80:b5:
8e:bf:d6:fb:71:4f:6d:f5:b6:28:fd:c9:dc:81:e5:60:e6:f9:
01:4b:e9:ce:2e:7d:25:9c:d1:fd:38:41:2e:d6:fa:5b:98:3d:
0a:ec:94:5c:9f:de:00:da:9c:2a:e9:b9:28:54:3f:25:51:8d:
84:79:7f:29:52:1c:2e:82:3d:80:66:c1:c2:8a:4e:1c:28:c6:
78:af:4f:2a:f5:5b:44:46:ff:1d:92:24:4e:36:cf:e7:cd:15:
87:4a:ab:5e:56:84:70:f3:9c:31:e8:a0:23:60:b7:65:cb:d1:
59:46:93:81:fa:4c:00:86:2c:9d:27:09:ef:e5:b3:31:95:de:
13:4b:b5:af:02:31:92:e4:dc:3e:50:65:44:7b:a6:3c:9e:de:
51:14:10:cf:57:95:f8:35:63:28:65:51:58:eb:f8:05:dc:2a:
1a:4e:ec:22:31:5d:05:2e:41:0e:aa:21:f2:da:cf:84:49:23:
b8:e3:38:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:30 2023 by rpki-client on console.sobornost.net