Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/Gn5nm8MvRAmME-a51BKpk7TukSU.roa
File: Gn5nm8MvRAmME-a51BKpk7TukSU.roa (raw, json)
Hash identifier: BsOeIyTyJ3XK9ROlbsFrxtYiWvWGmkyZdsRuZzx8rv8=
Subject key identifier: 1A:7E:67:9B:C3:2F:44:09:8C:13:E6:B9:D4:12:A9:93:B4:EE:91:25
Certificate issuer: /CN=8d8740799c91c2630a8092178db824f3a889a75f
Certificate serial: 17A7FEFE
Authority key identifier: 8D:87:40:79:9C:91:C2:63:0A:80:92:17:8D:B8:24:F3:A8:89:A7:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYdAeZyRwmMKgJIXjbgk86iJp18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/Gn5nm8MvRAmME-a51BKpk7TukSU.roa
Signing time: Sat 01 Jan 2022 15:55:50 +0000
ROA not before: Sat 01 Jan 2022 15:55:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8666
IP address blocks: 185.121.53.0/24 maxlen: 32
185.121.52.0/24 maxlen: 24
2a06:9cc0::/29 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396885758 (0x17a7fefe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d8740799c91c2630a8092178db824f3a889a75f
Validity
Not Before: Jan 1 15:55:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1a7e679bc32f44098c13e6b9d412a993b4ee9125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9e:b1:cc:75:72:e6:50:92:d6:0e:0a:bb:e6:
3c:aa:35:c0:13:5d:8c:32:ce:f1:8a:f2:7f:f6:b1:
15:2e:7a:aa:5e:56:40:6c:bd:86:45:f2:df:c7:fd:
3e:1b:7b:08:96:0e:70:e0:a7:47:c4:51:3d:bb:20:
64:07:c3:d5:62:00:95:d2:ee:a3:35:52:34:25:2c:
3c:06:1d:5d:5d:cc:20:5d:93:54:b0:b5:49:b4:c5:
ed:ff:69:04:58:97:77:59:e0:11:a6:e6:98:5d:4c:
90:f3:02:b7:a0:a7:4e:b6:37:f6:a0:65:af:b1:c9:
29:77:d7:f1:0a:89:fa:bd:73:37:06:2d:1a:ee:32:
9d:ab:e6:a6:a0:f3:df:6c:c4:5d:0f:90:a4:49:71:
19:a6:12:2d:cf:22:b7:91:01:85:51:cd:a1:ab:9c:
5b:16:99:7a:b9:76:b3:ef:56:39:e2:56:f2:10:6d:
77:e5:73:9d:5a:37:ad:22:32:a4:72:01:8b:50:78:
d0:28:aa:3d:ea:ee:e0:68:cd:0a:0e:0a:ee:a0:d4:
2b:71:72:0d:61:8b:d2:9d:7c:40:98:cc:f7:f2:fb:
3c:e3:43:d4:14:19:87:0a:c0:67:56:fe:1b:81:ed:
8a:81:1c:bc:11:0b:c2:41:ea:77:fd:d7:5b:4b:55:
a2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:7E:67:9B:C3:2F:44:09:8C:13:E6:B9:D4:12:A9:93:B4:EE:91:25
X509v3 Authority Key Identifier:
keyid:8D:87:40:79:9C:91:C2:63:0A:80:92:17:8D:B8:24:F3:A8:89:A7:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYdAeZyRwmMKgJIXjbgk86iJp18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/Gn5nm8MvRAmME-a51BKpk7TukSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/jYdAeZyRwmMKgJIXjbgk86iJp18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.52.0/23
IPv6:
2a06:9cc0::/29
Signature Algorithm: sha256WithRSAEncryption
24:22:76:3b:84:0d:79:11:ed:bf:e2:7e:e5:e2:0d:f7:3d:64:
b6:d1:12:43:3b:4b:ba:0f:5f:b9:1b:60:23:c2:ea:8f:0a:2a:
0d:53:1f:df:02:6c:02:bb:4b:27:59:5b:bc:73:e7:e1:d1:51:
71:83:d0:47:3e:da:28:82:37:c5:6c:fe:c1:d1:3a:d8:71:b3:
85:0c:e4:f9:c5:cb:45:96:8f:1a:f1:89:66:7b:61:a2:be:23:
63:ce:dc:f7:ce:40:db:92:d6:e9:05:e2:65:41:11:12:a7:ad:
f0:3a:d7:73:1d:e3:cd:d5:0e:40:ef:f9:47:10:1c:77:2d:d3:
f0:ca:e9:e2:b2:60:ad:28:9f:91:a8:37:fe:63:91:f1:9f:6c:
7c:5d:2f:66:f5:58:da:28:51:a6:3c:fc:e4:b6:d0:02:7e:ff:
db:1b:b8:34:72:9a:31:ef:d1:2e:18:c4:03:49:26:a9:35:e6:
0e:e4:b1:88:96:14:93:6f:25:9b:0e:81:fd:c0:df:15:c2:db:
36:a9:e4:0b:87:7e:63:f9:d8:47:a8:af:f3:f2:9b:5a:70:75:
69:54:ad:61:92:e2:55:61:12:81:4b:31:d1:2a:94:73:33:2c:
71:af:82:c5:18:03:a6:ea:54:0c:c4:b5:57:84:bc:5b:ac:30:
e9:76:a0:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:31 2023 by rpki-client on console.sobornost.net