Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/964088-8abd-454c-9927-4464a13bf1a0/1/fI21fb3vOk0CQ5za3wLM8prgXwo.roa
File: fI21fb3vOk0CQ5za3wLM8prgXwo.roa (raw, json)
Hash identifier: Ki/jLnY4AjyDvTXOinVcn2/u7QocRxQMLWUcnPC3x3k=
Subject key identifier: 7C:8D:B5:7D:BD:EF:3A:4D:02:43:9C:DA:DF:02:CC:F2:9A:E0:5F:0A
Certificate issuer: /CN=5c3eac0f76ad21cd5244593e4c17ba671b5e8ee9
Certificate serial: 031B0CBD
Authority key identifier: 5C:3E:AC:0F:76:AD:21:CD:52:44:59:3E:4C:17:BA:67:1B:5E:8E:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XD6sD3atIc1SRFk-TBe6Zxtejuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/964088-8abd-454c-9927-4464a13bf1a0/1/fI21fb3vOk0CQ5za3wLM8prgXwo.roa
Signing time: Sat 01 Jan 2022 07:55:27 +0000
ROA not before: Sat 01 Jan 2022 07:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211929
IP address blocks: 185.230.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52104381 (0x31b0cbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c3eac0f76ad21cd5244593e4c17ba671b5e8ee9
Validity
Not Before: Jan 1 07:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c8db57dbdef3a4d02439cdadf02ccf29ae05f0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:59:1a:d9:44:20:97:c0:a4:da:b9:71:20:69:
ac:46:e7:f3:02:9a:9c:48:3e:42:a2:73:fa:6d:ea:
d8:03:4b:35:d5:92:1d:f8:d3:60:21:c7:28:8a:b2:
8a:e8:25:80:32:9c:5d:01:8d:e3:9e:fa:a4:63:60:
9b:b0:f5:53:8e:a0:ce:6b:b4:0f:80:41:ad:d0:2f:
03:00:2a:2f:e9:80:c8:e2:f3:aa:9e:71:50:fb:76:
d9:f6:fc:3b:13:54:0e:b2:2d:48:7c:65:bc:03:31:
a4:27:94:49:eb:61:41:33:cc:32:50:8f:8f:ff:a7:
8f:9d:a4:75:1a:57:34:0e:ff:a5:da:19:a1:cb:9a:
d0:f2:f8:68:9f:49:65:94:ea:e5:10:4e:80:68:84:
a8:c1:09:89:40:1c:f3:94:dc:19:ff:5b:8d:8f:5e:
b7:a2:47:67:b6:ac:b3:3b:0c:24:7c:77:53:ce:e1:
25:77:67:cb:ae:bf:04:18:11:c8:ba:c5:21:79:b1:
55:d2:79:29:f7:e1:3b:74:c0:91:f1:59:cd:50:bd:
da:ec:96:9d:2f:64:11:60:de:19:51:f1:10:d1:9d:
08:c5:39:80:21:bc:6e:35:65:44:34:c6:22:38:a5:
fb:b3:4b:06:18:14:6b:ff:6f:b3:88:f1:64:61:27:
8c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:8D:B5:7D:BD:EF:3A:4D:02:43:9C:DA:DF:02:CC:F2:9A:E0:5F:0A
X509v3 Authority Key Identifier:
keyid:5C:3E:AC:0F:76:AD:21:CD:52:44:59:3E:4C:17:BA:67:1B:5E:8E:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XD6sD3atIc1SRFk-TBe6Zxtejuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/964088-8abd-454c-9927-4464a13bf1a0/1/fI21fb3vOk0CQ5za3wLM8prgXwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/964088-8abd-454c-9927-4464a13bf1a0/1/XD6sD3atIc1SRFk-TBe6Zxtejuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.198.0/24
Signature Algorithm: sha256WithRSAEncryption
98:e1:f6:c0:2e:53:8a:ab:0b:59:36:db:ef:e0:8c:25:99:86:
69:f3:18:f8:ff:54:4e:a1:39:b0:9b:e0:9e:b2:6f:aa:e3:37:
6b:10:89:68:e6:f4:8d:40:a0:b0:18:4e:03:50:04:ac:33:82:
c0:6d:d0:37:0d:0f:48:51:3a:5a:37:75:38:40:e5:0f:a1:ae:
49:f4:05:2b:35:60:05:0e:cd:6a:7b:91:08:34:cf:ad:fd:3a:
21:f0:6c:4b:de:e4:2b:78:60:12:03:3f:f4:70:23:99:2d:95:
35:20:49:d2:92:f7:78:fe:94:43:8a:f5:ea:6b:96:67:d6:31:
c9:ac:2b:cc:ce:01:7c:7c:ff:9e:f3:a7:dd:39:7e:bd:28:34:
f1:c2:12:b5:10:0b:73:2b:05:fa:d0:80:94:a2:61:3a:54:73:
64:82:f3:2e:d9:39:6a:ac:23:1a:d6:0f:38:10:a3:c9:b8:a2:
59:f4:0c:30:ed:4c:46:bf:01:65:d1:87:1a:7e:75:7e:1e:82:
94:dd:1b:2a:4a:06:c2:3b:02:eb:b7:29:8b:1b:c4:e2:57:dd:
ae:ed:e1:83:51:8d:db:ff:06:5a:34:ba:65:42:cf:a2:be:08:
55:ab:9f:86:10:e9:3c:a3:f3:62:65:43:7a:9f:1a:c0:7f:c1:
09:de:c6:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:55 2024 by rpki-client on console-fra.rpki-client.org