Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/SBY1oQ0vnADfM5YOAHfuMx8LbeQ.roa
File: SBY1oQ0vnADfM5YOAHfuMx8LbeQ.roa (raw, json)
Hash identifier: JkpuCAsod2NB+peDO8EhvbpoNTkUMne/yaOqLapLBdo=
Subject key identifier: 48:16:35:A1:0D:2F:9C:00:DF:33:96:0E:00:77:EE:33:1F:0B:6D:E4
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 01838ED15CD7DEA5176BCFF03B0FBAB64072
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/SBY1oQ0vnADfM5YOAHfuMx8LbeQ.roa
Signing time: Fri 30 Sep 2022 14:33:48 +0000
ROA not before: Fri 30 Sep 2022 14:33:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213202
IP address blocks: 185.143.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8e:d1:5c:d7:de:a5:17:6b:cf:f0:3b:0f:ba:b6:40:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Sep 30 14:33:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=481635a10d2f9c00df33960e0077ee331f0b6de4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:94:0c:ff:fc:f9:da:bc:f7:15:06:15:de:6f:
81:6d:0a:e4:b5:e4:84:7e:e6:0a:d3:63:45:d1:f2:
d5:a6:d6:70:34:b4:52:73:f9:fc:fa:cd:22:b1:a7:
f7:43:c7:b2:f5:a2:ea:49:48:c9:80:90:b9:a2:aa:
bc:54:16:2f:9e:d3:33:d0:eb:22:e2:d3:60:2e:03:
c6:4e:28:4f:82:b5:8b:ef:9a:48:0e:5f:9a:5f:ec:
a0:15:29:11:05:ed:3a:d5:09:b9:89:34:01:f9:d6:
b5:37:0d:21:bc:e7:a0:b5:75:3e:f1:bd:9a:25:0c:
f6:4d:1f:59:53:09:89:88:c2:26:98:e0:33:9f:86:
62:82:c4:6d:fa:5b:b3:9a:8b:d9:1a:39:b3:c0:f0:
87:24:88:a4:9a:21:6c:20:c8:d3:26:76:7f:3e:d6:
a8:7c:c3:85:71:b5:63:45:cf:f4:c2:36:f4:65:98:
81:b1:5b:66:3d:9f:85:d7:a4:bd:ba:9c:16:c4:d5:
54:46:0b:60:fe:a7:b9:69:46:f1:c1:79:93:9b:a5:
15:47:54:a4:4e:77:90:46:66:b7:69:5a:ba:e6:27:
0a:8e:0a:06:cd:d2:71:c8:06:5f:33:f8:a0:26:a1:
c4:a8:dc:30:ee:02:49:0b:ac:be:2e:21:83:d6:34:
15:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:16:35:A1:0D:2F:9C:00:DF:33:96:0E:00:77:EE:33:1F:0B:6D:E4
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/SBY1oQ0vnADfM5YOAHfuMx8LbeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.241.0/24
Signature Algorithm: sha256WithRSAEncryption
10:28:6c:d7:2a:e2:ee:1d:9f:83:89:79:ec:fe:47:7a:fa:a2:
52:0a:c9:e7:ef:ab:6e:c4:d7:9c:1c:5b:6e:7d:3e:53:05:46:
43:3a:43:75:54:7e:4f:5f:29:e2:78:65:1e:4a:aa:8f:87:35:
78:32:5b:4b:4a:64:80:7f:60:a4:25:48:2f:d9:ad:04:e7:45:
5a:dc:00:f3:5b:07:15:f0:c0:27:c5:cb:3c:c4:32:23:90:06:
ef:7a:fa:9f:ab:a4:1d:02:42:e9:af:dd:11:aa:90:76:a6:85:
47:8a:02:a2:38:02:bd:7a:f2:04:69:72:82:f0:e2:be:b9:ca:
e7:5c:08:4c:8e:e1:b2:2d:5d:5d:aa:7b:c2:db:34:29:7a:05:
06:fe:e3:64:ff:01:b9:ce:c4:2e:b7:50:b3:b6:38:8b:69:96:
4e:cc:7b:4b:62:e6:1a:ce:f0:fd:a9:14:85:90:6c:04:09:05:
b3:d7:37:b9:7f:7c:35:69:45:c9:67:23:e3:3c:3b:a2:7b:36:
35:17:8c:ed:0c:81:61:41:9d:fe:f7:c1:52:22:3c:ea:64:ec:
ba:43:ff:51:e6:45:e1:f2:a4:31:14:47:e5:05:b7:14:18:c5:
6b:00:b9:86:ef:e0:60:f3:8d:ab:fd:ca:7c:05:c7:81:f6:66:
01:2e:22:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:07 2024 by rpki-client on console-fra.rpki-client.org