Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aa7426-711d-4f3e-8df9-5c0e316d28b8/1/d2NwpkWA7C0oQA2WEncW_QYHyVQ.roa
File: d2NwpkWA7C0oQA2WEncW_QYHyVQ.roa (raw, json)
Hash identifier: 6BbTNmLooM1a1HGxl1DqrGkBWEvW7aCQJUQKWB93N3A=
Subject key identifier: 77:63:70:A6:45:80:EC:2D:28:40:0D:96:12:77:16:FD:06:07:C9:54
Certificate issuer: /CN=f04d278485ffaea79e910a262533a80b5ab91c8a
Certificate serial: 0184E29A3AB92EF901768CD418606326462C
Authority key identifier: F0:4D:27:84:85:FF:AE:A7:9E:91:0A:26:25:33:A8:0B:5A:B9:1C:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E0nhIX_rqeekQomJTOoC1q5HIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa7426-711d-4f3e-8df9-5c0e316d28b8/1/d2NwpkWA7C0oQA2WEncW_QYHyVQ.roa
Signing time: Mon 05 Dec 2022 14:04:28 +0000
ROA not before: Mon 05 Dec 2022 14:04:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201216
IP address blocks: 185.253.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:9a:3a:b9:2e:f9:01:76:8c:d4:18:60:63:26:46:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04d278485ffaea79e910a262533a80b5ab91c8a
Validity
Not Before: Dec 5 14:04:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=776370a64580ec2d28400d96127716fd0607c954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:40:fa:21:32:87:24:b7:9c:a2:07:67:96:cc:
b0:89:42:57:6f:3c:de:cf:c1:78:5a:27:7d:70:2b:
b9:2c:de:96:a5:b4:ce:ca:30:f4:cb:1c:18:34:a4:
fe:25:26:5f:2c:49:5c:4e:d0:71:2d:78:ce:0d:e0:
84:0e:c1:35:a0:25:12:0a:19:be:b9:b3:cf:92:cb:
3a:69:76:d6:6f:ea:85:39:f4:c5:58:53:81:72:0c:
85:91:99:66:d0:96:28:59:e3:47:40:bc:4a:50:8a:
28:52:50:78:ba:50:f5:f8:9f:ee:26:ec:6d:7a:94:
7f:b0:1d:13:9b:b7:69:e3:d8:e0:8e:ff:28:74:f3:
e3:fc:55:95:74:80:ed:f3:26:ba:7c:2e:fd:00:86:
84:19:0c:76:50:d7:5e:7d:af:db:ee:61:9c:50:05:
07:db:87:7c:67:36:84:fa:cc:8c:64:6b:4a:88:2b:
14:ea:62:ac:b7:de:0a:7f:88:9b:a4:e4:94:90:1b:
6a:83:d4:75:76:81:0f:c2:cb:8e:62:ff:6e:8b:a1:
69:bf:80:24:f7:7f:a2:d0:8b:1e:02:8b:15:68:0b:
0c:1a:c8:04:4d:32:01:4b:37:f4:cf:3a:92:43:25:
da:c2:46:72:72:ae:36:4c:d0:e3:10:a6:6b:e9:49:
c7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:63:70:A6:45:80:EC:2D:28:40:0D:96:12:77:16:FD:06:07:C9:54
X509v3 Authority Key Identifier:
keyid:F0:4D:27:84:85:FF:AE:A7:9E:91:0A:26:25:33:A8:0B:5A:B9:1C:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E0nhIX_rqeekQomJTOoC1q5HIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa7426-711d-4f3e-8df9-5c0e316d28b8/1/d2NwpkWA7C0oQA2WEncW_QYHyVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa7426-711d-4f3e-8df9-5c0e316d28b8/1/8E0nhIX_rqeekQomJTOoC1q5HIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.108.0/24
Signature Algorithm: sha256WithRSAEncryption
76:cf:00:72:3c:22:90:73:03:54:98:0e:27:47:59:d7:3e:cb:
81:3c:6d:42:34:a0:ea:56:b5:11:36:c6:6d:dc:43:a7:75:b8:
cc:f5:a4:e6:15:1a:64:51:9b:21:b1:37:8c:d1:90:74:61:75:
88:38:58:4f:87:da:74:2b:86:89:3f:a1:57:d8:b5:bf:62:e8:
bf:10:b3:11:46:e8:14:a2:7d:3e:76:00:bb:4c:7d:bc:c8:88:
14:ca:ad:13:87:ad:4c:a2:85:2f:d8:1f:71:4c:0c:1a:db:9e:
69:bc:c0:6c:3e:4d:aa:de:47:b1:db:6c:86:35:66:e7:d6:09:
27:3a:c4:3d:ef:9c:f1:4b:b1:64:7f:49:d7:fa:41:09:65:15:
aa:66:ee:e8:4e:f3:e6:35:34:75:0b:bf:07:d4:ff:d3:f2:df:
62:38:dc:47:5f:b3:7e:d8:72:5b:f0:5d:2f:a9:0c:6c:15:9e:
c6:60:cb:a6:d9:14:cc:15:ff:6d:95:8a:7e:ec:7c:f9:ac:22:
78:b6:9e:ea:dc:f3:a0:ca:f5:08:d2:91:05:b2:0d:37:bd:dd:
98:c7:bd:2e:53:33:f6:b6:2e:c2:61:78:b3:7c:b5:e6:4f:90:
fe:80:72:1b:7e:5a:a2:87:b0:d0:dd:12:31:b7:66:2e:37:cc:
99:b3:90:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:22 2024 by rpki-client on console-fra.rpki-client.org