Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/DYEaKkpHB40QtuaYtZ23yHcz5SA.roa
File: DYEaKkpHB40QtuaYtZ23yHcz5SA.roa (raw, json)
Hash identifier: 6wAkThWS75lBZ4uTJLEONkJOGc/YTEuAXXmV5XUcvXk=
Subject key identifier: 0D:81:1A:2A:4A:47:07:8D:10:B6:E6:98:B5:9D:B7:C8:77:33:E5:20
Certificate issuer: /CN=23ee5e71409b21fd5c820f3d3ac3fdc0fce75a0b
Certificate serial: 03A09517
Authority key identifier: 23:EE:5E:71:40:9B:21:FD:5C:82:0F:3D:3A:C3:FD:C0:FC:E7:5A:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-5ecUCbIf1cgg89OsP9wPznWgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/DYEaKkpHB40QtuaYtZ23yHcz5SA.roa
Signing time: Sat 01 Jan 2022 11:56:48 +0000
ROA not before: Sat 01 Jan 2022 11:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.210.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60855575 (0x3a09517)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ee5e71409b21fd5c820f3d3ac3fdc0fce75a0b
Validity
Not Before: Jan 1 11:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d811a2a4a47078d10b6e698b59db7c87733e520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f4:d0:08:42:f6:ab:47:5c:45:79:4c:34:c9:
78:bd:31:a9:6a:7b:04:22:d2:81:da:39:24:91:da:
96:1f:43:91:e6:7c:56:8e:e4:91:71:82:d9:79:dd:
f5:06:11:c7:c1:14:30:10:34:98:48:7b:8b:39:ae:
bc:bb:9c:a3:59:c3:57:a8:a5:b5:ea:10:0f:06:15:
6e:6c:da:6a:ad:d2:b0:54:b1:f1:b2:b2:6b:cf:29:
ad:d2:ce:80:5b:fd:83:6c:66:20:47:1c:4a:43:9a:
22:c3:38:64:31:44:53:87:25:90:01:58:c8:80:63:
cf:eb:1c:b2:c2:7d:02:38:60:68:32:9f:cf:08:42:
a0:28:86:99:9e:87:b2:b7:84:70:b2:0c:d6:e5:bd:
13:6d:a9:c3:5e:10:5d:c9:2e:45:2b:54:c3:e0:8e:
5e:a3:3c:8e:fe:74:83:a8:63:47:9a:bd:21:14:9f:
b0:06:78:6a:c9:7b:08:e3:09:43:5c:af:3e:33:cd:
81:77:0e:73:e3:a9:4b:84:ce:1f:a3:58:04:5a:dd:
46:b4:56:bd:4c:9c:b4:c1:c5:0b:91:33:37:23:7b:
34:c9:bb:65:ad:13:b2:02:54:8c:09:b1:cb:96:ec:
56:f0:c2:10:cb:4c:30:ba:87:70:b6:59:ca:23:ca:
f6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:81:1A:2A:4A:47:07:8D:10:B6:E6:98:B5:9D:B7:C8:77:33:E5:20
X509v3 Authority Key Identifier:
keyid:23:EE:5E:71:40:9B:21:FD:5C:82:0F:3D:3A:C3:FD:C0:FC:E7:5A:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-5ecUCbIf1cgg89OsP9wPznWgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/DYEaKkpHB40QtuaYtZ23yHcz5SA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/34b93c-a03d-4ada-83fc-bc637a8512b1/1/I-5ecUCbIf1cgg89OsP9wPznWgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.156.0/24
Signature Algorithm: sha256WithRSAEncryption
42:99:62:94:67:5f:ac:ba:47:40:59:78:5b:a4:99:ce:10:91:
a9:f0:0d:4e:7c:88:c4:80:a2:26:6e:b5:ab:e4:67:4f:87:fa:
24:d9:05:f6:96:cd:74:b5:7d:98:b6:08:d4:18:b0:e5:3b:82:
1b:c5:f6:91:80:0c:b3:38:29:75:cf:a2:c9:f3:88:46:6e:5e:
2b:4f:14:b8:07:57:c2:a1:78:02:62:f8:83:fc:4b:c3:78:e8:
c4:6a:81:e3:2c:9b:b3:11:92:de:d2:df:6c:3d:0c:2f:48:a5:
a3:0b:7f:81:91:87:37:07:d2:bd:6e:25:b6:f5:8e:3a:a2:3b:
7a:03:f6:2b:75:49:77:d4:2c:87:34:7a:58:a8:b2:dc:37:40:
c4:08:7a:5c:ba:45:48:fb:f1:b1:cc:a2:58:26:bf:12:ba:e5:
56:22:14:20:ac:da:99:fe:10:63:fb:71:a3:98:c2:b3:54:02:
26:07:2c:8a:0a:96:a1:a0:d5:6e:ab:49:29:d3:41:64:d5:b2:
ad:92:a1:bc:44:b1:f7:d4:6c:f6:e2:31:f9:28:54:85:83:40:
3a:18:75:e1:ff:82:da:48:82:f3:73:10:df:d4:28:11:ba:13:
74:55:79:b5:c0:e5:cf:ff:52:db:f4:99:28:ca:70:c5:b3:3e:
46:eb:e8:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:17:45 2025 by rpki-client