Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/jbI5YMJYOuN7yr8vbFxhaqveJ4w.roa
File: jbI5YMJYOuN7yr8vbFxhaqveJ4w.roa (raw, json)
Hash identifier: sQiU6qGQ3tqEwtarBsUPjeT8CmV0BknrSlx6JJPMWyE=
Subject key identifier: 8D:B2:39:60:C2:58:3A:E3:7B:CA:BF:2F:6C:5C:61:6A:AB:DE:27:8C
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01490C16
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/jbI5YMJYOuN7yr8vbFxhaqveJ4w.roa
Signing time: Sun 26 Jun 2022 09:20:24 +0000
ROA not before: Sun 26 Jun 2022 09:20:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210619
IP address blocks: 185.253.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21564438 (0x1490c16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Jun 26 09:20:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8db23960c2583ae37bcabf2f6c5c616aabde278c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:30:6f:b7:ba:0c:a6:8b:c3:56:14:37:49:e4:
5b:8e:bf:18:fe:cd:d3:c4:b2:78:78:a1:5a:b0:11:
14:27:74:0a:a9:25:0c:7c:4b:14:e5:14:d0:ea:f0:
8f:1e:32:3d:0b:9c:4f:79:6e:c6:34:14:4c:03:dc:
4b:4e:95:f4:fa:37:67:e7:77:9b:31:23:4f:d4:2c:
60:b4:8d:ee:5f:d8:d8:cb:ea:63:50:10:14:08:c0:
3d:a2:be:26:42:86:8e:63:3a:7e:30:f5:9e:28:99:
c9:b3:58:4b:3b:66:eb:1d:59:b0:26:da:4a:3d:51:
4f:f7:0f:48:a0:25:57:81:3e:14:dd:fa:3a:4c:0e:
67:b6:11:20:9b:66:55:7a:ca:a8:34:a6:d4:62:4a:
bb:68:d8:4b:e1:43:be:94:28:6a:0b:6c:ea:b8:c6:
a7:d7:03:d5:81:f4:13:38:62:b2:9c:3b:b2:7e:5b:
67:7c:d8:d7:94:8b:eb:6b:c3:ed:80:73:a0:8f:e1:
a2:88:e7:ba:ff:63:90:e6:7c:1f:3d:33:93:42:79:
c5:d5:68:ec:e6:67:b9:73:89:fd:02:e5:6e:36:ff:
0e:e0:2e:ca:8e:f0:4d:85:a9:ed:d9:67:62:ca:33:
96:63:6f:86:a1:11:c9:82:64:c7:bd:09:20:be:69:
b6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B2:39:60:C2:58:3A:E3:7B:CA:BF:2F:6C:5C:61:6A:AB:DE:27:8C
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/jbI5YMJYOuN7yr8vbFxhaqveJ4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.54.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b2:de:3b:9f:d0:0e:35:47:04:4b:04:41:f4:dc:3f:fe:51:
5d:d5:48:1a:4e:19:5e:c7:9f:b0:de:a3:3e:7b:71:01:da:05:
c7:24:c4:c8:59:60:d8:ba:34:82:b3:7c:28:1d:0d:43:66:07:
d7:0e:4a:bd:ae:b2:83:ba:df:f4:cc:a2:ee:15:44:b1:da:23:
6d:e7:6b:f2:4b:ef:20:3d:1e:c5:60:d1:c0:db:dd:fe:6c:28:
55:6d:98:cb:1b:ff:f3:fa:d6:0e:fd:52:b2:6d:18:ec:e0:61:
a3:38:b2:54:7a:43:9c:a4:74:9f:05:cb:c7:5a:ba:2a:f8:a7:
b1:79:08:a7:0f:52:cb:5b:86:a2:ce:eb:c9:66:c7:3c:ef:ff:
5e:8e:b2:b0:70:2e:87:58:76:13:d8:d4:7a:be:c4:90:b0:1d:
e3:22:56:d8:c9:33:29:68:82:31:4d:e3:ca:9f:01:8b:50:35:
7f:e3:a8:2a:44:7a:9e:58:f0:f7:e1:12:13:9f:ec:7e:62:0f:
87:fa:e0:82:a4:25:96:94:51:c4:1e:1e:5d:9b:ba:bf:a1:76:
49:12:ec:97:da:e4:16:75:27:f8:c2:ee:5d:b8:ef:b0:3b:78:
49:ad:e5:eb:cc:0a:cd:d2:a2:a4:3a:15:76:15:f8:f8:0f:29:
e8:9e:a3:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:22 2023 by rpki-client on console-fra.rpki-client.org