Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/GrP_8iU9YkhMlZbMHTCABzVoolk.roa
File: GrP_8iU9YkhMlZbMHTCABzVoolk.roa (raw, json)
Hash identifier: XMo1nHdAmnvh5NtnX50aj5zFhD49Enl4R3X6tKxpgPc=
Subject key identifier: 1A:B3:FF:F2:25:3D:62:48:4C:95:96:CC:1D:30:80:07:35:68:A2:59
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 13818B5F
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/GrP_8iU9YkhMlZbMHTCABzVoolk.roa
Signing time: Sat 01 Jan 2022 05:56:14 +0000
ROA not before: Sat 01 Jan 2022 05:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51267
IP address blocks: 185.212.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327256927 (0x13818b5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ab3fff2253d62484c9596cc1d3080073568a259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5c:4f:c7:dc:d1:ae:57:e1:ec:aa:22:4e:47:
d3:b5:f8:6e:76:52:55:83:db:13:f3:ec:a9:1d:57:
ad:66:bc:9d:ce:67:8d:81:e2:3b:93:6c:03:2b:07:
5e:92:b6:43:08:13:c3:78:ed:66:36:c4:e8:26:7f:
82:b5:fb:17:4d:ee:05:df:98:72:cd:7c:2e:7b:fa:
7d:b2:03:1a:d0:c8:00:5e:49:b1:96:db:f4:f8:97:
dc:b9:a9:5e:79:d6:f6:10:1b:5b:9d:ea:91:36:72:
cf:dc:1d:c1:36:eb:be:fa:9c:ca:59:bc:2e:d8:4d:
10:9e:61:b5:a8:62:50:1a:3d:b7:ba:65:8c:c0:8a:
ef:63:a5:f3:12:d5:c1:be:f6:80:fc:3b:a9:c7:7b:
e9:c1:59:4d:3b:af:70:5d:74:80:0d:c0:2c:14:3e:
05:a5:f6:90:8a:0b:08:0d:15:fb:c8:b3:3d:93:c6:
6d:44:c2:45:53:77:46:db:f2:be:2f:11:50:de:11:
df:d9:d0:78:4d:95:e7:21:19:a2:2b:75:e6:c5:5f:
4b:86:58:db:c2:6d:29:19:9d:31:56:b5:9a:28:ed:
b5:c1:b8:a1:f3:38:9f:fa:74:04:76:a3:1c:f2:3c:
72:a9:e8:d9:5d:34:45:5d:e9:c1:83:d0:c8:ae:ff:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B3:FF:F2:25:3D:62:48:4C:95:96:CC:1D:30:80:07:35:68:A2:59
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/GrP_8iU9YkhMlZbMHTCABzVoolk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.11.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:9c:c8:e2:0a:ed:08:78:13:cf:fd:5d:2f:a1:15:34:eb:ba:
18:0a:9b:43:02:dd:67:28:3c:f9:9d:cf:2f:f8:11:24:f8:f6:
38:08:93:4a:94:72:d6:33:1f:a7:6d:39:9f:15:41:fd:7b:26:
18:6b:7b:18:30:31:94:ab:9b:34:b9:bd:fd:8e:d4:83:d7:88:
0e:9f:bc:28:c7:c1:36:a7:39:b2:88:f7:de:f4:74:80:db:3e:
06:ca:c5:c8:2d:7f:d2:62:78:80:bd:f4:2d:63:f0:c9:e2:e6:
4f:91:ff:ae:24:0c:42:82:1c:0d:3d:be:b8:82:06:24:a6:60:
c8:5b:6d:48:d7:5d:25:ba:8e:d9:4b:48:5a:12:20:a1:19:7e:
52:cb:d2:d6:73:3c:4e:82:ff:66:be:c5:03:e3:c5:6e:c4:09:
4e:76:56:bc:b5:f3:34:34:4d:50:b6:93:4a:a7:9d:ec:a7:9c:
23:63:34:e5:c2:1b:63:ae:56:75:f8:83:9c:52:65:38:58:b4:
c5:fd:ba:35:ba:0e:95:fb:b1:21:fd:0d:b1:6f:6f:35:20:fe:
61:62:dc:cb:d2:f4:42:9b:8f:38:79:c7:76:1a:c9:d4:fa:40:
e1:2e:7b:17:4e:f5:6f:be:db:93:af:91:4d:60:6e:d6:35:cc:
74:61:33:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org