Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/DroVJ-sZ9ab-jRVaGX6kfdkH72g.roa
File: DroVJ-sZ9ab-jRVaGX6kfdkH72g.roa (raw, json)
Hash identifier: Du/EU31kGJlvl+IIqBOFQ2s94fLQ8Y1CoJv6gt53wt8=
Subject key identifier: 0E:BA:15:27:EB:19:F5:A6:FE:8D:15:5A:19:7E:A4:7D:D9:07:EF:68
Certificate issuer: /CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Certificate serial: 057CA68C
Authority key identifier: 49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/DroVJ-sZ9ab-jRVaGX6kfdkH72g.roa
Signing time: Sat 01 Jan 2022 11:02:45 +0000
ROA not before: Sat 01 Jan 2022 11:02:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48029
IP address blocks: 185.208.77.0/24 maxlen: 24
185.208.76.0/23 maxlen: 23
185.208.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92055180 (0x57ca68c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ee1194bd81d1946c39f10f7fdfdf22d1a03112
Validity
Not Before: Jan 1 11:02:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0eba1527eb19f5a6fe8d155a197ea47dd907ef68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:98:61:a9:22:f0:06:dc:dc:6a:69:a6:e6:d1:
21:49:f7:f9:18:9d:4e:ea:00:13:94:6c:b3:8c:41:
89:f1:a7:1a:10:98:44:3c:a5:54:c7:d4:4b:ce:9a:
37:ea:4a:8e:ce:61:19:7a:8e:f9:5b:db:f1:8a:32:
ff:7a:04:3e:e0:b1:87:ca:24:2c:8b:f5:02:9b:09:
d9:29:38:71:b9:5a:b6:10:d3:f8:4c:f3:1d:6a:dd:
ec:43:b2:88:a1:e2:7a:e3:fb:7d:a7:1b:25:b2:72:
7c:d3:8e:1b:39:fa:17:b9:e0:af:b3:5a:5b:c9:c1:
d4:81:2c:8c:2f:ec:6a:b6:bd:5f:03:11:a1:90:43:
87:26:21:c9:94:4f:a5:16:eb:db:eb:77:f7:6c:21:
5e:c6:69:83:db:d4:19:7f:2e:77:44:d8:55:a4:e5:
5b:11:19:db:ed:99:9c:31:63:e1:a3:11:63:f5:bb:
84:c8:56:2b:3c:3b:69:aa:09:87:c3:bc:5e:a6:7b:
93:f9:90:a3:76:05:81:4d:a7:59:99:70:e6:8b:52:
ec:ed:46:5d:ae:24:63:1f:06:9c:00:06:33:b0:3f:
3e:ec:8d:c7:60:1c:d8:b2:2e:9f:36:fa:f9:72:dc:
9b:7d:a1:f4:d6:ab:7c:99:d7:52:18:08:44:ec:b1:
d6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BA:15:27:EB:19:F5:A6:FE:8D:15:5A:19:7E:A4:7D:D9:07:EF:68
X509v3 Authority Key Identifier:
keyid:49:EE:11:94:BD:81:D1:94:6C:39:F1:0F:7F:DF:DF:22:D1:A0:31:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Se4RlL2B0ZRsOfEPf9_fItGgMRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/DroVJ-sZ9ab-jRVaGX6kfdkH72g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a324f4-9770-4a58-a6ef-d62fa6319fd4/1/Se4RlL2B0ZRsOfEPf9_fItGgMRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.76.0/23
Signature Algorithm: sha256WithRSAEncryption
52:79:80:51:7d:d2:61:b6:32:8d:41:be:74:0c:16:6a:df:a9:
29:1e:35:ba:5b:de:02:33:46:6b:5f:21:25:0b:78:b2:83:5c:
12:29:27:25:0a:d4:69:9e:a3:68:61:88:5d:b6:e7:2d:8b:78:
71:e3:b2:0d:c9:12:ea:a7:64:97:3d:14:48:ed:a7:da:87:6c:
66:ea:71:81:b8:a1:10:36:20:25:19:84:3e:74:26:86:1b:66:
cc:c2:e8:b5:14:e8:b0:c2:b4:11:8b:cd:7e:52:20:ca:69:71:
aa:5b:a7:03:0d:99:da:3c:56:bb:e3:38:27:cd:ad:eb:d3:48:
9e:9f:26:d1:07:50:ca:d4:8b:26:87:65:ca:d1:27:28:c1:69:
0e:0f:4f:26:00:32:a2:25:de:db:7c:16:7f:5c:f1:86:26:ee:
41:7a:42:e4:c6:02:e7:47:6c:a5:24:33:51:27:ca:a3:57:41:
72:e1:1d:9d:4a:6a:ab:cc:f6:f5:ca:be:4e:97:bd:f3:bf:b3:
5b:d1:bd:7c:ec:52:1c:a8:ca:08:cb:4c:3c:7f:1c:61:73:d0:
02:5e:da:7c:72:15:a8:7e:c7:a0:96:9c:23:39:dc:36:c6:c5:
0c:b3:b1:52:3d:68:d9:03:4e:9f:0a:cd:87:c8:9e:99:bf:e5:
f9:a0:d4:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:53 2023 by rpki-client on console-fra.rpki-client.org