Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/0P_WNbgfQ8PXwran0PoQygOv2kM.roa
File: 0P_WNbgfQ8PXwran0PoQygOv2kM.roa (raw, json)
Hash identifier: Nz3BPzpNKADOe+GSN1r1kvPu8Di7x/nZsLd8f16tzkw=
Subject key identifier: D0:FF:D6:35:B8:1F:43:C3:D7:C2:B6:A7:D0:FA:10:CA:03:AF:DA:43
Certificate issuer: /CN=d5271a6f99eac12abe0856100a14a2d9663ce7bb
Certificate serial: 06F1E1A0
Authority key identifier: D5:27:1A:6F:99:EA:C1:2A:BE:08:56:10:0A:14:A2:D9:66:3C:E7:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Scab5nqwSq-CFYQChSi2WY857s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/0P_WNbgfQ8PXwran0PoQygOv2kM.roa
Signing time: Sat 01 Jan 2022 14:05:55 +0000
ROA not before: Sat 01 Jan 2022 14:05:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30981
IP address blocks: 185.23.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116515232 (0x6f1e1a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5271a6f99eac12abe0856100a14a2d9663ce7bb
Validity
Not Before: Jan 1 14:05:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0ffd635b81f43c3d7c2b6a7d0fa10ca03afda43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:0e:5a:a5:54:83:ee:17:0a:77:cd:e0:16:8f:
57:9a:f6:6d:d4:0a:08:e2:c2:e2:36:59:43:f3:a3:
02:6c:1c:9c:9b:66:8e:f2:ce:11:4d:c6:0c:a6:05:
0a:8e:1a:15:23:b1:33:1a:94:e1:d6:21:b1:eb:b8:
8e:e1:fd:73:4e:67:d8:a6:73:fb:1d:7f:00:87:62:
a7:ca:8a:73:64:4b:66:41:65:df:9d:7b:95:b2:9e:
51:d8:32:00:42:0a:71:ae:2e:53:c8:d8:19:d9:29:
52:95:21:48:b4:8f:97:0d:19:fb:e0:7b:27:9d:dd:
92:78:04:13:74:4d:17:6a:b4:3a:be:b0:2e:ad:20:
93:a0:bd:e3:05:fb:32:67:44:a3:84:32:40:57:93:
f7:40:7c:44:88:6c:b4:be:c1:e7:d9:b0:8d:fe:41:
9e:e0:87:e0:97:5a:b5:81:ed:3d:35:66:dc:3b:33:
42:3d:89:74:11:72:1e:1f:14:7e:91:56:6d:ff:2c:
74:4d:11:ab:3c:21:1d:3c:82:e8:e8:15:8f:8f:f6:
e5:eb:42:4c:e8:ae:d0:a4:b2:d7:54:d0:db:1d:d7:
5d:f2:4b:2c:34:1a:d6:4a:79:65:29:59:27:5d:e4:
6c:b1:76:6f:96:0c:e5:f9:67:4f:0e:07:85:df:b5:
5c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:FF:D6:35:B8:1F:43:C3:D7:C2:B6:A7:D0:FA:10:CA:03:AF:DA:43
X509v3 Authority Key Identifier:
keyid:D5:27:1A:6F:99:EA:C1:2A:BE:08:56:10:0A:14:A2:D9:66:3C:E7:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Scab5nqwSq-CFYQChSi2WY857s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/0P_WNbgfQ8PXwran0PoQygOv2kM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/1Scab5nqwSq-CFYQChSi2WY857s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.241.0/24
Signature Algorithm: sha256WithRSAEncryption
54:7a:63:37:45:57:52:3f:28:1c:f8:63:9f:7a:cd:19:bd:c5:
77:d1:d8:0d:ec:ec:0f:60:8e:32:63:29:e3:5f:3d:a4:b8:19:
21:c0:d7:dc:80:61:b1:2d:f2:c1:4e:b2:27:77:e8:99:37:7f:
52:8a:85:c9:71:e2:19:ee:5b:cf:5d:af:53:7b:46:f7:0e:f7:
4f:dd:1a:01:5a:15:16:bc:f9:ff:8b:37:a6:d7:c1:83:b7:f1:
fc:0a:0d:19:ad:d0:e9:7c:6a:9e:9f:5c:dc:a5:91:8a:0e:5b:
44:df:f5:b7:ea:62:8e:2b:08:67:7c:fa:98:82:f1:0f:7e:7c:
5e:89:4e:88:de:63:b9:99:cf:f0:14:54:cf:3a:90:0f:6b:3e:
bc:79:02:d3:40:b9:dc:ba:89:ea:6e:e9:f3:a2:fd:10:b0:aa:
76:46:d9:6f:34:dc:34:b8:64:44:06:ae:13:6f:ce:57:c6:bb:
a6:0c:ec:a4:54:0b:05:f2:66:57:12:84:98:88:ff:c1:96:7a:
15:32:bb:5e:19:f4:9d:f9:57:ac:9b:69:c9:f7:5c:0d:4f:a6:
87:a9:01:10:a4:7d:7a:f0:52:d0:de:4a:c3:6b:64:3d:54:b8:
7e:44:17:a3:02:63:7e:d9:a2:3a:48:91:0f:5b:98:dd:8c:22:
5b:a6:e8:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:31 2023 by rpki-client on console-ams.rpki-client.org