Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/7d5607-0a8a-4447-8651-c6349db9499b/1/2GvLdMGJMNOC_MDj-P8FZLUHxaw.roa
File: 2GvLdMGJMNOC_MDj-P8FZLUHxaw.roa (raw, json)
Hash identifier: arvS++vdp3EUstbfSCQ4BrW8cHszjflTq9jNJ3CpH/8=
Subject key identifier: D8:6B:CB:74:C1:89:30:D3:82:FC:C0:E3:F8:FF:05:64:B5:07:C5:AC
Certificate issuer: /CN=db8d08edc4393a8671296f8eacbbecf94d76562a
Certificate serial: 0379B429
Authority key identifier: DB:8D:08:ED:C4:39:3A:86:71:29:6F:8E:AC:BB:EC:F9:4D:76:56:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/240I7cQ5OoZxKW-OrLvs-U12Vio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/7d5607-0a8a-4447-8651-c6349db9499b/1/2GvLdMGJMNOC_MDj-P8FZLUHxaw.roa
Signing time: Sat 01 Jan 2022 14:08:01 +0000
ROA not before: Sat 01 Jan 2022 14:08:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212338
IP address blocks: 185.213.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58307625 (0x379b429)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db8d08edc4393a8671296f8eacbbecf94d76562a
Validity
Not Before: Jan 1 14:08:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d86bcb74c18930d382fcc0e3f8ff0564b507c5ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:bf:56:49:1d:6f:f8:d4:f7:54:d7:4a:a4:b7:
1a:6b:1e:2b:25:55:27:dd:6a:ef:a8:91:07:47:92:
62:d7:fc:da:86:cf:ac:13:57:cf:65:24:07:f0:80:
73:30:a2:82:a0:a6:27:ca:73:66:7c:fe:54:e8:a2:
55:4f:ea:da:4f:bd:1f:ca:1c:d4:e0:f4:bf:7d:32:
5e:3e:cb:3e:b9:bd:8a:bf:5c:61:5e:91:f0:e5:62:
56:b3:13:f5:15:53:ce:47:b2:80:cc:8c:82:90:e5:
bb:0a:f2:d8:d6:6a:70:49:76:7b:41:a7:2c:c3:96:
98:ed:1c:22:fa:55:84:f5:0b:51:41:0a:37:c7:aa:
25:7c:73:ad:e1:6b:95:a7:3d:e0:22:44:17:ab:4f:
6f:0c:c8:06:c4:cf:a6:da:c2:e6:73:7b:07:8f:4d:
c6:09:85:65:c2:44:7f:06:a2:70:59:78:da:96:b9:
5d:6f:de:fd:ef:35:60:c0:e0:67:33:b8:72:89:56:
6a:77:49:0a:bb:8e:70:ce:de:f2:b9:3a:b6:99:97:
3b:4e:bc:b1:6b:df:cd:3a:76:e4:e5:90:60:cd:c1:
9f:7d:c1:89:77:7b:03:9d:24:91:3f:0f:43:1c:01:
6b:38:38:5c:47:3e:29:32:95:14:4c:a6:7a:1f:01:
40:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:6B:CB:74:C1:89:30:D3:82:FC:C0:E3:F8:FF:05:64:B5:07:C5:AC
X509v3 Authority Key Identifier:
keyid:DB:8D:08:ED:C4:39:3A:86:71:29:6F:8E:AC:BB:EC:F9:4D:76:56:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/240I7cQ5OoZxKW-OrLvs-U12Vio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/7d5607-0a8a-4447-8651-c6349db9499b/1/2GvLdMGJMNOC_MDj-P8FZLUHxaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/7d5607-0a8a-4447-8651-c6349db9499b/1/240I7cQ5OoZxKW-OrLvs-U12Vio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.47.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:e2:66:86:98:08:28:30:50:1a:75:ef:69:40:f2:58:83:25:
db:6c:85:0b:a4:bb:7c:de:a4:35:cc:3e:15:34:2e:b1:09:4e:
95:02:e8:0e:5c:3f:05:e7:48:7e:7d:57:33:e9:fb:13:cd:78:
9d:1c:19:21:ed:a8:c3:1e:7a:86:56:65:84:61:69:7f:02:fc:
67:90:f7:1e:79:e7:0e:04:b6:97:0c:22:09:7e:aa:a2:3d:89:
47:ef:12:0d:09:77:b3:92:9d:a1:8e:bb:4f:41:26:24:ee:3b:
4c:73:98:d0:39:53:66:fe:fc:52:7c:61:22:ec:f9:3d:48:87:
3a:1f:ff:cb:51:07:9f:6c:b4:2a:74:c5:49:0a:70:1f:91:b7:
8f:72:ab:31:2b:eb:d8:ef:82:3c:4e:5e:50:78:1e:2c:db:d4:
16:59:9c:9e:f3:0e:bc:58:57:ae:2f:01:45:71:f5:bb:d8:76:
17:97:78:08:79:1e:c9:51:8a:df:ea:ea:38:25:aa:bd:ec:c1:
23:7b:92:d9:6f:db:e1:7d:90:5f:c5:a7:8b:c2:f6:90:83:44:
44:4f:03:fe:03:94:d6:fe:c1:16:3a:61:ed:05:eb:69:5e:3a:
e6:06:8f:f3:eb:c4:cc:36:68:f4:f0:e9:ec:69:78:a0:74:88:
20:75:9d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:01 2023 by rpki-client on console-fra.rpki-client.org