Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/xgBeqbVg35pJYozFtYTH-2xDRA0.roa
File: xgBeqbVg35pJYozFtYTH-2xDRA0.roa (raw, json)
Hash identifier: jLnEAG7ns1OAVc15gd9z3eh1LdkYZog5BAXyjcoidtE=
Subject key identifier: C6:00:5E:A9:B5:60:DF:9A:49:62:8C:C5:B5:84:C7:FB:6C:43:44:0D
Certificate issuer: /CN=df798581e73704ee38c9be15e72370f176c60311
Certificate serial: 21D3E0
Authority key identifier: DF:79:85:81:E7:37:04:EE:38:C9:BE:15:E7:23:70:F1:76:C6:03:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33mFgec3BO44yb4V5yNw8XbGAxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/xgBeqbVg35pJYozFtYTH-2xDRA0.roa
Signing time: Mon 23 May 2022 12:02:29 +0000
ROA not before: Mon 23 May 2022 12:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24631
IP address blocks: 185.128.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2216928 (0x21d3e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df798581e73704ee38c9be15e72370f176c60311
Validity
Not Before: May 23 12:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6005ea9b560df9a49628cc5b584c7fb6c43440d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0b:75:bb:25:c1:09:13:08:07:5b:90:a7:e7:
e1:a4:64:31:23:8a:ec:b9:ac:c4:eb:12:fc:e0:c9:
e1:b9:06:7c:fb:11:3e:b3:e8:c2:c7:91:fd:45:06:
94:80:6a:53:34:2c:75:0a:cc:14:b4:11:7a:92:c9:
86:9c:a3:17:1a:fa:91:2f:c0:ba:6d:96:0f:c3:a4:
83:77:44:ac:ed:5d:d7:35:3f:5f:f3:3e:29:03:62:
3b:fc:33:52:ad:f4:3d:d5:4c:52:d4:d6:69:85:88:
d9:49:ef:52:06:6f:fc:a4:9a:90:c8:66:de:e0:4f:
c1:20:57:7a:3c:67:be:fb:1e:49:55:0c:00:4c:cd:
88:8f:4f:be:52:ef:19:26:7e:35:67:92:65:9b:ce:
85:77:24:56:cc:b4:63:1a:6c:04:43:22:54:28:c2:
85:43:10:26:f2:a1:f3:b9:b0:05:26:7f:24:f7:9f:
e4:2b:02:9f:95:e1:1c:81:47:2b:2b:1f:8f:b7:5a:
77:39:02:13:25:ad:93:f5:64:2c:a7:3f:aa:a4:8a:
93:42:7e:c6:3c:2c:41:4f:29:cf:de:a9:43:1b:5c:
3f:94:4e:19:6b:36:24:b4:b7:00:1f:37:56:41:66:
dd:8d:34:89:23:d8:42:19:e6:13:f0:c3:24:de:f4:
53:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:00:5E:A9:B5:60:DF:9A:49:62:8C:C5:B5:84:C7:FB:6C:43:44:0D
X509v3 Authority Key Identifier:
keyid:DF:79:85:81:E7:37:04:EE:38:C9:BE:15:E7:23:70:F1:76:C6:03:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33mFgec3BO44yb4V5yNw8XbGAxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/xgBeqbVg35pJYozFtYTH-2xDRA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a8007b-08ce-4af4-a383-c4a52dcee23d/1/33mFgec3BO44yb4V5yNw8XbGAxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.83.0/24
Signature Algorithm: sha256WithRSAEncryption
63:35:09:18:24:99:88:93:db:7f:9c:4a:6c:07:f9:28:29:5c:
a3:5e:62:a6:75:ee:40:48:0d:80:b7:3c:63:2d:96:a9:b5:5e:
33:13:47:91:ec:c9:c6:d5:9e:61:33:77:1f:f9:ae:e5:c4:e3:
94:bf:6b:97:6e:3e:85:d2:c2:87:9d:48:a5:a9:3f:7b:39:21:
8b:3b:ea:76:56:27:bd:c9:90:0a:e5:f5:f8:0b:a5:06:de:44:
17:1a:22:dd:70:08:52:ef:3e:b5:6a:eb:14:ee:93:48:4f:e0:
18:fb:fe:a4:1a:8d:68:58:3c:1b:b7:a6:b1:db:63:ca:f8:31:
f4:4f:56:50:c1:64:f2:71:97:c8:51:fd:95:b2:bc:e1:84:57:
37:17:50:b1:ce:12:f6:ba:a3:6a:05:8d:46:58:31:b7:ad:19:
55:78:b8:0f:c6:56:f9:61:36:24:4a:5c:29:a7:ea:3d:7d:c3:
29:22:73:87:4b:89:b8:5f:75:c3:a7:cc:81:96:cc:13:fb:46:
19:dc:d7:4b:76:51:ba:1b:01:cc:51:b9:a7:3c:c7:1b:83:9e:
53:66:5a:36:48:f2:b6:66:d0:11:3d:60:e3:0c:a4:ec:29:4b:
3a:db:7b:71:99:e7:73:62:98:98:a0:82:d0:a6:bd:fd:2f:28:
27:45:51:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:11 2023 by rpki-client on console-fra.rpki-client.org