Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/8o-K_qdMCfMIo2SKPqPjGIDn4-Q.roa
File: 8o-K_qdMCfMIo2SKPqPjGIDn4-Q.roa (raw, json)
Hash identifier: DbLok6LNVntA8IDGfwinJf0N/Idk5f86Mt92BCSUTVA=
Subject key identifier: F2:8F:8A:FE:A7:4C:09:F3:08:A3:64:8A:3E:A3:E3:18:80:E7:E3:E4
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0183384949C0E6771E68D21F32C0E3B956A4
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/8o-K_qdMCfMIo2SKPqPjGIDn4-Q.roa
Signing time: Tue 13 Sep 2022 19:17:50 +0000
ROA not before: Tue 13 Sep 2022 19:17:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 185.81.30.0/23 maxlen: 24
185.81.28.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:38:49:49:c0:e6:77:1e:68:d2:1f:32:c0:e3:b9:56:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Sep 13 19:17:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f28f8afea74c09f308a3648a3ea3e31880e7e3e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b3:e1:fc:c0:c0:97:36:e1:3d:26:b9:2d:28:
00:fa:81:2e:26:48:dd:86:a9:9b:04:7b:71:fd:6d:
e8:42:91:c2:61:d0:60:48:11:bb:89:63:3b:9e:03:
5e:85:56:26:26:39:6d:07:2c:cf:ba:88:45:cc:4a:
6e:58:28:05:7f:48:2a:72:27:0e:07:a0:33:52:e3:
f2:ee:4a:af:3f:b6:2c:f8:41:88:47:2c:57:6d:fb:
08:53:39:1e:e1:a0:2d:b8:63:7b:af:99:09:35:b9:
64:b9:e0:54:ec:03:57:86:89:aa:75:4e:13:e2:62:
33:11:0d:3c:46:36:e8:b4:3c:6e:dd:b4:c6:80:15:
26:da:40:a5:b1:1e:d4:0e:8a:2b:d6:22:36:7a:d1:
4c:f2:57:c5:a6:da:64:2c:0d:50:64:ec:6b:15:dc:
4e:f1:d0:31:46:d7:37:cf:07:4e:fb:46:2b:a5:af:
c3:93:64:50:03:23:bd:37:4d:7c:a1:19:4e:c5:66:
5e:98:87:c6:a8:a3:1d:e5:c3:53:36:9c:f5:8f:0f:
50:03:da:0c:02:1e:2a:c9:e7:a4:b1:23:70:21:49:
00:5d:de:22:08:4f:3d:fa:cd:ce:01:f3:50:45:51:
7d:c1:13:a3:da:c6:8b:cf:2c:55:36:c5:dd:e8:11:
47:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:8F:8A:FE:A7:4C:09:F3:08:A3:64:8A:3E:A3:E3:18:80:E7:E3:E4
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/8o-K_qdMCfMIo2SKPqPjGIDn4-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
33:73:83:3c:33:22:40:8f:1e:64:ca:88:26:65:09:df:d8:c9:
ec:a3:41:8d:25:47:0f:c7:87:e4:04:39:3b:22:64:04:35:61:
d3:91:b4:06:cf:07:80:2f:58:3c:38:62:3e:da:56:f5:04:86:
5c:3e:0b:bb:67:40:3a:0a:b4:78:31:65:8f:ae:a0:d9:20:a0:
3f:b6:d2:07:0d:89:46:9b:75:61:7a:bc:fb:f9:5b:00:ee:b5:
01:43:a9:46:5a:e3:32:8b:7a:1f:61:4e:04:57:d5:74:08:9a:
13:e0:42:42:c5:8c:2d:2b:f8:0b:fe:19:70:ee:e9:ee:d1:33:
b1:a6:03:66:b7:ec:5c:0a:c6:a1:7d:93:f7:f9:81:ff:69:91:
52:1b:f5:90:62:6d:f1:64:2f:06:96:6d:8a:8f:a4:93:80:f4:
6c:1b:9b:41:ab:ad:37:3d:a2:13:35:53:f7:5d:b8:98:6e:45:
a9:5e:c2:14:f7:1a:de:1f:5d:0b:9b:59:c3:fb:b0:9e:39:54:
d5:b7:0d:ac:93:fe:d4:d0:3d:b1:10:0d:2c:d8:29:65:96:8d:
0a:cb:0d:03:4c:7c:d3:2e:05:22:34:ac:6b:f1:23:7b:34:e8:
9f:9f:82:2d:83:86:2c:f8:06:a0:8d:59:e8:2b:60:d9:11:b3:
03:eb:24:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org