Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/rd8g5OJ-7v-nNO94ZBVBk5s9QvE.roa
File: rd8g5OJ-7v-nNO94ZBVBk5s9QvE.roa (raw, json)
Hash identifier: IT/55jbry4HNYHToLkI7DvJ0nChG3mgcQx3ZvLs2nrY=
Subject key identifier: AD:DF:20:E4:E2:7E:EE:FF:A7:34:EF:78:64:15:41:93:9B:3D:42:F1
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01832123E1BA3EC4C527A10ABFC04D6C821A
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/rd8g5OJ-7v-nNO94ZBVBk5s9QvE.roa
Signing time: Fri 09 Sep 2022 07:25:43 +0000
ROA not before: Fri 09 Sep 2022 07:25:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:23:e1:ba:3e:c4:c5:27:a1:0a:bf:c0:4d:6c:82:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Sep 9 07:25:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=addf20e4e27eeeffa734ef78641541939b3d42f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4e:e9:a6:8c:be:a6:ea:0f:c0:3a:93:aa:00:
9d:60:75:7f:a8:e5:0d:99:f3:cf:f4:d5:c9:ab:9a:
81:69:9d:94:17:d3:37:2c:90:7c:b0:c7:ca:f4:8c:
90:aa:be:17:73:31:38:5f:f2:65:60:0a:4a:05:35:
ea:8a:3b:51:ac:d9:99:1f:98:99:b7:37:7a:32:40:
97:f1:c1:df:a1:ed:b6:e4:0a:60:b3:48:1b:df:c3:
ab:dc:df:50:a4:0f:90:90:f6:0f:d1:40:f8:a2:8d:
6d:cc:06:7e:ec:9c:3d:5a:93:53:ec:1a:6e:e0:c4:
b0:de:31:5c:04:2f:dc:ad:7c:94:2c:96:37:db:9f:
71:49:4c:6c:79:5c:73:79:cc:d5:ba:c6:44:e2:b0:
ba:6c:54:56:03:13:86:4b:84:8e:02:74:b3:8e:f0:
a3:a5:7a:35:34:87:b7:49:78:96:36:ee:b7:95:f9:
c8:c0:40:96:46:f2:f6:06:91:78:59:dc:d4:14:97:
4f:31:32:ae:ab:93:86:e7:f6:2a:62:65:7d:a8:95:
07:7f:6e:78:4b:38:3a:97:cd:aa:eb:e6:71:dc:eb:
fe:05:a8:c8:f4:04:38:d0:7c:d6:a2:e3:d0:1e:bd:
ca:06:7a:73:6e:23:48:e0:f8:6f:44:9e:19:7f:18:
2f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:DF:20:E4:E2:7E:EE:FF:A7:34:EF:78:64:15:41:93:9B:3D:42:F1
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/rd8g5OJ-7v-nNO94ZBVBk5s9QvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:7d:0f:30:b3:80:44:69:11:0d:8e:d3:30:bb:b6:8b:7d:b9:
c2:01:7f:b1:f0:2d:20:d3:4c:55:25:7c:04:f5:09:41:c4:68:
58:23:fc:a7:5e:94:89:e2:51:89:14:3d:f0:db:1f:01:79:34:
63:aa:6b:ac:77:f6:7e:7d:d9:c6:a1:1a:83:92:5f:94:a7:b2:
80:0a:bd:4b:dc:16:65:1c:73:45:00:95:a9:77:71:b2:2e:00:
d0:e1:4f:a9:c5:1f:84:4a:2a:e3:f7:bf:d1:4e:0c:b0:f4:40:
21:d3:ae:1d:60:2f:4a:c8:91:00:74:f3:af:5e:96:c9:6d:d1:
fb:18:fa:c5:3a:96:25:ca:45:56:33:8b:57:0e:fd:56:b8:58:
32:08:c1:22:f7:84:11:37:d4:0b:ed:c8:d7:98:6b:98:78:32:
0d:af:07:d5:59:f7:e2:6c:bc:ef:5f:3e:c3:46:8a:5b:c0:08:
f0:1b:93:25:8c:c9:51:0b:86:21:78:6c:4d:5a:3c:0d:f1:7b:
07:08:42:c7:6a:17:01:c5:fd:9c:22:92:85:9e:ed:e9:ff:46:
49:5a:68:a1:b1:55:3a:ef:30:95:fb:fd:ab:06:7f:fb:85:14:
9d:37:c4:db:27:be:37:f3:bc:19:45:86:22:73:96:8d:90:cf:
07:2d:c9:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org