Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/8wsJu4A97-e4iBPYXAAXzWKxg0k.roa
File: 8wsJu4A97-e4iBPYXAAXzWKxg0k.roa (raw, json)
Hash identifier: euexOaUjggOu1+6cU2lb5nB23utvBif67VWaMoaNnmI=
Subject key identifier: F3:0B:09:BB:80:3D:EF:E7:B8:88:13:D8:5C:00:17:CD:62:B1:83:49
Certificate issuer: /CN=a24cf90329c47ba343a66cd65d38833a357b5955
Certificate serial: 0BB62830
Authority key identifier: A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/8wsJu4A97-e4iBPYXAAXzWKxg0k.roa
Signing time: Sat 01 Jan 2022 04:55:17 +0000
ROA not before: Sat 01 Jan 2022 04:55:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210569
IP address blocks: 185.217.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196487216 (0xbb62830)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24cf90329c47ba343a66cd65d38833a357b5955
Validity
Not Before: Jan 1 04:55:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f30b09bb803defe7b88813d85c0017cd62b18349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d9:bc:b6:38:bb:99:25:7e:2e:c7:8c:ef:b8:
bc:26:26:59:7d:ca:fc:ed:ce:c9:66:ac:db:d4:14:
01:fb:ae:68:5e:20:f3:55:cc:0c:11:a5:50:e6:37:
f7:6e:b3:3f:3a:b0:5c:23:ed:a8:82:5f:e1:14:1f:
2e:8e:17:20:a3:26:87:76:de:27:ad:88:b0:71:fc:
6f:83:8d:79:5a:3a:cd:34:36:81:d8:19:d7:bf:41:
08:67:f0:a9:7d:1b:1c:ce:dc:e8:f6:c0:3e:6b:82:
71:fa:ae:70:7d:5d:a3:de:bf:b0:27:ab:fb:fe:55:
8d:64:fc:05:b5:e6:fb:45:55:aa:96:79:91:0a:4f:
02:07:f9:7d:fa:7c:73:4c:be:6f:99:24:f2:f1:ca:
8b:02:10:66:c2:9f:d3:a7:66:a8:ca:18:e5:de:bf:
94:7e:3a:51:2a:b4:ab:b6:72:f8:7f:5f:2c:f8:ba:
57:99:f3:23:76:db:01:c7:df:a3:28:c1:e0:cb:0d:
59:e4:83:ba:77:60:dd:a1:d6:f8:94:d5:de:3e:73:
c3:6d:4a:a8:7e:c7:50:e2:ef:83:89:dd:2c:2b:b0:
0c:a7:0f:bc:c3:5e:89:89:70:65:5b:0f:22:1b:82:
87:a7:3f:2e:1b:3d:a4:85:55:d3:67:4f:37:84:04:
13:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:0B:09:BB:80:3D:EF:E7:B8:88:13:D8:5C:00:17:CD:62:B1:83:49
X509v3 Authority Key Identifier:
keyid:A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/8wsJu4A97-e4iBPYXAAXzWKxg0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.30.0/24
Signature Algorithm: sha256WithRSAEncryption
52:bd:83:69:29:cf:14:f1:8d:6b:9d:35:ce:ed:8f:61:97:80:
ab:8e:b9:b4:eb:d8:94:1d:52:6c:2b:46:84:18:8d:93:63:cc:
b5:88:fa:69:c5:5a:2b:98:61:47:2a:85:02:70:80:38:52:fa:
da:08:de:24:7a:bd:50:7d:79:83:23:d5:5e:0a:9c:c2:45:21:
f8:65:92:8e:d0:d8:1a:90:38:da:62:8e:b5:e1:b4:d2:bc:db:
87:b7:90:15:93:31:d2:a8:a2:48:2b:75:75:2c:33:4d:4b:24:
68:ad:eb:62:db:c9:c7:c0:e7:96:99:9a:0c:a5:91:8a:df:df:
f4:2a:84:44:a6:f7:88:1d:52:fb:54:f0:0d:a5:14:3e:c0:a6:
38:ff:8e:75:06:46:95:5d:56:f3:81:1c:cb:b4:88:39:d4:05:
0c:ff:e0:c1:4d:3f:31:d1:4b:43:f3:1d:8a:b8:e2:a7:13:e2:
6c:6c:09:78:46:2e:c6:69:05:c7:ff:a9:66:a3:b2:a2:1d:d4:
75:64:8a:fc:8f:30:e2:e6:4d:16:f5:51:26:ee:42:f9:89:98:
2e:6d:ea:92:b7:f3:4f:ff:4b:d2:4c:43:a6:4d:2a:74:9d:4a:
de:6c:a8:4f:e0:2d:d3:8f:d8:1f:ac:03:36:bf:9c:92:10:e5:
30:a4:c6:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:42 2024 by rpki-client on console-fra.rpki-client.org