Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/VoCJJ-Yc-_7pI4wahBOBm5LCt1c.roa
File: VoCJJ-Yc-_7pI4wahBOBm5LCt1c.roa (raw, json)
Hash identifier: KM2ukMBYS8MH9is4UL3NQzmQU5qBZXXE+YModPBj1pU=
Subject key identifier: 56:80:89:27:E6:1C:FB:FE:E9:23:8C:1A:84:13:81:9B:92:C2:B7:57
Certificate issuer: /CN=a24cf90329c47ba343a66cd65d38833a357b5955
Certificate serial: 0C2F2165
Authority key identifier: A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/VoCJJ-Yc-_7pI4wahBOBm5LCt1c.roa
Signing time: Wed 23 Feb 2022 09:14:07 +0000
ROA not before: Wed 23 Feb 2022 09:14:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 185.217.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204415333 (0xc2f2165)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24cf90329c47ba343a66cd65d38833a357b5955
Validity
Not Before: Feb 23 09:14:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56808927e61cfbfee9238c1a8413819b92c2b757
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:79:7f:a1:b7:f4:c3:be:7e:57:55:f0:85:15:
31:2e:eb:2c:b0:65:50:3c:7f:a9:8e:a3:7a:6f:64:
f9:a2:07:c0:19:8e:18:63:96:7a:0d:15:08:20:d9:
e2:6c:f0:ef:98:be:d9:4f:40:f1:c3:71:66:28:b3:
33:3f:d5:7d:f2:7f:0a:7e:46:23:cd:b0:6d:63:2c:
3f:bf:bf:7d:39:a5:3b:09:fd:af:9e:8a:df:75:d1:
0d:71:14:74:e4:f0:36:ca:29:41:3f:f5:a1:ff:d4:
99:b5:dc:30:f7:37:57:34:8f:04:94:6a:43:90:af:
2d:67:a8:92:5e:45:c4:31:d0:cf:a4:21:79:2e:3c:
c2:62:e9:1f:ae:55:31:ae:fd:2a:6f:15:73:bb:1a:
a9:f3:e5:94:23:9c:0f:21:fd:26:b9:a6:f5:be:59:
c3:6f:4a:8d:2d:23:fc:36:9d:53:c0:c3:92:3c:71:
ea:65:8f:1f:d2:88:ea:72:a7:9e:b6:d7:b9:e5:da:
4f:16:a0:df:22:f2:13:3f:eb:dc:4a:3a:44:c4:05:
70:4f:9c:b2:3c:4a:ac:57:7c:83:69:43:4c:ff:79:
37:a0:42:b9:08:37:4e:64:5b:3c:b9:73:83:8c:9b:
50:01:79:77:2e:31:39:b7:5a:f0:68:92:ea:de:8a:
95:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:80:89:27:E6:1C:FB:FE:E9:23:8C:1A:84:13:81:9B:92:C2:B7:57
X509v3 Authority Key Identifier:
keyid:A2:4C:F9:03:29:C4:7B:A3:43:A6:6C:D6:5D:38:83:3A:35:7B:59:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okz5AynEe6NDpmzWXTiDOjV7WVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/VoCJJ-Yc-_7pI4wahBOBm5LCt1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/dea149-4fb8-4978-a46b-33985db8047a/1/okz5AynEe6NDpmzWXTiDOjV7WVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.28.0/22
Signature Algorithm: sha256WithRSAEncryption
06:13:d1:66:d5:36:9b:12:a6:30:77:0c:8f:dc:6f:ef:b9:17:
5a:7c:8a:b7:1d:0f:c0:e8:fc:99:14:80:8e:36:45:ae:df:1d:
73:d2:ff:65:f5:fc:11:1f:5e:ae:37:85:71:63:8a:f1:0b:72:
0d:cd:c4:83:3f:4e:e5:8f:8b:4c:98:94:7a:f4:ea:9a:1a:ab:
96:ee:28:af:9d:c3:15:3b:38:b2:80:55:f4:e4:b0:78:3a:8b:
ba:66:7e:83:ef:d9:78:4f:f2:b9:0f:a3:f7:c4:65:a5:9f:f2:
28:5e:dc:b0:87:fc:4a:f2:10:c6:75:41:69:82:ab:d6:b6:22:
e3:10:60:bb:7d:4e:a1:20:d1:62:db:1c:7c:9d:4c:57:fa:da:
c4:41:c4:7a:28:52:48:46:cb:cb:af:2e:3e:07:37:1d:2a:e9:
30:10:1d:f8:5b:ec:9e:0d:ed:08:e9:08:eb:f2:83:e2:54:d2:
5a:60:06:c4:7f:f1:d6:3c:8f:22:1b:ce:79:c4:4b:f5:19:0f:
22:06:dc:8c:37:d3:bb:24:3d:e8:05:d1:0e:7a:64:2e:a5:87:
b3:44:f8:5b:95:67:0c:4a:c2:46:45:48:a3:3f:eb:e8:e6:63:
0e:73:8a:07:be:95:4b:bf:75:56:c7:91:f4:d8:c5:76:8c:95:
e3:8d:ec:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:57 2023 by rpki-client on console-fra.rpki-client.org