Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/AjVh0dIAeBMevvfyaDjhDw6Lcns.roa
File: AjVh0dIAeBMevvfyaDjhDw6Lcns.roa (raw, json)
Hash identifier: ZZjN/qolHtMXdzpgpbPOU48QhGLdlvmJecsaIL1g3uo=
Subject key identifier: 02:35:61:D1:D2:00:78:13:1E:BE:F7:F2:68:38:E1:0F:0E:8B:72:7B
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07A739D1
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/AjVh0dIAeBMevvfyaDjhDw6Lcns.roa
Signing time: Sat 01 Jan 2022 08:01:47 +0000
ROA not before: Sat 01 Jan 2022 08:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47553
IP address blocks: 185.254.72.0/24 maxlen: 24
185.213.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128399825 (0x7a739d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=023561d1d20078131ebef7f26838e10f0e8b727b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:fd:4f:3f:c2:de:b5:0b:3c:ec:80:41:3e:b4:
ef:c7:2a:ed:4a:0e:d2:8d:92:22:ad:8f:d9:75:f8:
05:7e:b7:48:c9:b8:eb:b3:a3:d8:23:c6:92:0f:bc:
e7:61:20:8c:87:67:98:f0:0d:64:12:a3:60:6f:f9:
54:6e:22:43:a0:ec:19:49:a0:10:9e:13:23:07:3d:
5e:a5:29:52:0d:4f:ab:e7:f5:ed:85:83:b2:4c:05:
19:ee:1c:9f:d6:55:e5:c6:f5:27:e1:42:6f:b5:3c:
17:2a:47:c0:97:4e:f8:52:77:ac:e9:47:87:63:4c:
85:81:4e:12:a3:41:44:f5:94:89:a4:be:b3:23:d1:
b9:cd:8b:69:54:88:61:3d:10:8c:3f:a4:3c:50:67:
ed:31:5e:bd:d0:e2:5d:ee:3c:b5:b9:d0:ae:02:24:
a4:bf:9e:e3:1e:89:86:51:9f:b1:af:90:a9:83:b0:
8d:f6:49:5e:16:90:8d:3e:56:e7:18:37:aa:a0:51:
aa:d6:ab:5d:3b:e9:ce:d4:b9:a2:74:c4:93:95:c5:
81:64:13:f0:a3:ea:2c:37:32:ce:2f:b4:2e:0f:8b:
7d:49:0a:eb:ec:4d:7b:d3:7a:91:ef:3b:e1:2e:1e:
29:10:3d:5e:c3:6e:7d:ac:06:c0:8f:31:58:da:99:
a5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:35:61:D1:D2:00:78:13:1E:BE:F7:F2:68:38:E1:0F:0E:8B:72:7B
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/AjVh0dIAeBMevvfyaDjhDw6Lcns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.150.0/24
185.254.72.0/24
Signature Algorithm: sha256WithRSAEncryption
27:b4:bf:ca:89:a4:07:65:c5:64:82:59:7a:34:32:fa:f6:97:
77:9f:13:ff:c2:4f:1b:9a:f0:83:5f:2c:85:e0:03:2c:3a:68:
ac:98:ed:e5:f8:21:09:72:48:1d:cb:8a:24:e6:ae:84:78:c5:
19:7f:d0:11:7e:79:d4:bc:18:d4:2b:40:00:dc:68:2e:ef:01:
11:83:fb:40:b7:e4:59:d4:fd:08:e8:b9:72:1c:d6:01:bd:b6:
db:ca:73:71:da:20:1b:2c:5e:cb:37:1f:9e:b8:fb:55:83:ca:
fa:21:cf:0a:c6:a9:c0:80:f1:86:db:6c:99:07:3f:d9:e8:03:
62:66:86:5d:90:c5:9e:ad:93:46:f0:c0:3d:4e:d1:e8:1a:24:
7a:e3:23:5c:14:14:51:6a:c5:d0:73:5e:85:80:f6:13:b2:02:
ab:88:49:cc:1f:10:1e:8d:80:85:15:dd:87:46:bb:c2:58:be:
1e:54:7a:db:6e:f0:a7:9f:b4:ae:d1:34:b5:50:2a:3b:62:4d:
22:58:6a:e3:95:6f:88:cd:d9:b0:93:5c:2d:e4:8f:d7:d9:17:
a7:08:72:5a:79:8a:be:cf:b4:43:72:3e:4b:c2:c2:92:12:d0:
c2:7b:ff:5d:b5:cc:e5:aa:67:60:45:8b:68:ae:09:65:7f:a3:
44:94:64:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:58 2023 by rpki-client on console-fra.rpki-client.org