Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/CVt7cyTr8WCYTrwAIOY60mmoUuw.roa
File: CVt7cyTr8WCYTrwAIOY60mmoUuw.roa (raw, json)
Hash identifier: eeFQxnLyWS4FbUPqOx+xW06O9x8mC5RxdevxWj9kXLg=
Subject key identifier: 09:5B:7B:73:24:EB:F1:60:98:4E:BC:00:20:E6:3A:D2:69:A8:52:EC
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 15625AD2
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/CVt7cyTr8WCYTrwAIOY60mmoUuw.roa
Signing time: Sat 01 Jan 2022 11:55:37 +0000
ROA not before: Sat 01 Jan 2022 11:55:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47929
IP address blocks: 185.216.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358767314 (0x15625ad2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 11:55:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=095b7b7324ebf160984ebc0020e63ad269a852ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3e:d0:cd:2d:8f:87:04:b1:73:54:b7:cc:24:
b0:67:47:88:de:0e:78:ea:ab:26:7e:15:bd:1e:dc:
c6:f0:19:25:bf:16:4a:ad:49:8d:e3:54:b0:65:e2:
57:49:0f:dd:10:97:fd:b0:1a:36:8d:53:0f:21:ca:
51:24:cd:31:41:9c:4a:fb:6f:52:e6:e0:3a:10:9f:
8d:da:1e:41:2b:8e:07:2a:98:c5:84:ff:39:99:1c:
07:d6:b6:58:8c:f4:07:a2:ac:ed:ae:bb:cc:bd:80:
5b:be:76:04:0e:85:70:b1:af:45:33:ed:46:bc:2d:
29:03:ef:6b:eb:45:eb:4c:21:4e:28:89:06:f7:d9:
3a:db:90:da:c7:4b:ad:c2:64:1c:fb:c7:29:60:62:
16:81:5d:b1:39:80:62:ee:5b:e2:92:2b:ff:00:50:
c1:40:c5:51:b6:9a:bf:3f:c2:32:3d:2a:3d:b5:8f:
c8:e8:1d:20:ab:5f:cf:9a:ed:cf:74:3e:0f:05:ab:
c0:4f:f2:3d:b7:61:08:0b:e2:3a:84:fb:f8:ed:3d:
cc:42:cc:da:41:5f:57:1a:bc:75:6c:f1:1c:e1:d0:
ee:f4:6c:3b:ba:08:d5:af:a4:4f:59:6a:ee:9d:ad:
f7:8e:d8:28:d9:6c:e6:a0:96:55:6b:56:6a:a2:e9:
50:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:5B:7B:73:24:EB:F1:60:98:4E:BC:00:20:E6:3A:D2:69:A8:52:EC
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/CVt7cyTr8WCYTrwAIOY60mmoUuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.208.0/24
Signature Algorithm: sha256WithRSAEncryption
13:ee:54:c0:91:a0:6d:94:70:b1:11:f3:a6:92:38:d0:39:6a:
0b:d4:7d:83:ce:5f:b0:7a:7b:e7:51:01:ae:24:e5:bd:f0:9e:
98:15:de:de:88:4f:91:d5:15:70:27:b5:21:37:9f:31:81:2d:
05:4d:65:52:32:e6:75:da:0f:c3:9b:f9:7f:f5:62:90:0f:a6:
b9:c4:ea:78:6c:a9:32:17:4f:3e:4e:85:cc:66:d0:c0:29:6a:
72:ea:6e:0e:cf:7d:09:e0:95:f3:25:c3:0b:dc:f2:60:0f:0f:
5b:0d:4d:b6:79:69:7d:ec:5b:4d:ea:82:bb:42:6c:58:d4:cc:
80:c6:c9:a7:d2:49:8c:2f:d2:03:5e:c2:54:ab:c9:3a:81:d1:
c5:b6:97:13:6c:24:5a:b8:5b:f2:0c:51:62:ee:7b:ee:2d:05:
16:12:68:9f:9f:49:d6:4a:50:27:d5:3a:b3:82:75:aa:9a:3d:
8e:95:df:f3:81:a1:6b:08:3b:73:12:b1:7c:7a:c5:18:33:35:
03:45:ad:1e:9a:5d:91:14:38:7d:66:ec:15:05:d4:e7:f2:76:
bf:9d:a0:87:3b:45:9e:5c:b8:d9:52:ed:d9:f5:fe:f1:60:c2:
92:1e:26:c6:48:63:b7:0a:dc:06:58:43:cc:ed:08:69:d0:c0:
bc:49:b7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org