Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/b82HDfBpO7i1OdB8VVu1r1ULO1w.roa
File: b82HDfBpO7i1OdB8VVu1r1ULO1w.roa (raw, json)
Hash identifier: CGvmhpil7ftIGIs/8EL3zggXPRngwtpZK77ohOMrI+8=
Subject key identifier: 6F:CD:87:0D:F0:69:3B:B8:B5:39:D0:7C:55:5B:B5:AF:55:0B:3B:5C
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 15676C3E
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/b82HDfBpO7i1OdB8VVu1r1ULO1w.roa
Signing time: Sat 01 Jan 2022 11:55:40 +0000
ROA not before: Sat 01 Jan 2022 11:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211771
IP address blocks: 185.11.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 359099454 (0x15676c3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 11:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fcd870df0693bb8b539d07c555bb5af550b3b5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f0:f5:ec:8a:1f:ff:ce:4c:16:1a:1d:21:5b:
8c:82:07:67:d2:88:52:0a:6f:9d:4b:bb:3f:3e:ce:
19:70:2f:63:6c:a1:62:9d:a5:07:29:7d:c6:eb:1f:
4b:40:4a:53:d1:22:ea:c1:e5:59:2e:a4:bc:ba:8c:
2a:73:2d:67:3c:85:f2:b9:ac:c9:0a:f6:13:eb:b0:
0f:cf:be:c1:ad:19:50:67:cf:63:4a:87:7b:79:0e:
01:88:13:8c:46:87:46:1a:da:b7:1e:cd:ae:b8:96:
56:1f:21:37:6a:a1:2c:2c:18:09:cf:89:9b:44:ae:
f7:ad:df:c0:50:11:be:13:aa:15:de:50:84:4b:0f:
60:1f:94:dd:b2:6a:68:d3:a9:f5:6d:44:c0:83:fd:
cb:42:99:03:cb:5f:3c:e1:5a:5f:c9:61:59:16:e6:
76:be:67:86:7f:d0:aa:43:a3:53:f4:fc:98:3e:c8:
52:5c:cc:7e:2d:85:8c:53:b8:45:f0:71:e3:d0:d5:
c1:0a:37:fe:3a:b1:b0:b4:ec:ca:20:9a:72:2a:26:
4c:c6:93:20:9d:77:cf:50:05:4f:b2:b9:05:bf:63:
3e:df:3b:ab:28:be:f7:7f:0a:a4:75:51:ed:c6:2d:
61:f8:a4:46:ff:11:bf:4a:46:fc:44:f7:61:a7:8c:
a0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CD:87:0D:F0:69:3B:B8:B5:39:D0:7C:55:5B:B5:AF:55:0B:3B:5C
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/b82HDfBpO7i1OdB8VVu1r1ULO1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.27.0/24
Signature Algorithm: sha256WithRSAEncryption
97:e8:88:64:cc:98:a6:2e:7f:03:e7:98:d1:3f:e8:4e:b8:eb:
41:e7:a3:72:ba:6d:05:3c:f8:2d:d4:34:30:93:09:82:a2:fb:
0a:80:b2:c3:64:1e:89:cd:c5:a4:cf:bd:83:24:c4:86:32:12:
e0:d9:d2:10:dc:9d:37:09:99:6f:4e:2a:9d:eb:04:ef:2b:e7:
6d:c7:58:5e:0d:39:54:f2:c4:5d:dc:da:31:8a:c1:e1:7c:06:
8f:f5:ad:d6:33:db:d5:e2:90:f2:bc:4e:81:49:33:ce:32:c2:
cb:cd:6e:e9:80:79:b7:7c:69:4a:cb:41:fd:fd:f1:01:bc:67:
21:69:9d:40:88:48:bf:e7:40:dc:1a:a9:78:12:d3:f4:6a:ad:
8e:65:8a:51:6d:dc:0d:48:06:89:a4:00:6c:2e:00:18:f6:fa:
da:71:62:8b:85:1c:d1:a5:94:93:c0:a5:8d:19:ae:43:af:db:
23:15:f2:b6:ef:53:05:f0:e1:8d:68:5c:f1:11:5e:ec:ea:5e:
db:11:16:37:39:a0:15:ae:53:af:f1:21:58:70:7a:4f:9c:32:
f7:7e:8b:8c:d2:dc:91:30:ac:be:8f:0a:6a:33:01:6d:10:fe:
1d:36:37:3f:c0:58:ed:0c:20:ac:1c:d9:20:cd:46:69:ee:da:
5d:0d:80:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org