Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/5d15a8-22a7-401b-8c5e-075f24e4be71/1/gYOVwR1KihGiSVkHIjrwFzBpKZs.roa
File: gYOVwR1KihGiSVkHIjrwFzBpKZs.roa (raw, json)
Hash identifier: dqV3HF+TPGO5SlTM14V7zLGjDLM3uKYbIVSSB1pHZSs=
Subject key identifier: 81:83:95:C1:1D:4A:8A:11:A2:49:59:07:22:3A:F0:17:30:69:29:9B
Certificate issuer: /CN=0ef81d9e89e2c471321d967f7092094dadfe2aa8
Certificate serial: 0393F5
Authority key identifier: 0E:F8:1D:9E:89:E2:C4:71:32:1D:96:7F:70:92:09:4D:AD:FE:2A:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvgdnonixHEyHZZ_cJIJTa3-Kqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/5d15a8-22a7-401b-8c5e-075f24e4be71/1/gYOVwR1KihGiSVkHIjrwFzBpKZs.roa
Signing time: Fri 08 Apr 2022 08:17:56 +0000
ROA not before: Fri 08 Apr 2022 08:17:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209284
IP address blocks: 185.58.189.0/24 maxlen: 24
185.58.190.0/24 maxlen: 24
185.58.191.0/24 maxlen: 24
185.58.188.0/22 maxlen: 22
185.16.104.0/24 maxlen: 24
185.16.104.0/22 maxlen: 22
185.16.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 234485 (0x393f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef81d9e89e2c471321d967f7092094dadfe2aa8
Validity
Not Before: Apr 8 08:17:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=818395c11d4a8a11a2495907223af0173069299b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c3:39:1d:0b:95:be:ac:62:4f:37:b7:18:67:
3a:eb:65:a6:09:e1:ad:e1:e0:1c:d4:c4:64:c6:5d:
51:34:9f:5c:bc:73:56:9b:42:27:e8:7c:ce:3a:c4:
1c:d6:e6:63:bf:e6:af:d8:21:c1:f6:95:3d:52:1f:
c8:65:fe:58:3a:8f:f9:33:5f:d4:27:ba:22:b3:54:
e6:29:db:b6:ec:0e:ea:07:21:94:dc:7b:59:3b:6c:
c0:0c:37:39:74:f0:df:4a:c7:e8:c3:04:de:14:4e:
91:aa:8b:fe:ae:01:8f:51:e5:0e:99:59:69:b5:0e:
2d:fd:90:a8:b2:56:1a:b8:5c:46:91:62:89:ca:84:
93:19:c1:50:43:93:90:d6:4f:43:4e:97:96:94:4f:
62:f7:22:86:1b:1e:f0:0c:30:3f:e5:1c:a8:aa:fb:
ab:91:b5:c1:0a:37:0b:38:c7:55:40:7e:ba:78:17:
3c:02:aa:06:23:10:da:24:e8:b0:1c:d4:a5:fa:a6:
c5:50:91:8c:bf:5f:6e:49:ed:9e:1b:28:6e:c2:49:
f1:bb:8b:fb:70:58:cb:61:9d:20:00:5c:bd:21:c2:
09:ee:47:da:8c:b6:43:78:e0:44:b1:9e:54:05:d1:
2d:3b:7a:db:30:8d:f8:34:8d:b4:e8:e7:9d:c7:c1:
00:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:83:95:C1:1D:4A:8A:11:A2:49:59:07:22:3A:F0:17:30:69:29:9B
X509v3 Authority Key Identifier:
keyid:0E:F8:1D:9E:89:E2:C4:71:32:1D:96:7F:70:92:09:4D:AD:FE:2A:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvgdnonixHEyHZZ_cJIJTa3-Kqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/5d15a8-22a7-401b-8c5e-075f24e4be71/1/gYOVwR1KihGiSVkHIjrwFzBpKZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/5d15a8-22a7-401b-8c5e-075f24e4be71/1/DvgdnonixHEyHZZ_cJIJTa3-Kqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.104.0/22
185.58.188.0/22
Signature Algorithm: sha256WithRSAEncryption
63:a2:09:4e:b9:1e:37:49:1a:0b:1a:8f:88:96:b6:03:e5:15:
a7:7b:36:67:8e:e8:5d:dd:da:ba:e8:a9:ce:19:ee:ed:f5:2e:
96:39:96:63:47:b2:76:96:d4:24:bd:cc:11:75:00:9b:01:60:
20:08:20:4c:9c:74:a4:d0:f9:b2:56:df:b3:d8:ea:ad:07:75:
12:5e:8f:07:86:88:f3:d8:fe:24:83:f8:25:4f:15:5b:c7:c1:
94:23:6f:e0:ad:63:89:dc:1f:a9:1c:40:91:f8:d5:9a:f3:f5:
f2:42:88:c3:e4:50:73:33:ff:98:59:db:12:91:0e:4e:09:31:
6b:a5:17:36:16:f2:a5:11:05:fc:a0:8f:34:52:82:9c:1c:21:
c5:28:67:73:13:e6:cb:07:40:14:90:1e:4c:bc:87:86:61:1d:
e3:4a:98:e7:e2:00:bf:b2:37:49:2b:ea:35:c0:63:9e:a4:05:
fe:5a:4e:54:fc:40:08:d6:ba:54:3a:28:c9:44:c4:95:a8:44:
f9:68:e5:6a:a4:15:35:61:e1:0a:af:78:aa:29:e0:b3:da:9f:
dd:19:dc:0f:cc:96:5f:bf:ed:f4:e9:49:42:d3:43:61:ab:c8:
3a:7d:4e:92:99:e7:a2:98:90:c5:11:6c:c6:b3:ee:78:4d:28:
d4:ef:d6:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:34 2023 by rpki-client on console-fra.rpki-client.org