Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/b79ee0-d4d1-4869-a62d-fd96ffebcfa1/1/sAh5vgat7b8UVoqLp_Yxn3upI7o.roa
File: sAh5vgat7b8UVoqLp_Yxn3upI7o.roa (raw, json)
Hash identifier: i4nbr162FgyVJVUPtOpbj19URiVyXgPmgPCRYVphmHQ=
Subject key identifier: B0:08:79:BE:06:AD:ED:BF:14:56:8A:8B:A7:F6:31:9F:7B:A9:23:BA
Certificate issuer: /CN=31da9e35b770e2e681f756cd7d20812a82e11611
Certificate serial: 1595B39F
Authority key identifier: 31:DA:9E:35:B7:70:E2:E6:81:F7:56:CD:7D:20:81:2A:82:E1:16:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdqeNbdw4uaB91bNfSCBKoLhFhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/b79ee0-d4d1-4869-a62d-fd96ffebcfa1/1/sAh5vgat7b8UVoqLp_Yxn3upI7o.roa
Signing time: Sat 01 Jan 2022 00:53:51 +0000
ROA not before: Sat 01 Jan 2022 00:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60471
IP address blocks: 185.30.144.0/22 maxlen: 22
185.30.144.0/23 maxlen: 24
185.30.146.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 362132383 (0x1595b39f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31da9e35b770e2e681f756cd7d20812a82e11611
Validity
Not Before: Jan 1 00:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b00879be06adedbf14568a8ba7f6319f7ba923ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:70:5c:ed:d1:21:50:2a:95:ce:e5:40:92:56:
45:60:07:8c:8a:36:cc:47:68:a4:44:44:dc:45:60:
65:69:ef:c9:5c:14:f3:e9:db:99:ae:ba:4f:89:81:
e6:19:08:a1:9c:5e:e6:41:66:72:30:ad:e5:c7:b3:
18:2b:4f:2d:e4:f0:78:06:60:0a:42:40:ec:af:96:
bc:39:9f:1f:c0:9f:c0:c6:8e:55:2b:06:5d:87:bf:
64:11:e6:59:38:81:25:b3:e7:0a:7d:32:94:de:3b:
ae:64:9a:ba:a5:d5:96:57:c8:97:a1:67:27:65:a1:
d5:e8:84:52:64:c4:d5:69:6f:70:fd:31:cc:08:ae:
d2:ee:a8:5f:0d:a3:28:e5:9d:33:c7:0b:4a:d2:24:
e6:b0:a9:70:f3:bd:ad:1a:23:22:ee:6e:48:41:34:
c5:46:06:00:68:33:19:db:2f:b3:85:5e:b9:3d:e4:
72:0c:81:b7:c5:2e:c5:80:05:cf:26:6b:72:f4:10:
f7:c5:b9:2e:2f:f1:83:1d:13:70:09:ce:e3:af:2a:
4f:4b:17:41:28:7d:2b:cb:a7:ff:6c:6e:ce:79:6a:
c7:bd:3e:39:89:a2:60:df:f1:79:bb:94:32:d3:6a:
f5:df:13:76:e0:cb:66:82:47:18:62:e2:2a:94:4e:
9e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:08:79:BE:06:AD:ED:BF:14:56:8A:8B:A7:F6:31:9F:7B:A9:23:BA
X509v3 Authority Key Identifier:
keyid:31:DA:9E:35:B7:70:E2:E6:81:F7:56:CD:7D:20:81:2A:82:E1:16:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdqeNbdw4uaB91bNfSCBKoLhFhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b79ee0-d4d1-4869-a62d-fd96ffebcfa1/1/sAh5vgat7b8UVoqLp_Yxn3upI7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b79ee0-d4d1-4869-a62d-fd96ffebcfa1/1/MdqeNbdw4uaB91bNfSCBKoLhFhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.144.0/22
Signature Algorithm: sha256WithRSAEncryption
95:c2:bb:87:4d:a7:2b:24:73:c3:56:d5:56:fa:62:85:98:e9:
4f:34:52:a9:b0:ef:3f:d8:a6:a2:e1:b0:cd:a7:49:88:2b:6f:
28:9c:3b:ea:45:85:01:1f:79:9f:54:2a:a5:12:fd:93:15:d7:
ad:ff:e4:72:63:46:d8:fa:c3:4f:d1:eb:79:ad:a0:5b:5a:5c:
1b:9a:7d:7f:8d:24:48:0f:2b:72:56:2e:62:05:92:4a:58:59:
63:b7:87:87:90:d9:dd:75:b9:77:c3:be:0c:1a:3f:ac:c7:55:
c4:7f:0d:d5:e3:49:eb:67:f0:45:9a:8d:81:5d:42:1b:db:ba:
45:21:0f:a5:67:c7:c7:33:00:f4:e0:6b:17:63:7f:97:b0:49:
60:ce:39:33:f1:d4:ab:30:4a:58:93:94:36:e8:48:39:ef:30:
ad:70:06:65:48:7f:0c:f8:81:49:7c:ae:46:fe:64:27:39:05:
93:84:50:ce:84:62:02:f3:e7:d3:8a:89:bf:99:f3:28:11:62:
40:35:d7:45:2c:6b:00:c1:00:07:1e:70:fc:61:61:6d:56:85:
14:4f:a8:35:fb:3a:4c:68:33:aa:5b:30:eb:c5:31:d0:cc:28:
c1:08:31:c0:e9:3b:63:1a:1c:db:e1:b8:5b:8f:fd:d6:83:5e:
1e:79:10:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:24 2024 by rpki-client on console-ams.rpki-client.org