Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/E21IBjVFVfjUn2cJBhyTdVoNDEk.roa
File: E21IBjVFVfjUn2cJBhyTdVoNDEk.roa (raw, json)
Hash identifier: GqMQO+35lW5tMwOW4YilNHUN3M/A0W3rsWerFESzhTU=
Subject key identifier: 13:6D:48:06:35:45:55:F8:D4:9F:67:09:06:1C:93:75:5A:0D:0C:49
Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Certificate serial: 12291F3D
Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/E21IBjVFVfjUn2cJBhyTdVoNDEk.roa
Signing time: Sat 01 Jan 2022 00:58:48 +0000
ROA not before: Sat 01 Jan 2022 00:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41960
IP address blocks: 185.246.30.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304684861 (0x12291f3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4
Validity
Not Before: Jan 1 00:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=136d4806354555f8d49f6709061c93755a0d0c49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:59:55:79:88:97:7f:bc:bc:33:2c:8e:54:14:
8d:e2:94:7d:46:a8:1d:fb:d3:27:bd:10:19:71:14:
41:ba:10:c5:af:8a:d6:8f:4f:1c:29:e6:0e:8f:ca:
5d:36:22:c2:ca:56:55:5d:75:9e:33:a8:6d:2b:dc:
50:c5:02:4f:80:dd:2f:60:1c:b9:eb:26:ca:49:bc:
7e:c7:90:1e:b3:3c:8e:e1:5e:67:04:a4:cd:40:f9:
10:1f:e5:56:e6:1b:48:c7:1e:e9:11:15:b3:4e:7a:
ce:be:07:35:46:df:ae:f6:72:90:6a:05:dd:34:3a:
d8:2b:41:d3:13:dd:03:f3:66:b8:ae:8b:a8:1e:9e:
38:02:7a:a9:1d:7d:d8:8f:d8:dc:73:89:73:ce:2a:
e2:ce:a5:88:3e:d9:a8:e8:9a:07:ad:45:b1:59:f4:
80:1f:79:b6:2e:ea:08:28:93:df:32:8e:f6:1a:cf:
ba:aa:87:59:4f:f2:97:09:42:f9:33:13:76:9e:cd:
e9:c1:8c:b6:2e:c0:21:d7:d8:42:60:23:2e:2d:b4:
15:56:4f:64:2e:b6:50:e7:79:4f:74:65:a0:3a:df:
fa:8d:10:f7:6b:1d:ec:11:9c:65:82:55:5c:c4:86:
0b:a3:f0:20:cc:98:48:68:da:f1:5d:78:20:1b:6e:
20:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:6D:48:06:35:45:55:F8:D4:9F:67:09:06:1C:93:75:5A:0D:0C:49
X509v3 Authority Key Identifier:
keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/E21IBjVFVfjUn2cJBhyTdVoNDEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.30.0/23
Signature Algorithm: sha256WithRSAEncryption
17:bb:e3:e6:dc:2c:30:ae:d2:1a:69:1f:29:50:73:dc:30:fd:
c6:ff:96:10:f2:dc:43:81:7e:18:69:27:01:22:be:ad:5d:46:
6c:ce:86:21:1d:42:46:8e:2e:e2:20:b2:ee:55:88:00:41:2c:
5b:33:e9:ed:28:32:75:d9:d7:1e:3f:b6:e2:b4:4b:5a:fb:b0:
dc:43:aa:36:89:db:14:8e:44:c9:1d:1e:a6:1a:c3:67:bf:99:
f7:43:39:d9:f6:ba:36:7e:39:b7:60:ab:1e:24:74:32:b9:a5:
a8:f7:0f:8b:a2:0d:cc:96:00:8c:db:a1:f6:90:c7:63:d2:33:
37:ef:5b:44:90:69:7c:4c:50:bb:e9:a5:85:2a:b9:25:58:70:
1a:e1:01:10:c8:ad:bc:db:a3:bc:b4:74:26:b5:02:b6:4d:b8:
77:fe:5e:0f:98:c1:15:76:95:d6:d6:80:70:c7:14:e3:95:27:
7f:fb:79:13:9c:c6:d2:43:a7:72:4a:9f:f5:25:6f:6e:ca:e5:
51:4c:43:8e:cb:83:4f:32:e0:2d:9f:ca:dd:88:75:9c:c2:63:
62:e5:32:8e:5d:21:ce:07:88:17:c0:d7:da:8f:a8:eb:cb:a5:
28:d1:eb:e7:98:b9:d0:73:d0:37:9f:94:16:9c:7b:c6:14:65:
36:62:33:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:46 2023 by rpki-client on console-ams.rpki-client.org