Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/8a44d5-3d74-4b8a-93c0-0436250277ff/1/2Hfx6xLhCWzlhrmC6_ObBTYjWI4.roa
File: 2Hfx6xLhCWzlhrmC6_ObBTYjWI4.roa (raw, json)
Hash identifier: DVsQMbl+0xvSGIuOu1K+c80x/7hZCK95ckpY0VeQk54=
Subject key identifier: D8:77:F1:EB:12:E1:09:6C:E5:86:B9:82:EB:F3:9B:05:36:23:58:8E
Certificate issuer: /CN=abce214564c2f48ebe97a4376ed127e31c50b974
Certificate serial: 010E928C
Authority key identifier: AB:CE:21:45:64:C2:F4:8E:BE:97:A4:37:6E:D1:27:E3:1C:50:B9:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q84hRWTC9I6-l6Q3btEn4xxQuXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/8a44d5-3d74-4b8a-93c0-0436250277ff/1/2Hfx6xLhCWzlhrmC6_ObBTYjWI4.roa
Signing time: Sat 01 Jan 2022 12:56:11 +0000
ROA not before: Sat 01 Jan 2022 12:56:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.234.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17732236 (0x10e928c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abce214564c2f48ebe97a4376ed127e31c50b974
Validity
Not Before: Jan 1 12:56:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d877f1eb12e1096ce586b982ebf39b053623588e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:63:32:65:cc:5f:d5:7e:38:bc:5b:ca:d6:d9:
af:ce:a6:89:7e:36:3d:28:8b:ac:5e:69:36:d0:53:
c2:7e:24:38:b4:90:7f:b3:35:a9:4b:01:a1:09:ed:
b0:21:b3:f9:c8:bf:ec:44:fe:55:55:6b:ba:28:28:
81:7f:5b:2f:b7:d0:21:ae:21:34:70:31:0e:29:00:
96:69:e0:d7:fb:b4:58:ed:48:fc:47:8e:4d:33:ce:
dc:b1:1e:eb:ba:c2:9c:fa:7b:a7:7f:14:9d:a0:aa:
e6:b3:ed:dc:93:a7:82:f1:0e:f0:29:98:83:40:da:
9d:f8:a6:c5:b3:8a:bd:de:c3:11:11:49:60:c9:df:
91:17:20:21:af:8f:a1:b9:ab:9a:65:34:00:f1:39:
9f:17:23:31:92:1a:27:ee:93:59:77:ae:e3:9a:04:
7c:ac:f6:90:5b:ff:e2:29:e2:b9:80:8c:19:05:c1:
5b:a5:d0:14:47:4e:a2:a7:ac:ec:7b:1b:70:4e:9b:
5e:a5:68:5e:5b:a1:27:ef:f1:e4:a4:68:95:01:94:
f3:4a:cd:93:9c:79:64:77:c0:4a:48:69:47:a3:4e:
49:7c:f9:db:0f:a5:0d:a7:22:78:21:b8:5c:ce:98:
39:1b:5e:72:99:d0:02:79:8d:c4:ba:15:3f:80:5f:
f6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:77:F1:EB:12:E1:09:6C:E5:86:B9:82:EB:F3:9B:05:36:23:58:8E
X509v3 Authority Key Identifier:
keyid:AB:CE:21:45:64:C2:F4:8E:BE:97:A4:37:6E:D1:27:E3:1C:50:B9:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q84hRWTC9I6-l6Q3btEn4xxQuXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/8a44d5-3d74-4b8a-93c0-0436250277ff/1/2Hfx6xLhCWzlhrmC6_ObBTYjWI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/8a44d5-3d74-4b8a-93c0-0436250277ff/1/q84hRWTC9I6-l6Q3btEn4xxQuXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.15.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:c1:e9:e7:41:25:18:b0:0e:4f:e5:59:bd:42:7f:a6:a3:97:
1b:11:7a:e1:57:97:7d:80:c0:f8:04:88:23:15:d0:43:33:b9:
dd:21:d1:4a:c2:56:d3:cc:97:88:d6:09:54:de:fd:53:29:9f:
c4:16:07:c2:24:f3:5d:f7:04:15:fe:d6:fd:44:3b:f2:3a:44:
16:87:28:8c:5a:9e:61:41:ed:c1:65:f0:70:b3:b0:ab:8b:b1:
c5:8d:34:4e:39:6e:7f:35:f6:4c:a8:b5:dd:20:e1:05:71:c5:
0f:f0:28:f7:c9:cb:3f:11:f8:d1:87:1c:a4:36:82:e4:c4:39:
23:91:29:fd:9d:66:2b:34:86:5d:50:1f:98:2b:f2:e4:02:53:
30:bf:a0:63:17:3d:5a:e5:7b:6c:8f:77:ed:fa:99:74:b8:8e:
0e:b6:d9:a3:36:a1:32:f7:da:3e:d9:20:ed:7e:76:98:9b:f5:
d6:24:47:69:b1:0d:ed:6b:55:da:a2:49:0b:30:b6:d8:55:83:
b9:53:34:75:7b:9a:62:d0:ce:32:c9:60:15:b8:25:52:15:cc:
18:a0:a5:86:93:d4:91:7d:13:e6:06:09:e3:f7:40:fb:62:61:
24:2d:72:3e:8c:a3:50:4a:6f:20:0e:b0:fb:c4:36:11:15:e4:
40:bc:da:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:12 2023 by rpki-client on console-fra.rpki-client.org