Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/faa95f-3b32-41fe-abe3-c27c4a610bd3/1/rF6mzgW9TrPex7fztdZ0wBKRKjg.roa
File: rF6mzgW9TrPex7fztdZ0wBKRKjg.roa (raw, json)
Hash identifier: DsNL/NZjI9ql229jW1cwWj9Rk7By9BVFR6NHR7JQNhQ=
Subject key identifier: AC:5E:A6:CE:05:BD:4E:B3:DE:C7:B7:F3:B5:D6:74:C0:12:91:2A:38
Certificate issuer: /CN=f01c8997a354bc7d4e5a60a9f42438a182fa998a
Certificate serial: 0B107DD1
Authority key identifier: F0:1C:89:97:A3:54:BC:7D:4E:5A:60:A9:F4:24:38:A1:82:FA:99:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8ByJl6NUvH1OWmCp9CQ4oYL6mYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/faa95f-3b32-41fe-abe3-c27c4a610bd3/1/rF6mzgW9TrPex7fztdZ0wBKRKjg.roa
Signing time: Sat 01 Jan 2022 11:57:01 +0000
ROA not before: Sat 01 Jan 2022 11:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60498
IP address blocks: 185.31.28.0/24 maxlen: 24
185.31.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185630161 (0xb107dd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f01c8997a354bc7d4e5a60a9f42438a182fa998a
Validity
Not Before: Jan 1 11:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac5ea6ce05bd4eb3dec7b7f3b5d674c012912a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:41:cd:2c:4f:09:4b:48:0d:f4:50:87:3f:40:
44:7c:57:7c:41:b7:86:59:55:ce:7e:3f:6c:5b:e0:
64:b6:08:a9:2e:4c:d5:d9:a3:24:ac:67:72:a9:97:
ef:66:ea:ed:b4:1e:f2:bb:09:23:ca:95:e6:88:da:
fa:4b:7b:ff:21:53:88:5e:6c:66:66:34:00:c8:4d:
79:3e:d6:e3:90:88:dd:d2:8e:92:31:e7:9d:35:5d:
36:bb:d3:be:15:c2:97:59:ab:2d:6e:81:e0:58:cf:
18:e7:5a:5b:bd:d8:c8:23:ab:b6:cc:4c:40:fe:93:
16:cc:0e:b4:3e:f3:b8:3a:31:f1:10:21:59:a5:08:
27:88:ea:28:ba:e0:0e:d2:51:bc:28:29:30:ef:14:
ac:20:7d:af:14:5a:9f:d3:db:e1:00:dc:ab:6d:ee:
b3:2e:18:79:92:be:8c:bf:38:16:1e:ad:32:b8:17:
02:7b:9b:ca:5f:db:9e:8c:79:57:a3:fc:f4:4c:fe:
08:80:ac:f6:eb:a4:b9:84:27:28:02:81:23:77:4f:
98:ca:ea:9d:ef:37:f4:85:24:5c:14:7f:09:b2:c0:
10:0b:9b:d3:4c:f9:d6:0e:2f:f9:f4:0a:48:7a:85:
72:af:9f:37:15:b3:22:26:bd:7d:47:f0:ff:66:10:
62:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5E:A6:CE:05:BD:4E:B3:DE:C7:B7:F3:B5:D6:74:C0:12:91:2A:38
X509v3 Authority Key Identifier:
keyid:F0:1C:89:97:A3:54:BC:7D:4E:5A:60:A9:F4:24:38:A1:82:FA:99:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8ByJl6NUvH1OWmCp9CQ4oYL6mYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/faa95f-3b32-41fe-abe3-c27c4a610bd3/1/rF6mzgW9TrPex7fztdZ0wBKRKjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/faa95f-3b32-41fe-abe3-c27c4a610bd3/1/8ByJl6NUvH1OWmCp9CQ4oYL6mYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.28.0/24
185.31.30.0/24
Signature Algorithm: sha256WithRSAEncryption
37:07:89:5c:c5:e8:66:1d:5d:57:9b:db:d9:5f:e6:9e:8f:fd:
22:86:14:50:5a:d7:84:0a:f9:d4:1c:a7:a0:5e:70:29:5b:4c:
11:33:7b:b2:8b:ce:e3:69:db:66:0d:3d:09:a2:b1:6f:bc:b4:
ec:c3:ec:f9:9d:66:e4:ac:24:7b:f0:10:30:a2:2d:95:85:d3:
2b:52:a7:48:a0:38:6a:af:8f:f1:1c:7f:c3:91:cc:bf:af:59:
8b:1f:b7:cf:83:0e:19:8a:db:35:e0:1c:02:17:33:a9:97:5e:
e5:08:9d:54:a0:c0:5b:65:a5:a3:38:51:2a:29:8a:28:c5:5a:
3d:e0:12:98:d5:9c:f7:87:4d:5d:fc:f7:03:d7:47:87:8f:82:
2e:27:a6:00:3c:e8:46:12:93:32:56:e6:b4:45:39:41:4d:2d:
0d:c8:90:2a:94:a2:e3:5d:ac:88:4c:b2:9d:1c:db:4f:08:09:
09:2e:80:38:0d:c6:c1:6a:00:54:6c:bd:d5:a7:31:60:d2:c1:
6f:f4:e7:6c:db:8b:cc:b3:3d:03:b4:8e:b0:2f:59:c7:ad:39:
b2:44:48:59:3c:a4:d6:94:c8:33:eb:1d:1f:00:f6:01:c6:3d:
52:60:00:37:0f:f1:ca:05:96:e6:63:68:29:54:ae:88:d6:f2:
be:b8:5a:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:31 2023 by rpki-client on console-ams.rpki-client.org