Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/84mmGBiFmQL9MaBdHUfvvzKNoHA.roa
File: 84mmGBiFmQL9MaBdHUfvvzKNoHA.roa (raw, json)
Hash identifier: lRUa5IbPFUhq4RIFZm4wufu93waGbrHoy9U9Bn+7wDI=
Subject key identifier: F3:89:A6:18:18:85:99:02:FD:31:A0:5D:1D:47:EF:BF:32:8D:A0:70
Certificate issuer: /CN=7bbd51272064b63b2c663c0296ba11db5ea238c0
Certificate serial: 12098505
Authority key identifier: 7B:BD:51:27:20:64:B6:3B:2C:66:3C:02:96:BA:11:DB:5E:A2:38:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e71RJyBktjssZjwClroR216iOMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/84mmGBiFmQL9MaBdHUfvvzKNoHA.roa
Signing time: Sat 01 Jan 2022 13:06:04 +0000
ROA not before: Sat 01 Jan 2022 13:06:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50530
IP address blocks: 185.129.184.0/22 maxlen: 22
185.129.189.0/24 maxlen: 24
185.129.188.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302613765 (0x12098505)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bbd51272064b63b2c663c0296ba11db5ea238c0
Validity
Not Before: Jan 1 13:06:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f389a61818859902fd31a05d1d47efbf328da070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:60:ec:86:44:03:80:43:29:e3:ca:07:fb:0b:
da:01:29:91:54:d2:1b:cc:60:78:9a:be:28:84:6f:
4c:00:5e:50:94:79:ee:82:63:18:4b:de:d3:c6:34:
c3:95:31:13:a6:75:b7:5d:02:9a:73:34:4b:1f:30:
5a:d9:94:56:ca:48:7d:58:f9:da:9b:48:ad:07:41:
34:3c:19:a5:33:1a:ae:06:1f:18:6f:eb:1e:23:6b:
62:01:62:70:92:30:9a:9d:94:93:a5:84:21:ca:41:
cb:ed:31:11:b6:79:fe:91:ba:39:50:61:72:0a:63:
b0:ad:5b:fa:10:05:3b:03:15:43:2c:e8:5f:09:29:
92:7d:40:44:e7:68:0b:8b:59:a3:10:88:11:7f:37:
eb:ef:be:61:16:db:12:9f:32:fb:98:29:b7:2b:01:
03:94:8f:dc:e2:43:e2:3b:70:a0:59:55:8e:67:2f:
5d:6e:38:a4:36:ed:51:e9:40:62:a6:15:88:c6:e8:
77:37:f2:34:7c:fe:63:33:2b:cb:81:1e:a3:20:57:
11:7f:88:ab:04:90:24:d9:ad:47:e5:b0:a8:b3:13:
ae:4f:e6:9c:b2:0b:4c:a2:d3:64:e1:64:d8:01:59:
13:6a:28:af:6b:e3:96:b9:13:07:24:4d:5f:e9:c3:
bb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:89:A6:18:18:85:99:02:FD:31:A0:5D:1D:47:EF:BF:32:8D:A0:70
X509v3 Authority Key Identifier:
keyid:7B:BD:51:27:20:64:B6:3B:2C:66:3C:02:96:BA:11:DB:5E:A2:38:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e71RJyBktjssZjwClroR216iOMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/84mmGBiFmQL9MaBdHUfvvzKNoHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/e71RJyBktjssZjwClroR216iOMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.184.0-185.129.189.255
Signature Algorithm: sha256WithRSAEncryption
cc:51:b0:06:db:63:e6:29:16:9c:f0:4e:e4:49:bb:ef:85:a7:
df:29:64:85:b3:8c:82:08:5c:36:17:62:56:b3:83:15:56:41:
b9:ba:3d:b2:e0:75:7a:2e:47:c9:58:1f:51:2a:d5:9d:34:6e:
eb:1b:2a:5b:90:02:a3:c6:c1:55:e8:36:4c:0c:44:73:01:f4:
87:45:56:39:92:ab:b0:e5:2c:ea:4c:43:f4:bd:f1:fa:86:34:
bc:44:fd:9c:a7:d0:1a:08:18:2e:c2:7d:d7:96:ba:48:d0:46:
5b:a4:71:b6:e5:60:f4:e9:30:3a:26:73:95:77:d6:0b:cd:54:
a6:d6:95:21:f8:0e:33:8e:12:ae:e7:db:73:fd:86:ab:ea:58:
e3:96:94:8f:f0:38:d0:e8:7b:b2:7f:38:0b:13:d9:3a:53:29:
41:36:71:9f:b9:7b:96:7f:40:cc:92:7c:8c:ad:48:f1:b5:48:
ff:4c:15:b2:76:b2:88:50:91:cd:22:8d:f0:27:2d:b4:f5:0d:
88:b1:5c:0b:bb:7e:da:a3:61:5a:a2:77:39:a9:1e:51:24:96:
a1:8e:c6:83:64:1b:85:b5:35:ab:76:bf:fb:4d:f4:51:d7:f4:
47:7f:cf:e3:67:a6:8d:e2:6e:97:15:7f:85:4d:fc:d8:ec:c6:
40:4f:7f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:49 2023 by rpki-client on console-fra.rpki-client.org