Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/gDPNGtTPdqCpZiDk5CncOZkLnbw.roa
File: gDPNGtTPdqCpZiDk5CncOZkLnbw.roa (raw, json)
Hash identifier: P7WXoL8R6sNH682VxF9MaDeYlQs0jjBjDvyk+oNW9J0=
Subject key identifier: 80:33:CD:1A:D4:CF:76:A0:A9:66:20:E4:E4:29:DC:39:99:0B:9D:BC
Certificate issuer: /CN=23cbbf9348ae558c6efa0c086f24be04cb23c6e9
Certificate serial: 0406FA55
Authority key identifier: 23:CB:BF:93:48:AE:55:8C:6E:FA:0C:08:6F:24:BE:04:CB:23:C6:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8u_k0iuVYxu-gwIbyS-BMsjxuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/gDPNGtTPdqCpZiDk5CncOZkLnbw.roa
Signing time: Sat 01 Jan 2022 02:01:47 +0000
ROA not before: Sat 01 Jan 2022 02:01:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30900
IP address blocks: 185.104.216.0/22 maxlen: 22
185.24.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67566165 (0x406fa55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23cbbf9348ae558c6efa0c086f24be04cb23c6e9
Validity
Not Before: Jan 1 02:01:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8033cd1ad4cf76a0a96620e4e429dc39990b9dbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:13:78:9e:30:ef:b4:4e:04:88:5a:3b:c0:80:
92:2f:56:56:bf:f4:7f:a3:05:84:97:4c:1f:21:e8:
42:ae:e4:21:aa:5e:0b:e4:4d:b4:03:59:47:53:f7:
2a:4c:25:62:33:cb:22:d8:e4:68:64:33:be:cc:99:
35:df:40:29:0e:fb:fc:c8:cf:b9:7f:a2:e8:f3:d1:
48:f0:39:5e:75:fd:fe:cd:6c:e0:56:ad:52:9b:1e:
6d:ac:1b:9d:7b:1c:44:6e:d5:ad:cd:b5:85:9a:9e:
da:cd:8d:32:01:b7:24:20:7e:b0:f4:20:8d:19:80:
b8:9f:34:1c:89:b5:24:03:9d:a4:f3:55:27:a1:b4:
97:90:af:80:34:49:41:d1:44:0f:fc:c8:f1:be:e2:
8f:2b:a6:7d:c8:7a:bb:57:dc:f1:fc:13:ce:d6:4d:
e6:d5:73:56:19:2c:21:f3:31:dc:fa:e7:1b:d2:f9:
40:8e:93:1b:b5:37:c1:55:80:50:5e:ad:84:d4:68:
7d:37:d0:5d:c2:eb:59:ee:d3:f6:e8:09:5c:cf:d9:
22:ee:c2:48:3d:bb:ca:cd:6a:2d:53:0e:00:05:72:
94:40:b8:4f:00:ea:f1:98:dd:22:e5:1d:38:cc:86:
19:33:32:d7:68:87:a4:32:ad:4a:84:2f:bc:8b:3a:
2d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:33:CD:1A:D4:CF:76:A0:A9:66:20:E4:E4:29:DC:39:99:0B:9D:BC
X509v3 Authority Key Identifier:
keyid:23:CB:BF:93:48:AE:55:8C:6E:FA:0C:08:6F:24:BE:04:CB:23:C6:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8u_k0iuVYxu-gwIbyS-BMsjxuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/gDPNGtTPdqCpZiDk5CncOZkLnbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/I8u_k0iuVYxu-gwIbyS-BMsjxuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.232.0/22
185.104.216.0/22
Signature Algorithm: sha256WithRSAEncryption
16:8a:e4:99:b7:bd:82:99:80:15:a3:df:28:1e:e6:38:81:8e:
48:c9:60:19:47:a8:41:b0:59:5e:50:b3:b2:d2:8a:21:f6:2c:
5b:1a:0f:67:22:22:75:bd:6a:22:9a:70:34:8b:a9:5c:91:0f:
3a:5b:d3:05:7e:26:c5:18:da:cf:b9:7b:41:a9:23:e8:20:f5:
18:38:66:45:fd:ef:23:6d:b7:69:77:5b:87:e8:ed:69:a5:5f:
4b:61:4e:e1:34:16:8c:d7:f4:3c:15:3c:b9:a6:9f:54:20:2d:
f9:4c:c5:0c:cb:16:60:67:ac:81:e5:c9:a6:c5:c0:3d:f9:53:
34:45:15:3a:6b:ab:d4:18:b7:fe:4e:88:8f:be:98:97:94:ae:
2a:3c:5f:96:cc:5f:2f:73:a4:fd:3a:9a:d1:3e:27:47:34:32:
1b:40:54:f7:b3:6c:3e:f7:36:c9:44:0c:d5:e3:a3:01:f7:8f:
c6:8b:a4:ee:49:95:8f:4b:8a:df:e8:bc:f1:18:d1:62:90:8a:
96:e3:14:0f:a4:a1:79:16:34:2f:bc:da:6c:54:36:7f:d3:52:
91:cf:13:61:f0:8f:e4:08:21:ed:44:a3:1c:07:42:c1:5d:b7:
eb:02:2f:14:11:00:37:1d:7f:c5:22:97:ed:2b:d3:85:55:e9:
9e:9f:3b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:13 2023 by rpki-client on console-ams.rpki-client.org