Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/hbJpSYopOQlTCG9OzVnPDVu6KSU.roa
File: hbJpSYopOQlTCG9OzVnPDVu6KSU.roa (raw, json)
Hash identifier: eUerehWzmtXc+WeAL3z2l9PB1ewlo6vHU3+La3Tr7Rk=
Subject key identifier: 85:B2:69:49:8A:29:39:09:53:08:6F:4E:CD:59:CF:0D:5B:BA:29:25
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 01C81E41
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/hbJpSYopOQlTCG9OzVnPDVu6KSU.roa
Signing time: Mon 24 Jan 2022 04:10:41 +0000
ROA not before: Mon 24 Jan 2022 04:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 185.105.239.0/24 maxlen: 24
185.231.115.0/24 maxlen: 24
194.147.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29892161 (0x1c81e41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jan 24 04:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85b269498a29390953086f4ecd59cf0d5bba2925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0c:d3:b4:ca:1f:5e:e7:d7:9d:c1:00:7c:2c:
10:15:18:72:9c:7c:b7:bc:2f:53:73:b6:1c:fe:b7:
dd:05:ea:9f:5f:6a:f1:a3:56:e8:96:04:43:bf:9b:
33:82:73:f1:07:9e:a2:6b:5b:6b:ae:31:06:75:3e:
78:b4:34:21:ba:68:ca:be:bc:9e:67:0d:04:6c:42:
73:e7:d1:6c:50:c2:25:5d:09:33:bc:f3:b6:c9:89:
fe:e3:05:88:42:c9:90:65:1a:20:6b:7b:4b:94:fa:
18:92:4c:c7:a4:3f:d0:c7:a7:2b:db:5c:9f:6d:b2:
26:a8:91:45:03:97:ef:85:d9:d5:99:58:ca:d0:94:
fb:36:a3:48:4e:3c:ca:ba:d4:9f:a8:04:cd:1f:ff:
33:1a:04:b4:50:3c:b7:d9:53:8f:43:c0:27:47:33:
62:42:73:d1:8a:eb:77:ff:89:ce:60:7a:bb:39:41:
80:16:d4:ca:6b:74:de:83:df:08:61:cb:81:a9:cc:
a2:78:94:5d:51:b0:54:71:dd:1f:62:18:56:82:47:
b4:99:1d:cf:6a:6a:11:c9:e6:83:67:b1:e1:f0:25:
4a:62:91:32:a7:f6:ff:70:41:b1:d9:e2:0e:90:c2:
a9:e4:88:7c:24:07:0f:0e:71:16:00:1c:f6:2d:90:
3e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:B2:69:49:8A:29:39:09:53:08:6F:4E:CD:59:CF:0D:5B:BA:29:25
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/hbJpSYopOQlTCG9OzVnPDVu6KSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.239.0/24
185.231.115.0/24
194.147.142.0/24
Signature Algorithm: sha256WithRSAEncryption
22:5c:dd:30:ac:b8:ee:f2:e3:d8:51:8f:c3:53:3c:e4:71:d4:
24:f2:cc:d2:c1:9a:eb:19:65:2a:ca:c5:39:ba:2c:00:83:22:
4e:cb:2b:d2:e1:2e:21:ed:05:58:c4:78:72:9a:e1:b4:7b:4a:
df:42:52:1b:3a:10:3b:77:52:f9:a8:40:5a:f4:85:9b:7b:6f:
b2:df:15:e9:37:93:d8:c4:d9:92:2b:34:83:3b:a9:d5:71:8a:
20:c3:26:84:ee:67:c7:ed:7c:30:59:81:c4:3b:8b:5d:a5:fd:
dc:7a:1c:20:5e:c0:ff:d1:82:0d:25:c3:b8:48:59:6e:a2:5c:
86:64:08:16:6c:1a:4f:be:5c:2e:3f:48:f1:41:bc:b6:08:f5:
c1:6c:9c:ef:4a:40:2e:6d:4c:74:10:49:f0:5f:da:db:d8:a1:
3d:5e:3b:b0:a7:26:7d:87:c7:49:ea:89:93:94:4d:41:8f:a8:
e3:d2:46:29:04:ca:c8:fe:7a:39:0b:bb:fd:70:9d:ad:d5:5e:
48:1d:46:e7:b3:77:a3:66:f4:85:c0:ac:2d:76:56:98:f3:8e:
66:6f:c6:e0:a0:c9:0a:23:67:e6:1b:5c:09:7e:cc:07:3a:56:
fe:0e:68:c7:52:2d:9b:be:89:9b:72:21:51:55:eb:77:18:62:
f9:54:75:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org