Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/7dc85c-b0a1-48d9-9870-3825bf33e4ec/1/8oE1vOideqgC-URXtGN78Qflvmc.roa
File: 8oE1vOideqgC-URXtGN78Qflvmc.roa (raw, json)
Hash identifier: QW4reusvZPJexiS9POJyTlwpODUePyU+YAjgrr8+U3g=
Subject key identifier: F2:81:35:BC:E8:9D:7A:A8:02:F9:44:57:B4:63:7B:F1:07:E5:BE:67
Certificate issuer: /CN=ec4af6fdc16d68ae26aa0eab5623e6be217036c1
Certificate serial: 08C108DD
Authority key identifier: EC:4A:F6:FD:C1:6D:68:AE:26:AA:0E:AB:56:23:E6:BE:21:70:36:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Er2_cFtaK4mqg6rViPmviFwNsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/7dc85c-b0a1-48d9-9870-3825bf33e4ec/1/8oE1vOideqgC-URXtGN78Qflvmc.roa
Signing time: Sat 01 Jan 2022 12:03:02 +0000
ROA not before: Sat 01 Jan 2022 12:03:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43955
IP address blocks: 92.119.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146868445 (0x8c108dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4af6fdc16d68ae26aa0eab5623e6be217036c1
Validity
Not Before: Jan 1 12:03:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f28135bce89d7aa802f94457b4637bf107e5be67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bf:91:93:84:0c:f4:0b:3c:7b:13:c3:7d:b0:
18:ad:8e:b2:4b:11:a2:af:9a:14:d9:5e:a7:75:56:
13:cd:49:a4:9a:12:2c:55:5b:ee:b6:4f:fd:7e:6d:
eb:4c:05:22:4c:e5:0e:5b:1d:28:8c:77:1c:f9:20:
26:e4:a6:ac:43:7d:c0:54:db:3c:e9:6c:12:b7:fb:
7a:88:b6:57:13:3d:0b:3d:5a:92:65:a6:bd:05:8d:
0d:f0:ca:a1:4d:eb:91:d8:4d:fb:47:db:08:96:50:
91:55:d4:ce:f7:d8:76:dd:c4:93:09:b4:60:ab:93:
1b:a2:08:3b:e5:fd:f3:40:f1:7b:ab:b3:dc:49:c5:
94:95:b9:0b:be:38:67:39:a2:3f:dc:72:40:78:89:
c0:8f:3e:d5:4b:04:e2:79:80:30:7d:76:86:21:90:
76:6a:d3:0d:eb:d5:63:9c:2c:d5:eb:32:95:49:7c:
e9:53:5f:52:34:71:d5:70:26:82:47:a7:5f:bd:8f:
14:6c:6e:d9:73:2b:6a:53:a4:d7:1e:64:ec:ab:c4:
39:2f:58:bf:fe:45:4f:7f:a6:7e:82:7c:78:df:62:
d2:8f:6b:8a:86:ba:3b:07:70:96:ef:44:5b:93:ce:
39:ea:44:a7:fe:db:40:50:fe:f1:71:e5:03:be:c6:
fa:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:81:35:BC:E8:9D:7A:A8:02:F9:44:57:B4:63:7B:F1:07:E5:BE:67
X509v3 Authority Key Identifier:
keyid:EC:4A:F6:FD:C1:6D:68:AE:26:AA:0E:AB:56:23:E6:BE:21:70:36:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Er2_cFtaK4mqg6rViPmviFwNsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/7dc85c-b0a1-48d9-9870-3825bf33e4ec/1/8oE1vOideqgC-URXtGN78Qflvmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/7dc85c-b0a1-48d9-9870-3825bf33e4ec/1/7Er2_cFtaK4mqg6rViPmviFwNsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.58.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:d5:99:ad:5a:26:6b:32:bd:cd:99:0b:33:04:ef:3f:ef:fe:
62:85:e5:c0:a9:d0:62:e0:c6:64:fb:5b:46:05:8f:5b:39:ce:
77:cc:c5:12:d8:1b:50:9f:63:7e:9b:e8:7d:cb:67:76:ab:50:
d3:ed:c8:76:90:68:05:b4:06:76:31:88:5c:42:8e:87:7e:34:
cf:6b:ca:41:df:86:97:a6:b7:78:50:35:fe:8c:86:8d:4d:ff:
d4:57:77:18:fa:6e:42:e3:89:e6:1a:3b:c9:8a:34:83:82:5f:
d0:09:18:7a:0a:36:0d:42:0c:e9:dd:d1:f3:8e:f1:f7:a9:13:
4c:72:ef:06:56:e0:38:36:f7:0c:11:c5:22:c6:6e:de:2c:51:
40:7b:75:c7:2f:8f:04:de:e0:91:00:5d:cc:b8:8b:31:a2:ec:
0d:0d:a0:46:ee:7d:15:c6:8b:08:b2:85:be:e9:7c:88:db:05:
85:20:27:4a:fe:98:60:61:28:f5:2f:0a:a5:8c:81:02:d5:ee:
84:4b:b4:b0:58:4c:53:9f:90:48:9d:0d:39:5c:59:52:9d:c9:
cd:6c:2f:8d:88:a0:2d:56:39:b5:4e:08:7d:c7:02:ac:3e:2b:
d5:e0:c7:d3:e0:11:1b:09:ca:2a:56:d8:11:36:f6:7a:d6:a0:
b7:5c:24:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org