Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/fdd51e-bca1-4892-b97a-69aa53c69d54/1/s7O_iSZ6NVVSBHJ1G0uqQeAizT4.roa
File: s7O_iSZ6NVVSBHJ1G0uqQeAizT4.roa (raw, json)
Hash identifier: YR1+jPK8qGLZZyYrk0lQ9GauO7Yt0BUJ+1KG2JE8Ezw=
Subject key identifier: B3:B3:BF:89:26:7A:35:55:52:04:72:75:1B:4B:AA:41:E0:22:CD:3E
Certificate issuer: /CN=1cfb087ffb7f61ce113f69345e4d50a113808fea
Certificate serial: 029D6B4C
Authority key identifier: 1C:FB:08:7F:FB:7F:61:CE:11:3F:69:34:5E:4D:50:A1:13:80:8F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HPsIf_t_Yc4RP2k0Xk1QoROAj-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/fdd51e-bca1-4892-b97a-69aa53c69d54/1/s7O_iSZ6NVVSBHJ1G0uqQeAizT4.roa
Signing time: Sat 01 Jan 2022 06:02:27 +0000
ROA not before: Sat 01 Jan 2022 06:02:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48716
IP address blocks: 185.253.8.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43871052 (0x29d6b4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cfb087ffb7f61ce113f69345e4d50a113808fea
Validity
Not Before: Jan 1 06:02:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3b3bf89267a3555520472751b4baa41e022cd3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6b:da:4d:0a:d2:25:2c:87:6c:90:e9:57:5a:
68:8b:59:c0:29:fd:15:9b:09:64:a4:8d:0e:a9:2d:
18:cd:91:54:d8:6c:b8:0f:e4:f3:98:07:06:b3:20:
b5:04:5b:88:45:02:cb:e9:e4:89:77:27:ac:5b:46:
ce:b3:42:e3:fb:17:4c:8a:f3:73:b8:1c:d7:49:66:
90:c0:e5:7c:f3:17:1b:9b:61:98:e0:7e:2a:38:ee:
fa:8a:e7:91:9b:72:e8:5f:30:4c:4d:92:28:ff:d1:
4c:e2:e4:1a:a3:5b:a9:1b:eb:58:71:07:70:ab:81:
08:1d:8a:c6:8d:f3:91:ec:07:30:82:4a:e5:2b:16:
f5:97:96:18:a4:9e:af:01:b8:ee:57:89:f2:97:72:
40:93:d1:5e:93:1c:38:e2:55:74:ef:0b:fc:8b:ae:
4b:b1:7b:14:9d:c2:4b:0b:5f:36:5f:93:ff:a3:6d:
73:0b:8f:5d:d4:f6:84:db:18:12:6d:dd:a4:ae:30:
ff:32:fa:22:97:aa:52:09:40:f2:99:c5:92:bd:a8:
43:e4:ee:f3:e1:62:20:75:b1:f3:ac:aa:09:af:5d:
e4:30:5b:44:44:6f:5b:c0:49:34:f8:64:cf:c6:ca:
87:8a:d9:03:ff:6d:e2:58:e9:cd:61:a8:3b:70:e1:
58:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B3:BF:89:26:7A:35:55:52:04:72:75:1B:4B:AA:41:E0:22:CD:3E
X509v3 Authority Key Identifier:
keyid:1C:FB:08:7F:FB:7F:61:CE:11:3F:69:34:5E:4D:50:A1:13:80:8F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPsIf_t_Yc4RP2k0Xk1QoROAj-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/fdd51e-bca1-4892-b97a-69aa53c69d54/1/s7O_iSZ6NVVSBHJ1G0uqQeAizT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/fdd51e-bca1-4892-b97a-69aa53c69d54/1/HPsIf_t_Yc4RP2k0Xk1QoROAj-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.8.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:c4:dc:9a:df:fc:e7:91:04:e7:59:77:8f:b1:b2:6c:97:92:
4e:21:f1:ec:69:e1:2b:9e:04:8f:0b:06:69:a3:a4:ab:2c:17:
ed:b4:f0:c9:45:bf:7b:e3:fb:80:ae:e7:a8:92:fe:35:30:91:
d6:d4:ad:b0:58:e5:8b:a5:07:9c:8c:d9:71:5f:d0:6c:88:d3:
e2:54:d0:2d:d2:35:26:b2:3f:46:08:52:8d:da:2d:b9:25:5c:
fe:29:67:ac:39:ee:17:5b:65:13:81:f2:9e:c2:9d:2b:d0:b1:
ae:4b:c3:55:b3:12:f5:78:31:6f:bd:a3:f4:ad:83:86:24:cd:
f5:3b:32:38:a0:84:b1:85:84:e9:ca:81:8f:03:f9:3c:2f:d0:
db:17:cd:04:50:4a:75:a6:64:5f:99:59:4c:05:3d:8e:2c:9a:
e7:32:76:a2:56:dd:32:7c:1e:c3:4f:cd:e4:49:d5:a9:14:00:
de:4d:12:fc:07:90:ed:b7:35:17:57:ec:55:f3:66:b3:f0:9e:
df:0e:0c:00:57:f4:1a:bd:36:15:8e:60:35:51:b5:ad:dc:47:
09:b4:30:1e:55:0c:55:d3:ce:b8:ce:21:7a:cd:cd:49:28:74:
a3:79:71:88:dd:7a:8f:b1:dd:23:16:88:6b:58:b6:ff:c7:4e:
06:ba:22:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:40 2024 by rpki-client on console-ams.rpki-client.org