Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/90d366-2fab-47e5-90b9-0265e5cd6966/1/J8xGlxYd7MdSE9oTCfVdzsRG6dc.roa
File: J8xGlxYd7MdSE9oTCfVdzsRG6dc.roa (raw, json)
Hash identifier: UjNkaCOwH83SpbG6qbtupDPnGNHTJcqWMOPeGovk/Ek=
Subject key identifier: 27:CC:46:97:16:1D:EC:C7:52:13:DA:13:09:F5:5D:CE:C4:46:E9:D7
Certificate issuer: /CN=f324d0f47297680535eb2799189db888b4066782
Certificate serial: 0181F1738A232D738E3E26B0B0DF32EE6BBE
Authority key identifier: F3:24:D0:F4:72:97:68:05:35:EB:27:99:18:9D:B8:88:B4:06:67:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yTQ9HKXaAU16yeZGJ24iLQGZ4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/90d366-2fab-47e5-90b9-0265e5cd6966/1/J8xGlxYd7MdSE9oTCfVdzsRG6dc.roa
Signing time: Tue 12 Jul 2022 08:08:09 +0000
ROA not before: Tue 12 Jul 2022 08:08:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 185.90.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f1:73:8a:23:2d:73:8e:3e:26:b0:b0:df:32:ee:6b:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f324d0f47297680535eb2799189db888b4066782
Validity
Not Before: Jul 12 08:08:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27cc4697161decc75213da1309f55dcec446e9d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ff:4f:a5:61:00:47:67:08:ad:a6:85:e7:aa:
b3:64:89:c2:fb:cf:21:6c:ce:6b:d1:c1:87:00:51:
e8:90:b1:e2:88:23:12:a3:b2:0d:65:00:81:e1:50:
8a:75:c0:8a:fa:24:ef:36:59:1f:96:b2:f6:42:94:
7f:1d:e4:3e:09:48:71:b5:ef:85:e5:7b:cd:95:4f:
f3:0e:11:5e:9b:60:59:cd:49:5c:f1:aa:6e:61:60:
21:30:08:33:b3:8c:ba:c6:2d:4f:dc:c6:e3:c4:4b:
b9:0c:4b:53:c6:cf:85:25:ea:95:ea:cd:3d:f8:e4:
c0:92:bc:61:20:2a:f3:e0:03:b3:8b:fa:9b:6c:8c:
cc:a7:00:0d:0b:09:81:f5:e6:d2:e2:f9:35:01:5c:
47:47:56:ee:eb:da:48:ba:c6:53:1d:75:7a:7f:e2:
0a:e2:fc:3d:0d:cd:6c:9a:1a:a0:2e:65:63:b9:6c:
c2:02:11:3e:26:3d:ad:88:7d:a7:e8:ed:99:05:1f:
e0:78:b1:0f:3f:f3:29:fe:25:17:c5:60:70:ed:31:
d0:b8:21:4d:12:09:42:27:1d:c6:e7:cc:06:98:2e:
ee:95:96:d0:89:7c:68:06:ca:bb:df:06:37:37:8a:
48:18:f3:ef:60:63:e0:1d:9b:09:d5:2d:40:44:f1:
d9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:CC:46:97:16:1D:EC:C7:52:13:DA:13:09:F5:5D:CE:C4:46:E9:D7
X509v3 Authority Key Identifier:
keyid:F3:24:D0:F4:72:97:68:05:35:EB:27:99:18:9D:B8:88:B4:06:67:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yTQ9HKXaAU16yeZGJ24iLQGZ4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/90d366-2fab-47e5-90b9-0265e5cd6966/1/J8xGlxYd7MdSE9oTCfVdzsRG6dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/90d366-2fab-47e5-90b9-0265e5cd6966/1/8yTQ9HKXaAU16yeZGJ24iLQGZ4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.68.0/22
Signature Algorithm: sha256WithRSAEncryption
19:3a:cb:d7:1d:20:09:20:da:d7:2b:e4:18:6f:e8:f8:7c:31:
f3:4e:f9:d7:cd:64:8e:8d:97:b9:31:4a:a2:08:2b:a2:27:8a:
3f:24:8b:6b:46:7f:c9:a3:52:77:34:3b:1f:26:a5:82:a4:f4:
bd:df:ec:e9:13:03:fb:c6:d9:a2:d8:16:d3:83:e5:c0:cd:41:
f6:a6:d1:ff:bb:43:8c:49:c5:c5:49:bb:02:d9:c9:94:0a:07:
bf:73:37:9a:05:14:d9:f0:33:7e:e5:ea:07:dc:bf:c2:cf:91:
d2:4c:17:c4:87:ef:6d:9e:5e:c0:3d:a0:2c:6c:48:f5:19:e5:
79:9d:cc:fe:90:9c:eb:ad:73:dd:01:f9:a9:7c:d6:da:5d:ba:
42:ce:ea:7e:3d:99:2c:95:39:36:cc:25:93:f6:77:9b:b6:f4:
de:cd:39:10:79:5e:b1:8c:f8:2d:e9:77:cc:f9:b3:7b:8e:83:
9a:8d:f2:c4:5b:bc:af:f2:5a:97:99:1e:4c:15:85:55:68:62:
bd:0e:6a:dc:b0:63:05:b4:06:69:ec:15:03:1b:e3:50:5c:80:
4f:0b:18:c9:a7:d5:24:a0:2a:c5:14:54:58:1b:1a:b2:a6:e3:
4e:2b:0d:6b:de:a1:6c:4b:44:06:49:e5:43:9b:10:2c:ea:95:
17:f5:7b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:21 2024 by rpki-client on console-ams.rpki-client.org