Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-IT8XvS0VybDO-mLXw8rwWNwWUo.roa
File: 1-IT8XvS0VybDO-mLXw8rwWNwWUo.roa (raw, json)
Hash identifier: A1t6nMr5s7RrNSac5gGGVKtxE89i9B6kyQHhNbFwbcc=
Subject key identifier: F8:84:FC:5E:F4:B4:57:26:C3:3B:E9:8B:5F:0F:2B:C1:63:70:59:4A
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 418BA776
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-IT8XvS0VybDO-mLXw8rwWNwWUo.roa
Signing time: Sat 01 Jan 2022 10:05:58 +0000
ROA not before: Sat 01 Jan 2022 10:05:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35268
IP address blocks: 85.204.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1099671414 (0x418ba776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 10:05:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f884fc5ef4b45726c33be98b5f0f2bc16370594a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a0:7a:2c:e6:34:8b:29:ca:f1:96:3d:6f:9d:
5d:06:1f:ed:50:ca:c1:d2:74:ef:19:7c:43:15:3e:
29:c9:05:a9:39:50:1a:33:27:b5:f4:aa:5a:78:cc:
c5:be:b5:b0:27:3c:44:5c:77:0b:5b:74:a5:39:59:
42:d4:ff:53:7a:14:a9:3c:8a:92:ca:9c:f3:22:60:
90:30:b3:34:0e:f5:20:84:da:f4:3c:09:ad:33:47:
6f:bb:44:5b:f3:dc:61:0a:97:b7:85:44:4a:27:e3:
35:5a:77:e8:08:f0:45:81:ac:68:fb:98:e3:a7:09:
c4:ee:b7:10:61:0c:6a:ec:ca:fa:70:24:5d:40:7f:
42:a0:5c:58:11:d4:98:17:b9:92:10:81:d0:4d:ed:
e8:ad:71:57:92:dc:0b:0c:f1:e8:d9:55:17:36:30:
c9:97:ba:1c:d1:40:fb:87:3e:b7:d5:5f:ae:72:4b:
2f:3f:17:ef:85:dc:be:c1:2e:d9:aa:7c:b3:3a:46:
f9:5b:63:7d:30:14:da:df:a5:98:b3:94:3f:b9:d0:
b3:db:09:a5:0c:2b:cb:6e:4c:83:4c:0c:97:37:02:
56:5e:d3:e5:fa:d2:2f:3a:27:9f:7d:6a:19:6e:1f:
3a:56:0e:87:fb:65:81:4c:39:8f:03:e6:2a:c1:e6:
48:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:84:FC:5E:F4:B4:57:26:C3:3B:E9:8B:5F:0F:2B:C1:63:70:59:4A
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-IT8XvS0VybDO-mLXw8rwWNwWUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.134.0/24
Signature Algorithm: sha256WithRSAEncryption
71:c5:c7:67:70:95:88:94:0b:27:52:28:40:1c:3b:5c:10:ce:
a2:da:02:ac:8f:eb:6d:77:c0:eb:3d:f6:06:9f:62:d7:02:24:
68:46:1a:a8:68:d3:57:43:16:4a:5a:30:62:f9:cd:14:da:3a:
6f:5b:58:d4:77:b0:f9:af:6f:55:1d:35:10:3b:83:3f:b0:1b:
aa:7d:ae:3e:79:55:93:a3:76:3b:9b:82:83:9d:7d:5c:8a:c5:
d7:40:3a:ce:1f:8b:53:c3:77:8d:cf:84:31:c0:49:be:90:8a:
3d:9f:23:de:9c:20:f8:24:ee:0d:f8:e8:59:46:92:8a:0a:37:
a7:50:ea:40:f8:b9:4c:73:f1:c8:4b:b9:dc:2e:dd:dc:04:1a:
35:8c:5a:7b:c2:15:21:6b:60:9e:b3:94:bf:1c:84:d4:d9:27:
9c:ee:43:86:ea:bb:c1:d9:23:74:2e:6a:8c:10:f5:b0:a8:d7:
c5:9d:57:7e:0a:83:bd:de:22:4d:c0:b2:70:5d:6c:e8:c5:28:
f6:28:75:ae:98:f5:8a:db:85:bc:56:3a:eb:00:d9:70:8f:49:
0d:ad:5a:b6:2a:b8:67:83:f8:29:f5:6b:dc:d3:ed:f7:d6:b6:
6a:76:6a:c3:9e:eb:60:13:65:88:b5:43:02:78:9b:67:aa:31:
7c:ae:13:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:52 2024 by rpki-client on console-ams.rpki-client.org