Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/8XG0Ovj_upK5yGbpZTGruYS3SEU.roa
File: 8XG0Ovj_upK5yGbpZTGruYS3SEU.roa (raw, json)
Hash identifier: Yw96rz+gjDzhsahxDltp3CkZh7bjisaauFiL5aPvkfU=
Subject key identifier: F1:71:B4:3A:F8:FF:BA:92:B9:C8:66:E9:65:31:AB:B9:84:B7:48:45
Certificate issuer: /CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Certificate serial: 0A7920CD
Authority key identifier: A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/8XG0Ovj_upK5yGbpZTGruYS3SEU.roa
Signing time: Mon 21 Feb 2022 13:03:17 +0000
ROA not before: Mon 21 Feb 2022 13:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3262
IP address blocks: 185.226.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175710413 (0xa7920cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Validity
Not Before: Feb 21 13:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f171b43af8ffba92b9c866e96531abb984b74845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:92:83:d1:5e:96:28:04:ff:1a:ca:a0:49:e8:
bd:fe:e1:05:9f:dc:fa:44:31:7c:7f:de:ab:3b:c7:
22:d4:24:50:91:ed:5c:31:d4:a4:6d:3c:cd:a5:cf:
03:a4:65:c9:e8:7a:d2:aa:f1:e1:0e:06:dc:ea:d5:
e2:bc:86:7b:7d:18:bf:54:48:f5:45:f2:99:9a:7e:
34:ec:de:6a:41:73:9a:c3:9b:bb:e2:bc:43:fc:cf:
48:30:99:4c:21:ad:d3:a2:4a:36:23:f9:2a:6e:b4:
ad:a4:75:8e:ea:13:10:21:0e:f4:89:4d:50:52:6b:
36:2b:0d:a4:c8:69:c6:b5:6c:2f:a6:c7:3f:ce:58:
31:56:0a:32:2d:b0:1c:21:11:21:83:d2:66:01:54:
a3:97:d3:a3:a1:5e:90:77:4b:e3:66:b6:bb:6f:89:
8c:5b:9e:af:de:15:03:6a:6b:4f:0f:08:cf:26:15:
c3:3c:7d:61:10:6a:ab:da:3e:e2:c9:91:d9:bf:f7:
f2:e2:ef:fc:ba:af:3d:61:5c:10:f2:e7:eb:1f:b9:
88:cc:95:c4:32:f8:00:bf:7f:2b:dc:87:b7:49:f9:
c5:7b:00:f6:7a:1f:5c:6c:f0:5d:22:35:c8:00:f9:
9a:34:fc:d8:3a:70:1b:27:70:8a:4b:65:a4:c8:b0:
e2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:71:B4:3A:F8:FF:BA:92:B9:C8:66:E9:65:31:AB:B9:84:B7:48:45
X509v3 Authority Key Identifier:
keyid:A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/8XG0Ovj_upK5yGbpZTGruYS3SEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qEkgTKTw605W4I4Jn-N4XOBv_qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.229.0/24
Signature Algorithm: sha256WithRSAEncryption
19:6a:eb:da:8d:33:45:25:f9:6d:fa:23:9e:4a:a8:39:1b:36:
2e:66:5d:2e:d9:2f:8b:2c:aa:71:36:0d:b8:3d:20:29:98:dd:
d5:a4:55:66:90:1a:3f:8a:83:33:1b:59:c5:8b:b9:d1:b8:c1:
ce:03:7f:47:5b:61:1c:de:ac:4c:be:23:5b:b0:1d:e8:cc:72:
d2:dd:02:31:dd:c1:26:1b:c9:74:28:3c:17:f0:b9:a2:4d:64:
45:97:6d:01:18:79:c1:ec:d6:20:4f:72:c4:af:3f:e8:ff:ac:
10:8c:59:13:7f:71:27:ff:d8:2f:06:79:0a:79:9b:82:83:0f:
27:6a:6a:ab:9c:9e:f7:8b:5b:9f:27:8d:c1:1a:fb:97:8b:8b:
10:84:ed:30:b1:00:13:78:ab:d3:a9:f2:87:16:ce:34:e3:cd:
63:73:d4:9c:59:a2:81:2a:a0:dd:e6:b0:32:da:b6:40:f9:91:
9f:85:d3:9f:1e:63:26:61:0f:fa:d7:1e:5d:35:1e:3a:1a:cb:
5d:01:bd:60:96:67:d1:de:53:19:32:1d:b9:6c:92:f2:f7:e8:
4b:85:e5:99:78:14:74:6e:cf:69:40:27:73:e7:2d:16:5a:ff:
52:b3:fd:7d:6a:48:16:72:00:f4:e1:6e:7c:cc:43:6c:df:de:
46:6d:61:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:02 2024 by rpki-client on console-fra.rpki-client.org