Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/_uKOggqmo8vcVazWP4X3OFA-Lw4.roa
File: _uKOggqmo8vcVazWP4X3OFA-Lw4.roa (raw, json)
Hash identifier: ycT+qWQGQjyUQ576cFYKhRzhpWFZQXvB96dFFD04zsY=
Subject key identifier: FE:E2:8E:82:0A:A6:A3:CB:DC:55:AC:D6:3F:85:F7:38:50:3E:2F:0E
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 01A4A801
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/_uKOggqmo8vcVazWP4X3OFA-Lw4.roa
Signing time: Fri 21 Jan 2022 14:14:35 +0000
ROA not before: Fri 21 Jan 2022 14:14:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206762
IP address blocks: 185.238.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27568129 (0x1a4a801)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: Jan 21 14:14:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fee28e820aa6a3cbdc55acd63f85f738503e2f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ec:c6:f4:34:36:24:5f:43:f9:55:ba:cd:cf:
9b:91:ce:05:a2:b6:48:45:e0:9f:aa:88:1c:55:c8:
f3:e0:c4:d1:aa:cc:a8:01:8b:17:f0:dd:69:70:e3:
f2:ac:d4:93:b5:e4:83:2c:83:a3:9d:cf:d2:d8:09:
30:9c:b6:94:f7:84:68:83:a2:b1:50:45:a1:aa:2d:
00:5d:92:c0:da:9f:8b:97:e5:44:2e:e8:d9:b2:9a:
50:09:72:96:20:01:32:a3:13:ad:28:78:9a:91:05:
07:6a:91:e1:cf:f6:60:38:32:16:cb:0f:f8:ec:ea:
af:8f:af:07:ee:d2:fa:87:e1:92:f0:f0:d0:e6:0b:
50:53:44:27:f4:e5:ef:5f:e9:50:e8:f1:2b:8b:b9:
93:f9:48:12:b7:4b:bd:f0:b4:bc:b9:ed:c6:53:ec:
bf:50:fe:ca:a3:8f:9d:e9:92:44:5d:64:da:c4:24:
50:c1:06:a5:67:ba:5e:0f:fe:e9:17:ed:0b:88:37:
ae:5d:b6:5e:6a:b4:9c:ad:0f:d8:5e:b8:d7:d6:e4:
79:2c:3c:a5:32:cf:57:42:e1:0f:fb:fc:19:18:f3:
a5:4e:43:c6:3a:34:3c:b6:62:be:b1:49:c2:81:e3:
85:9a:f7:68:e5:61:0a:2c:10:9a:d6:9a:79:08:ed:
c2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E2:8E:82:0A:A6:A3:CB:DC:55:AC:D6:3F:85:F7:38:50:3E:2F:0E
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/_uKOggqmo8vcVazWP4X3OFA-Lw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.62.0/24
Signature Algorithm: sha256WithRSAEncryption
15:6f:74:8a:67:04:71:86:eb:e1:f4:76:a2:e8:32:9c:2f:af:
0b:06:6a:c0:81:72:da:69:e1:2f:15:10:ba:67:40:90:d2:84:
16:80:37:f5:c4:ea:55:e4:e1:c7:0e:0f:05:c8:cc:51:c8:50:
1a:2b:66:b9:34:12:0c:f0:ec:f4:d2:1c:9e:36:1f:77:50:4d:
f5:88:31:a9:a4:c5:bd:9e:d8:2f:f7:e1:6a:7f:25:9d:67:15:
c2:7a:37:a8:72:b1:21:f4:2b:81:b5:d3:32:dd:9e:4f:f9:43:
f4:02:3a:78:ef:5b:70:c8:ca:59:4c:bd:27:90:a9:df:19:12:
96:60:c1:d8:f0:e5:8f:bb:d2:1b:91:e3:28:87:1c:24:5e:dd:
31:a9:ec:15:97:7c:a7:ca:8d:f6:67:89:25:80:35:a4:b5:b9:
df:fa:c6:04:6b:4d:88:e2:5e:d7:25:5c:a3:3f:1b:ed:72:5e:
8b:5e:31:05:f8:9f:36:43:ee:b7:75:62:8c:42:bf:e6:c3:e6:
e3:a3:e4:9e:42:9f:89:1c:2b:2f:b7:b5:ef:09:e7:14:0a:fb:
85:be:7b:84:cd:42:7d:3c:f1:cf:af:2c:d2:6c:0f:6b:54:33:
53:a9:e9:50:7a:aa:56:38:f8:3b:99:c1:a7:db:c8:96:62:14:
88:8f:8d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:29 2024 by rpki-client on console-ams.rpki-client.org