Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/7o83x4KHBDGQ_QuiG0b-D6J9C9I.roa
File: 7o83x4KHBDGQ_QuiG0b-D6J9C9I.roa (raw, json)
Hash identifier: iUa9ScVZoZnz6167SmVMoYqNy35DlHXwHc/QCVkCFdc=
Subject key identifier: EE:8F:37:C7:82:87:04:31:90:FD:0B:A2:1B:46:FE:0F:A2:7D:0B:D2
Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Certificate serial: 018572711220E1F7C437DD12C51F192A497D
Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/7o83x4KHBDGQ_QuiG0b-D6J9C9I.roa
Signing time: Mon 02 Jan 2023 12:24:50 +0000
ROA not before: Mon 02 Jan 2023 12:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5400
IP address blocks: 185.68.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:12:20:e1:f7:c4:37:dd:12:c5:1f:19:2a:49:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Validity
Not Before: Jan 2 12:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee8f37c78287043190fd0ba21b46fe0fa27d0bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a5:bc:41:f4:42:35:f1:c2:ba:71:32:d5:e4:
12:91:35:d8:a0:dd:40:8b:71:72:ce:24:c2:2e:57:
34:aa:3a:5f:69:91:da:8c:b9:ba:a1:1b:87:9e:66:
3c:77:5d:b7:63:4d:dd:00:aa:f6:b7:51:29:63:57:
e2:57:d3:4c:fd:e0:0f:34:a3:61:e2:62:7e:1b:88:
2f:71:b7:5b:f9:6a:fe:6d:5f:f8:c5:24:9e:df:82:
70:52:9a:48:9f:a5:6a:8e:aa:20:62:cf:fe:59:df:
9d:53:08:1d:6e:50:84:35:40:21:c9:6c:d9:a4:83:
c9:9e:0c:6b:21:86:15:e8:a8:a5:11:dc:c0:62:8b:
53:e9:af:f6:8b:b1:e5:47:2f:7f:d1:9b:4e:28:d2:
bd:ee:1e:33:47:d2:81:b0:bc:76:f6:3c:af:64:ab:
ff:90:d5:e3:82:86:44:2b:87:ad:c6:b9:f0:54:ed:
c8:98:6f:de:06:77:ef:fc:ac:bf:8f:ed:b5:a8:ca:
71:92:06:50:48:2d:f8:83:c9:88:cc:2f:c0:6b:38:
d1:92:90:31:72:b9:b9:9b:f7:ba:73:9f:c1:0e:c5:
85:9e:1e:5f:f2:9e:96:2e:8e:3a:6b:0e:b4:cd:99:
24:c7:b5:59:2c:76:d6:b6:1c:e7:8f:62:82:ca:d1:
d6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8F:37:C7:82:87:04:31:90:FD:0B:A2:1B:46:FE:0F:A2:7D:0B:D2
X509v3 Authority Key Identifier:
keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/7o83x4KHBDGQ_QuiG0b-D6J9C9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.200.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:83:53:97:78:05:8d:78:0e:aa:b1:6f:ca:1d:11:50:c9:06:
cb:e8:fa:40:65:58:20:02:d5:c2:16:6d:40:87:09:0d:76:2a:
6c:10:99:b3:99:82:44:16:e4:5e:c1:a7:cc:b6:22:34:4a:fc:
5f:23:94:4c:3d:2d:89:67:d2:58:a4:c3:24:bd:94:6c:16:e6:
22:3b:57:c5:6b:f1:cb:c3:28:db:fd:30:1b:2a:46:6a:f9:dc:
cc:46:d8:14:5f:af:15:8f:59:03:c7:56:d4:8e:e2:1d:b2:91:
54:b4:e5:ea:53:e5:74:35:65:95:ce:6a:d6:94:a9:a5:b4:f6:
2e:be:a2:b3:34:e1:d0:fd:3d:50:1f:f6:32:49:91:f5:6f:5d:
88:cf:4f:15:87:bc:f5:eb:02:94:7b:08:8e:be:a4:47:bd:af:
af:0c:36:cb:87:18:c4:f6:69:04:0c:d0:48:46:ee:9a:db:9f:
90:6b:a5:f8:aa:22:16:86:4b:06:ff:51:78:53:26:e6:c9:f5:
6c:19:26:0d:13:e5:97:65:a9:a7:cc:87:fb:69:77:3a:77:48:
94:65:eb:3e:98:13:ec:b3:23:8b:f4:dc:39:d9:9d:80:13:66:
f0:ae:f2:1d:65:d7:ab:c4:6c:e3:5c:04:59:29:9a:1b:8f:ba:
5c:57:95:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:41 2025 by rpki-client