Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/_I_lZj09-JS_Zjd8-NemlIR0EBc.roa
File: _I_lZj09-JS_Zjd8-NemlIR0EBc.roa (raw, json)
Hash identifier: RNVHIqJeXozdfDDRVr2eCzJCRw6PrU0SnWxrrdEr1EE=
Subject key identifier: FC:8F:E5:66:3D:3D:F8:94:BF:66:37:7C:F8:D7:A6:94:84:74:10:17
Certificate issuer: /CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Certificate serial: 130A5A8B
Authority key identifier: 8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/_I_lZj09-JS_Zjd8-NemlIR0EBc.roa
Signing time: Sat 01 Jan 2022 03:51:34 +0000
ROA not before: Sat 01 Jan 2022 03:51:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2856
IP address blocks: 185.68.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 319445643 (0x130a5a8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6a23a2fd1a0956378a37d4fce259df2bd794a7
Validity
Not Before: Jan 1 03:51:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc8fe5663d3df894bf66377cf8d7a69484741017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:08:1b:80:d5:49:4d:fe:dc:2d:27:2d:c6:d8:
c8:3c:09:cc:3e:3f:ab:5d:99:22:35:50:2e:a0:be:
ea:32:f6:8a:95:fa:73:e5:95:4a:bd:51:eb:44:4f:
fb:0b:5b:1f:c0:02:35:18:f4:1b:92:4b:c6:54:71:
c7:1d:b4:45:5e:a9:9d:32:7c:b0:e1:a9:d6:a8:04:
a6:0c:c8:56:1b:ea:e4:35:ff:0e:78:32:97:51:c1:
07:f7:1b:84:cc:99:28:bc:bd:66:0d:0c:7c:bc:9d:
09:76:78:ce:62:be:91:40:71:7d:3a:a8:3a:21:47:
cb:c7:b2:e6:e7:ab:4b:6f:44:ab:4a:af:63:64:ff:
ba:94:0a:65:76:37:a5:17:9e:75:07:47:e8:69:29:
e5:31:9b:08:13:ee:b6:d6:70:e3:fe:5d:ad:22:4d:
5b:e2:41:68:37:75:a6:92:4b:6a:1f:22:c1:a9:77:
bb:1d:56:ab:50:59:d6:3b:a3:51:50:ff:a1:15:97:
f8:6c:8d:66:8c:24:2e:37:78:b0:2c:bf:9f:94:60:
2f:61:4b:01:e0:44:0a:3e:2f:c0:54:d1:d7:44:8a:
e0:4d:2f:88:32:2a:e8:4c:ff:c2:10:97:c9:2a:e5:
b1:dc:87:96:9a:b3:57:eb:b6:85:a6:8f:9d:20:09:
37:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8F:E5:66:3D:3D:F8:94:BF:66:37:7C:F8:D7:A6:94:84:74:10:17
X509v3 Authority Key Identifier:
keyid:8B:6A:23:A2:FD:1A:09:56:37:8A:37:D4:FC:E2:59:DF:2B:D7:94:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2ojov0aCVY3ijfU_OJZ3yvXlKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/_I_lZj09-JS_Zjd8-NemlIR0EBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/f91b2c-c5fe-4625-a180-9a46ed5b42db/1/i2ojov0aCVY3ijfU_OJZ3yvXlKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.200.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:68:21:d7:f4:d7:21:11:26:43:80:fc:2b:9d:69:ff:60:f1:
ca:ec:5b:d8:51:cf:f9:09:80:2d:04:d9:e7:70:3d:ac:0f:f0:
aa:8a:d2:e0:89:7e:e8:02:de:78:8f:96:fe:27:8f:dd:d3:be:
7d:f8:62:b0:96:96:5d:f5:a8:ac:fd:83:a4:61:b8:86:41:69:
18:5f:40:9d:d6:47:09:c0:3e:b4:2a:71:0e:4f:36:c5:77:2c:
8b:9b:91:e5:fa:9a:37:ee:a9:3e:22:11:c6:81:9f:ff:f6:fb:
68:08:1f:0b:cb:2e:d4:b3:96:70:d1:b6:42:f6:d7:e1:f7:65:
8f:be:af:19:ed:fd:a9:0d:17:89:fe:50:ae:5b:cf:da:c0:ba:
ad:9f:a4:9b:b3:01:dd:c6:0c:9f:27:25:0e:6e:94:62:e5:13:
99:e6:6d:16:ca:49:35:fe:c7:38:c4:4c:47:60:68:a7:d2:a9:
d3:64:41:9e:41:ec:a1:4f:8c:c1:67:57:92:c5:e7:a8:43:fb:
88:cb:79:b1:d4:1a:7f:69:ed:3f:c8:97:c8:74:50:99:2a:a5:
c5:26:d7:8b:2f:15:70:8c:6c:62:ac:38:14:b6:f6:5e:e2:07:
28:6a:40:cb:be:21:ea:ea:ab:d0:a7:69:ea:d8:25:5c:4d:57:
a4:27:99:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:24 2023 by rpki-client on console-fra.rpki-client.org