Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/_X2hGoLfaw7jJ7BAtnyflg37HHY.roa
File: _X2hGoLfaw7jJ7BAtnyflg37HHY.roa (raw, json)
Hash identifier: 6FkLDUtk5vRQsDP5GbT3zbx8gk+ikWMABilqYOLTMgc=
Subject key identifier: FD:7D:A1:1A:82:DF:6B:0E:E3:27:B0:40:B6:7C:9F:96:0D:FB:1C:76
Certificate issuer: /CN=c588a079e4ceb6bb24c23c5271e4583e1cf2f9a9
Certificate serial: 0182252C19181BD2C2E81F1800CDC66A9357
Authority key identifier: C5:88:A0:79:E4:CE:B6:BB:24:C2:3C:52:71:E4:58:3E:1C:F2:F9:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xYigeeTOtrskwjxSceRYPhzy-ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/_X2hGoLfaw7jJ7BAtnyflg37HHY.roa
Signing time: Fri 22 Jul 2022 09:10:23 +0000
ROA not before: Fri 22 Jul 2022 09:10:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202561
IP address blocks: 185.208.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:25:2c:19:18:1b:d2:c2:e8:1f:18:00:cd:c6:6a:93:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c588a079e4ceb6bb24c23c5271e4583e1cf2f9a9
Validity
Not Before: Jul 22 09:10:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd7da11a82df6b0ee327b040b67c9f960dfb1c76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:21:1a:60:99:05:1b:d2:15:a7:96:1b:f8:ed:
78:89:8a:22:c9:f0:4a:06:b8:e3:9e:48:1d:8d:a2:
f0:0d:32:ba:24:93:64:0a:00:11:e9:44:73:e3:16:
bd:20:0b:14:e7:65:24:e5:db:b9:35:c8:38:6f:fb:
00:e4:f5:4d:7a:24:86:b9:92:3c:8e:df:4e:29:27:
b6:69:e7:b3:dd:36:cd:32:93:71:b5:cf:b0:f4:21:
54:1d:24:43:b3:72:18:5d:19:cc:90:da:f7:48:77:
76:c5:cd:27:8e:3f:a0:d2:30:a0:82:91:bf:28:09:
cb:7e:13:a7:ab:2b:15:88:35:21:88:05:0e:43:b1:
5c:80:a5:ef:ad:1b:0a:00:da:59:93:ef:e8:00:42:
91:f8:b7:fd:96:4b:10:02:52:6b:3e:28:07:7b:c0:
83:dc:4a:7b:86:66:34:1f:da:79:bd:8a:83:d0:18:
74:09:7c:ee:7b:43:8b:d5:0f:14:58:f3:54:23:df:
ac:d8:61:50:63:7a:4d:e1:69:1f:2b:9a:02:a6:e8:
b5:c2:83:b5:be:b6:d1:19:49:e3:13:13:9b:2b:69:
a1:ef:7d:70:b5:31:e3:61:c1:91:3e:da:2e:c3:3f:
95:f5:58:14:05:40:3c:9a:bb:da:c7:f7:ca:9b:c5:
d4:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:7D:A1:1A:82:DF:6B:0E:E3:27:B0:40:B6:7C:9F:96:0D:FB:1C:76
X509v3 Authority Key Identifier:
keyid:C5:88:A0:79:E4:CE:B6:BB:24:C2:3C:52:71:E4:58:3E:1C:F2:F9:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xYigeeTOtrskwjxSceRYPhzy-ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/_X2hGoLfaw7jJ7BAtnyflg37HHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bb4b8f-b6a2-4d00-9612-17edb98bbb08/1/xYigeeTOtrskwjxSceRYPhzy-ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.102.0/24
Signature Algorithm: sha256WithRSAEncryption
38:de:d6:ce:de:ac:4e:f0:c8:25:89:17:71:3d:50:e9:4f:f9:
5c:5f:df:ee:a1:63:53:2c:e2:66:c5:d6:7c:ea:54:f8:98:c3:
fb:e6:00:8d:f3:26:84:d7:a8:69:70:39:f3:ac:fa:eb:1a:8d:
80:9e:34:51:0b:75:66:5d:ae:b7:79:a2:24:98:e3:5c:6f:e1:
84:49:3c:c2:a6:15:94:31:49:c5:56:90:58:e6:c3:a9:01:5d:
ae:a8:19:08:77:d6:05:0d:dc:2e:73:85:df:b1:0c:76:8f:aa:
5c:ac:b9:f9:37:3d:c8:19:b4:48:a4:63:9e:66:1f:f2:31:a9:
47:ed:0d:d7:ca:91:0c:cd:f1:8e:67:4f:e9:64:46:19:e7:15:
fe:06:43:1f:ee:b5:bc:8e:15:5d:2a:75:f1:ad:bd:c8:43:f9:
10:b0:77:9b:7b:aa:51:91:a4:07:1d:b2:e0:ba:23:ed:73:4c:
f2:0c:53:4c:34:7e:92:24:f4:e0:59:e0:ee:1f:15:32:19:75:
31:c2:3c:29:fd:ba:9e:d0:fe:2f:fa:56:7b:5c:91:e3:c6:b8:
21:d6:73:aa:dc:a4:ca:d2:0b:31:e3:92:37:b8:c9:f8:42:0a:
ee:3d:35:bb:56:5c:cc:9e:d6:de:02:37:5f:df:cb:25:21:ea:
9f:2f:96:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:17 2024 by rpki-client on console-ams.rpki-client.org