Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/0_k8MkO6ZoxAQ6anV5G_hv6tTVM.roa
File: 0_k8MkO6ZoxAQ6anV5G_hv6tTVM.roa (raw, json)
Hash identifier: yFHQ3c1pI1+SlakT9smX7B0DAp2E7IdT/EIscIedJ8o=
Subject key identifier: D3:F9:3C:32:43:BA:66:8C:40:43:A6:A7:57:91:BF:86:FE:AD:4D:53
Certificate issuer: /CN=4b8d822165e7f01f722c973967f7554605240802
Certificate serial: 03E3F7FF
Authority key identifier: 4B:8D:82:21:65:E7:F0:1F:72:2C:97:39:67:F7:55:46:05:24:08:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S42CIWXn8B9yLJc5Z_dVRgUkCAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/0_k8MkO6ZoxAQ6anV5G_hv6tTVM.roa
Signing time: Sat 01 Jan 2022 16:11:14 +0000
ROA not before: Sat 01 Jan 2022 16:11:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29802
IP address blocks: 185.242.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65271807 (0x3e3f7ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b8d822165e7f01f722c973967f7554605240802
Validity
Not Before: Jan 1 16:11:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3f93c3243ba668c4043a6a75791bf86fead4d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:70:ac:0f:b3:fb:b2:1a:5d:f9:39:17:cc:ed:
91:f8:f3:1e:85:b7:21:03:52:68:3f:2c:4c:0d:71:
3f:ba:2c:e8:9b:90:cf:45:24:4b:22:9f:b3:1a:f9:
93:eb:89:55:33:a2:43:70:de:1c:af:12:60:36:45:
e4:84:64:ec:dc:c9:9f:76:63:dd:0d:9a:6d:cb:b1:
e8:49:25:c8:c4:57:b7:f9:9e:73:3e:ed:a7:bd:f5:
1f:6c:0e:b2:48:2f:3a:dd:f0:86:a0:58:bb:0b:a7:
94:c5:45:27:ac:fa:3e:8b:46:3b:3e:1c:09:11:32:
ec:85:72:78:71:ba:09:b6:6a:23:12:4e:3c:d0:8f:
85:d0:d9:fd:31:5d:8e:a1:12:eb:93:40:f3:07:c2:
d7:13:17:8f:9d:82:f8:86:06:e8:58:74:99:5b:31:
56:74:01:50:ea:6e:cc:39:e4:1e:6b:10:42:ee:f6:
c0:9b:7e:e0:d9:e7:55:3f:69:e8:44:bc:d6:62:78:
17:84:48:6d:fe:44:9f:cf:70:1a:5f:dd:8f:d8:c0:
78:8f:95:c4:fb:a3:fe:06:79:80:5c:55:cf:e2:2a:
0e:e9:0b:33:68:37:20:c2:50:ca:64:39:7e:bb:e3:
9a:54:66:03:c5:a2:7d:1a:60:ba:ec:57:c9:a9:cd:
78:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F9:3C:32:43:BA:66:8C:40:43:A6:A7:57:91:BF:86:FE:AD:4D:53
X509v3 Authority Key Identifier:
keyid:4B:8D:82:21:65:E7:F0:1F:72:2C:97:39:67:F7:55:46:05:24:08:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S42CIWXn8B9yLJc5Z_dVRgUkCAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/0_k8MkO6ZoxAQ6anV5G_hv6tTVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/S42CIWXn8B9yLJc5Z_dVRgUkCAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.80.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:4a:70:83:74:93:8a:1a:a7:d2:f6:0f:40:61:1b:e1:dd:24:
d9:aa:59:9c:a0:26:03:25:e8:91:27:7f:74:1f:39:90:4d:55:
f1:2d:1d:1f:92:2c:e0:c5:8c:65:09:98:b2:b9:13:11:a9:4e:
96:d0:9a:40:7f:72:57:9e:a8:32:ab:2d:4e:ba:ff:5c:f8:37:
5a:a8:6b:04:46:2d:75:39:8b:4f:b1:59:e6:7c:20:54:58:0e:
65:37:eb:83:ca:08:70:0a:b6:75:24:31:33:00:81:51:0f:26:
e1:8d:67:00:81:2e:e0:7a:9f:b8:e3:64:64:b3:2e:60:6d:d3:
04:5a:b7:24:9b:ef:8c:62:f1:00:2a:1f:3f:2c:7b:c5:a4:43:
a6:05:0d:1a:0a:ae:21:e0:2b:7c:07:0b:1b:4d:e5:df:f4:cb:
b5:9f:39:03:6c:25:35:09:22:ad:f4:ad:e8:ee:f5:74:3e:bf:
95:ae:d5:45:5e:a8:0b:09:75:01:9c:c5:d0:09:7c:de:45:3a:
c7:ce:79:cd:cc:8e:e5:de:c3:53:2d:bb:31:b9:36:5f:b1:22:
fe:82:ea:f8:76:9f:5c:77:8c:e0:b7:4d:d8:cc:22:b3:a5:ad:
ff:73:26:2c:82:18:ef:ac:d2:13:e7:21:f4:ab:00:c3:53:68:
16:5e:58:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:13 2024 by rpki-client on console-fra.rpki-client.org