Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/3f9b7d-ab5b-4e99-af47-ef61a614142d/1/8EHThtlCRF7JlSJh5U9_cpnSsLo.roa
File: 8EHThtlCRF7JlSJh5U9_cpnSsLo.roa (raw, json)
Hash identifier: jR3iWK/AfrNSsWpvwU2qg0ySyu7tIQfWSKmWVocgECE=
Subject key identifier: F0:41:D3:86:D9:42:44:5E:C9:95:22:61:E5:4F:7F:72:99:D2:B0:BA
Certificate issuer: /CN=f243f8eaad84ec091e8706a7c9866c1ade565edb
Certificate serial: 1565388F
Authority key identifier: F2:43:F8:EA:AD:84:EC:09:1E:87:06:A7:C9:86:6C:1A:DE:56:5E:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8kP46q2E7AkehwanyYZsGt5WXts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/3f9b7d-ab5b-4e99-af47-ef61a614142d/1/8EHThtlCRF7JlSJh5U9_cpnSsLo.roa
Signing time: Sat 01 Jan 2022 04:51:27 +0000
ROA not before: Sat 01 Jan 2022 04:51:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15536
IP address blocks: 194.26.23.0/24 maxlen: 24
194.26.22.0/23 maxlen: 23
194.26.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358955151 (0x1565388f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f243f8eaad84ec091e8706a7c9866c1ade565edb
Validity
Not Before: Jan 1 04:51:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f041d386d942445ec9952261e54f7f7299d2b0ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fe:2f:7c:4c:04:88:36:a4:a0:4c:d8:15:1a:
df:43:e9:04:82:2f:a2:4d:a9:9a:18:82:1a:d7:37:
b7:e8:4c:01:9a:63:14:24:f4:24:1d:9f:ea:7e:8e:
e9:bd:a9:ef:cd:ff:3f:3f:0d:3a:56:df:93:e6:da:
2d:ad:f1:1a:d8:37:cb:ee:30:66:f2:7c:3d:0c:13:
44:37:8b:e0:99:b6:a2:65:84:ee:37:75:5f:cf:b2:
d8:90:b4:74:4f:d8:f3:50:d5:c4:fd:84:98:09:74:
9c:26:06:93:4f:fb:a5:8c:34:4c:d4:43:dc:38:38:
ea:3d:89:a1:ef:af:ab:e4:a6:d9:47:53:d1:f5:84:
24:8a:91:02:47:32:f2:77:25:ce:8f:26:3b:15:ef:
16:85:cd:95:f6:cd:2f:7c:9f:4f:87:f8:27:65:4c:
3a:73:9f:ae:99:f9:55:fd:43:77:27:01:6a:73:a1:
fd:a6:ca:7e:74:6e:95:c6:dc:94:43:64:db:d1:6a:
b4:91:2e:47:8b:c1:14:3d:25:9a:13:9d:d0:a9:49:
ef:ed:c8:37:4c:91:24:a9:a7:c2:23:37:bf:f5:18:
e2:30:71:da:c1:39:3e:7d:ca:4a:0f:0c:27:2a:7d:
99:82:af:c2:3f:0b:e6:d5:3c:fb:a1:14:03:24:b4:
54:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:41:D3:86:D9:42:44:5E:C9:95:22:61:E5:4F:7F:72:99:D2:B0:BA
X509v3 Authority Key Identifier:
keyid:F2:43:F8:EA:AD:84:EC:09:1E:87:06:A7:C9:86:6C:1A:DE:56:5E:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8kP46q2E7AkehwanyYZsGt5WXts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3f9b7d-ab5b-4e99-af47-ef61a614142d/1/8EHThtlCRF7JlSJh5U9_cpnSsLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/3f9b7d-ab5b-4e99-af47-ef61a614142d/1/8kP46q2E7AkehwanyYZsGt5WXts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.22.0/23
Signature Algorithm: sha256WithRSAEncryption
13:64:1a:e9:87:68:7f:cf:1a:ca:77:12:8a:6d:34:14:48:ba:
69:40:e9:2b:09:0c:c5:65:c4:e3:ac:0c:f4:08:8a:f6:3f:75:
4c:e5:2c:5c:3e:00:da:95:26:80:bc:df:ae:61:5c:7f:6d:d2:
83:45:18:7d:78:b7:b8:ae:3d:d8:e8:d3:f2:d7:e2:ba:4c:6d:
c4:4d:c4:c9:88:17:fd:89:4e:af:08:d8:46:c1:29:2d:d1:44:
a9:5a:18:a3:d5:32:33:55:3a:94:52:59:91:68:4d:6b:fe:9a:
b9:1e:2c:49:bb:7d:51:1e:f3:02:84:66:cc:ad:1d:c8:dc:9f:
ef:d5:58:71:cb:75:43:c7:5c:89:6c:4a:d0:0f:4f:94:4f:bc:
b2:b6:8c:42:be:a3:12:e0:13:12:e2:94:8f:de:41:b9:e0:49:
10:c0:50:ab:56:b6:3d:26:f9:5c:17:80:4a:7a:c2:a3:fc:a7:
1f:3d:5b:f3:87:a2:34:50:63:42:a2:f5:fb:a2:06:80:7f:f8:
ab:7d:25:af:21:13:25:16:78:5a:d2:d5:3c:cf:9b:a3:5a:1d:
66:d1:5d:32:19:7a:86:a5:26:c6:8f:02:da:7e:61:9d:5f:1c:
18:1a:c9:d5:65:10:b5:ea:f4:52:60:c3:4c:e3:82:e1:4c:c5:
2d:86:8a:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-ams.rpki-client.org