Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/1507f8-e7d1-406f-9aeb-df169270b134/1/1-8aw7CLPlwJukpXeZOroAy_xIN8.roa
File: 1-8aw7CLPlwJukpXeZOroAy_xIN8.roa (raw, json)
Hash identifier: TtTjrg/lta2wKDO6oCbsoWTh2bSOm6PZujgsSC279js=
Subject key identifier: FB:C6:B0:EC:22:CF:97:02:6E:92:95:DE:64:EA:E8:03:2F:F1:20:DF
Certificate issuer: /CN=bcf81437457cbc32dfa2732848243a89ee538708
Certificate serial: 0183E28BD130A2908694D290B02E0F3A463E
Authority key identifier: BC:F8:14:37:45:7C:BC:32:DF:A2:73:28:48:24:3A:89:EE:53:87:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vPgUN0V8vDLfonMoSCQ6ie5Thwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/1507f8-e7d1-406f-9aeb-df169270b134/1/1-8aw7CLPlwJukpXeZOroAy_xIN8.roa
Signing time: Sun 16 Oct 2022 20:45:57 +0000
ROA not before: Sun 16 Oct 2022 20:45:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48551
IP address blocks: 185.238.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e2:8b:d1:30:a2:90:86:94:d2:90:b0:2e:0f:3a:46:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcf81437457cbc32dfa2732848243a89ee538708
Validity
Not Before: Oct 16 20:45:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbc6b0ec22cf97026e9295de64eae8032ff120df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:36:53:31:89:c0:99:03:7e:6f:8c:0e:e6:4a:
af:6b:27:22:e4:46:8a:ad:55:a3:cd:7f:fd:50:e7:
67:3c:b5:e6:4e:88:1a:05:0a:86:b3:88:ee:b0:62:
23:f2:fd:ca:60:0f:0c:14:7c:2e:c3:c2:33:72:12:
14:e6:c6:de:76:0c:69:e5:bb:5f:a5:37:1a:96:67:
8e:a1:93:6e:ee:81:95:c1:9f:18:a4:b9:8a:2c:1c:
99:2f:01:4d:4a:31:71:d3:04:18:52:9c:c2:0e:a8:
1a:55:cc:1f:04:03:d3:23:e4:cd:de:3e:a4:81:d5:
39:a6:f0:d3:49:cb:c5:1f:7a:b8:5e:0c:a8:8f:2c:
33:eb:c0:de:ea:1c:67:26:30:ca:15:f4:a6:39:40:
f0:6c:01:f6:65:25:a4:2c:27:87:fb:1d:a0:da:6c:
89:ee:bc:ec:86:ae:db:f6:ae:62:24:ae:e9:a3:47:
02:aa:f0:d6:73:53:99:6d:fc:0c:ef:85:e0:e7:5a:
fa:67:9d:15:cb:0c:d1:2f:0c:de:85:5d:54:c9:79:
ba:fb:60:37:f2:65:1d:30:05:88:75:b3:47:47:11:
27:bf:f7:2a:11:b6:4e:18:95:6a:84:4e:ef:08:a1:
ee:c8:2e:97:de:fe:c7:49:63:ac:7a:cd:e8:a5:aa:
0a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:C6:B0:EC:22:CF:97:02:6E:92:95:DE:64:EA:E8:03:2F:F1:20:DF
X509v3 Authority Key Identifier:
keyid:BC:F8:14:37:45:7C:BC:32:DF:A2:73:28:48:24:3A:89:EE:53:87:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPgUN0V8vDLfonMoSCQ6ie5Thwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/1507f8-e7d1-406f-9aeb-df169270b134/1/1-8aw7CLPlwJukpXeZOroAy_xIN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/1507f8-e7d1-406f-9aeb-df169270b134/1/vPgUN0V8vDLfonMoSCQ6ie5Thwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.143.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:61:d0:23:ba:df:c6:76:c3:56:52:a2:94:47:a1:e8:43:95:
a5:e8:87:eb:f5:72:2c:74:49:4e:8d:51:61:86:da:9a:f3:cc:
cd:bc:28:7d:7a:3b:53:06:82:59:e5:c0:97:7b:71:b2:d5:19:
6d:72:fe:31:fa:83:6a:ee:b7:13:63:59:7b:25:27:96:02:ea:
17:b5:44:ed:7a:bc:5b:4b:ec:bc:d2:35:c2:af:11:1d:67:99:
bf:88:48:65:46:00:7d:85:d2:6b:11:17:7f:06:94:64:50:ab:
08:ab:da:64:28:75:e9:6b:05:71:33:40:ce:25:bd:86:51:04:
a7:77:11:5d:fb:02:7a:e4:3a:72:f5:51:e0:c9:eb:d2:e2:50:
e1:c8:49:c4:80:be:94:61:66:6c:0f:b7:3e:0a:07:f7:c1:85:
3f:9b:66:09:c8:50:fb:c5:2f:c8:15:8b:10:2c:e2:2a:b3:e4:
75:bf:bf:16:9d:be:18:71:9d:1d:40:26:d5:63:ce:cd:d7:38:
08:2d:85:22:3f:41:a2:43:86:bb:c8:e2:d2:2f:34:fe:c2:5a:
6e:4b:e7:5a:cc:e6:00:c0:0b:a1:40:7e:aa:47:06:75:ee:9e:
38:fc:be:ba:9e:f0:cc:52:39:1a:d8:37:0c:05:69:6e:ca:6f:
cd:5d:5e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:53 2023 by rpki-client on console-fra.rpki-client.org