Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/S8GjjXxzCIjY8GmwFdqQi11tPWw.roa
File: S8GjjXxzCIjY8GmwFdqQi11tPWw.roa (raw, json)
Hash identifier: o5Jtc1RHN1f1JC/Jr7+l91T0r01SzvuOsWyyCLSEJNA=
Subject key identifier: 4B:C1:A3:8D:7C:73:08:88:D8:F0:69:B0:15:DA:90:8B:5D:6D:3D:6C
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 138CE416
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/S8GjjXxzCIjY8GmwFdqQi11tPWw.roa
Signing time: Sat 01 Jan 2022 05:56:21 +0000
ROA not before: Sat 01 Jan 2022 05:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202966
IP address blocks: 185.147.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 328000534 (0x138ce416)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bc1a38d7c730888d8f069b015da908b5d6d3d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f4:60:23:c6:89:91:9e:ac:75:44:fd:c2:42:
fd:95:c3:6e:13:97:98:69:50:59:b9:20:37:e5:43:
1a:a0:b3:0a:f1:3a:8c:53:fa:9b:09:f5:3f:a0:a7:
6d:61:c4:3d:c8:53:29:3a:29:9e:5b:ad:d8:b2:66:
33:a9:cb:d5:69:5b:d4:f6:91:9b:b9:18:a8:79:1e:
34:17:5c:7f:6f:b9:a7:6a:0d:93:0c:e5:5d:55:cf:
8d:43:a2:73:ba:3d:4e:3c:90:0e:3e:03:88:a6:88:
b9:97:9e:30:17:35:a6:2c:97:fd:bd:76:7c:e7:9b:
bc:fe:4a:3f:70:4c:62:38:37:dc:5f:95:a1:1a:49:
ec:89:91:f7:5f:b4:f5:e1:0f:55:be:f9:90:47:a0:
29:cd:33:5f:5a:54:b0:f6:b5:51:66:89:87:3e:d7:
39:3c:1f:1c:f3:28:5f:dd:70:08:03:1d:fa:78:d6:
15:8b:a6:cd:92:fb:6b:29:56:9c:22:da:74:4e:4e:
d1:1c:4d:00:2d:80:a0:bd:1b:68:ed:8a:0e:bc:23:
b5:76:15:0d:9c:f4:7f:ca:39:9e:82:f5:37:bc:d5:
60:b2:0c:2f:df:3d:4a:d9:d9:f1:11:7c:98:4a:f1:
f0:66:92:89:3d:ca:76:19:3b:59:3d:2d:60:6d:a4:
86:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:C1:A3:8D:7C:73:08:88:D8:F0:69:B0:15:DA:90:8B:5D:6D:3D:6C
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/S8GjjXxzCIjY8GmwFdqQi11tPWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.49.0/24
Signature Algorithm: sha256WithRSAEncryption
25:0d:ed:52:cd:b6:2b:40:d7:3f:3b:cb:ea:d2:09:c4:b2:b3:
e2:02:5a:e5:e4:34:3f:46:85:3b:17:83:1e:b4:b0:03:ca:e7:
fc:42:e3:37:d8:59:d0:39:d5:86:03:d5:cd:86:68:cd:38:16:
76:44:9f:ec:b8:72:6b:0d:69:2c:42:6a:b5:a1:f0:31:42:e4:
81:98:78:8e:1d:02:c5:86:79:59:52:9e:f6:f5:d7:16:36:58:
b9:23:f8:28:ca:f0:3b:00:2c:e6:34:a7:ca:3a:85:e3:ee:7d:
0a:0d:11:22:87:0c:a1:b8:60:de:d5:92:c0:17:9d:0d:2f:0e:
62:04:61:0e:f7:03:ce:58:6a:30:ce:5a:b9:9d:90:82:50:1e:
17:44:26:30:df:c1:9b:53:d0:f0:d2:1f:e0:7a:52:c7:e8:45:
41:73:d3:6e:a2:51:90:21:f5:fd:32:b4:59:a1:8c:c3:5f:ca:
3f:4e:f0:cc:8f:c7:5e:d4:60:a1:ec:c1:03:fd:ce:ec:be:7b:
4c:23:75:fa:3e:3c:1f:5d:e3:61:5d:33:22:47:2e:c3:03:75:
f8:0e:d0:c0:a2:7c:17:fd:5c:50:dd:57:f8:f0:e9:9b:4e:98:
5c:dc:cc:4a:c0:d5:9d:ba:2b:9c:0b:03:c6:0e:26:c9:56:e5:
d1:c8:fd:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:41 2024 by rpki-client on console-fra.rpki-client.org