Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/P8SmXoty6BdtdsytIYzaXeYVGPY.roa
File: P8SmXoty6BdtdsytIYzaXeYVGPY.roa (raw, json)
Hash identifier: pKKbwpn5X/Z7tO9EV0YPwYPwjoCgR9qD7zvV5f9VcaU=
Subject key identifier: 3F:C4:A6:5E:8B:72:E8:17:6D:76:CC:AD:21:8C:DA:5D:E6:15:18:F6
Certificate issuer: /CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Certificate serial: 0184E1D1BA2AD3BC8BF15DA4BA16151B5040
Authority key identifier: 0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/P8SmXoty6BdtdsytIYzaXeYVGPY.roa
Signing time: Mon 05 Dec 2022 10:25:28 +0000
ROA not before: Mon 05 Dec 2022 10:25:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60903
IP address blocks: 185.128.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:d1:ba:2a:d3:bc:8b:f1:5d:a4:ba:16:15:1b:50:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e95c3ace366db41bcdc256c5d5b3be490a4f761
Validity
Not Before: Dec 5 10:25:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fc4a65e8b72e8176d76ccad218cda5de61518f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:92:8b:25:7c:07:8f:6d:6f:98:a0:25:8c:56:
42:40:6f:7d:11:76:4b:e6:9c:7c:ec:01:5c:92:fb:
20:36:ea:37:9e:74:60:27:a7:b4:1a:2d:24:10:54:
3a:98:7d:48:38:14:f2:91:6b:da:ce:0c:09:b1:75:
32:fd:21:71:04:c2:1c:d7:76:2b:ea:00:ff:62:9c:
b3:3b:55:e4:c9:de:80:32:35:92:1a:ed:ab:d7:a1:
3d:e7:90:5e:5c:1f:5c:e8:ef:ee:63:58:2c:a1:1e:
0f:39:91:c0:c2:92:c4:d7:62:ce:f4:7d:44:3b:9a:
8b:f0:62:73:89:69:11:f9:87:e9:74:fb:36:4a:11:
d6:57:9e:16:d6:4e:bd:20:3e:87:19:b0:38:13:67:
d9:da:f6:d3:76:a3:6b:bc:fe:e2:6f:ae:8e:60:da:
84:8b:9d:0f:56:9b:6d:05:a2:52:6e:c3:ca:e1:03:
80:d2:16:0b:f8:ca:0d:80:1a:15:67:3f:59:08:b8:
02:9e:c6:7a:2b:c7:55:cf:54:53:9a:56:92:3f:cc:
7e:d8:7d:6d:ad:4d:20:fa:c5:aa:59:f0:b8:a4:a1:
72:6b:25:27:82:11:31:eb:62:e8:cc:03:ea:a3:c6:
c3:2a:83:1a:2a:8b:7c:be:9b:ff:2e:e5:88:86:59:
86:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C4:A6:5E:8B:72:E8:17:6D:76:CC:AD:21:8C:DA:5D:E6:15:18:F6
X509v3 Authority Key Identifier:
keyid:0E:95:C3:AC:E3:66:DB:41:BC:DC:25:6C:5D:5B:3B:E4:90:A4:F7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpXDrONm20G83CVsXVs75JCk92E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/P8SmXoty6BdtdsytIYzaXeYVGPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/1cd907-44d2-46b1-8bec-f53e51c0974f/1/DpXDrONm20G83CVsXVs75JCk92E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.160.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:43:6d:88:eb:e4:66:6a:4b:e9:7f:ea:99:21:e1:d3:ff:e0:
31:13:45:9f:f5:e7:f2:56:58:4b:96:00:63:3a:05:58:84:31:
47:53:c0:4b:88:d8:86:e4:f5:d0:54:8e:5a:b7:9a:88:1c:8a:
a6:74:12:3c:3e:f2:9a:7a:fa:98:a6:ad:c3:d4:92:48:5b:ed:
96:cf:be:91:b5:5c:f0:1b:17:55:f7:5d:b1:47:59:35:55:10:
fa:20:8d:5e:d8:33:b4:ce:33:c0:5f:dd:10:f1:80:79:94:82:
b5:2f:bb:3e:65:5a:73:e0:26:3f:d9:df:82:4b:f6:7a:6a:49:
b4:23:66:45:92:8e:db:ab:fa:42:13:17:ee:f0:fe:75:eb:16:
ce:36:3c:4b:8b:ee:07:c2:29:f3:6b:0b:15:9a:b6:b4:7e:57:
89:6c:5f:af:d4:dc:43:69:23:b4:2d:ff:a3:33:11:60:7d:30:
ab:ae:9d:31:b3:2f:1c:e6:33:53:03:1a:8e:f8:b4:1f:07:0d:
3b:fa:cd:ee:84:b5:a8:8f:78:b9:f7:70:a7:6d:dc:e9:ca:c8:
50:2f:0a:9e:02:8f:a9:96:9d:8d:0f:3d:b7:ca:dd:b9:d4:db:
c1:f8:e3:62:6d:3b:c2:73:42:71:c7:c1:04:03:f4:de:3a:f9:
37:55:55:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:23 2024 by rpki-client on console-fra.rpki-client.org