Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/mf87KA_s4_429OHPQBu6mPepO04.roa
File: mf87KA_s4_429OHPQBu6mPepO04.roa (raw, json)
Hash identifier: fc1zSm1niGw0sPEiBZ6rM0oP2t+0leYoBU2xO4Hb7jo=
Subject key identifier: 99:FF:3B:28:0F:EC:E3:FE:36:F4:E1:CF:40:1B:BA:98:F7:A9:3B:4E
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0183831EAE7DDE217FA7FA320A11D26ECBBC
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/mf87KA_s4_429OHPQBu6mPepO04.roa
Signing time: Wed 28 Sep 2022 08:02:49 +0000
ROA not before: Wed 28 Sep 2022 08:02:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211327
IP address blocks: 185.254.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:83:1e:ae:7d:de:21:7f:a7:fa:32:0a:11:d2:6e:cb:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Sep 28 08:02:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99ff3b280fece3fe36f4e1cf401bba98f7a93b4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:04:d4:f3:ee:8f:4f:70:cd:15:f8:2b:e4:f0:
db:cc:58:e2:10:5d:9a:6e:e2:4f:63:b5:20:d7:ac:
dc:8b:e9:ed:91:30:d2:16:bd:ac:3f:ef:dd:7b:bb:
03:6b:25:83:14:76:69:0d:53:4d:46:44:f7:90:9a:
95:24:a3:b7:dc:59:e4:b7:64:d4:a6:bc:d3:49:f5:
49:95:3a:5e:0f:c4:e5:46:74:0c:e7:86:81:33:b4:
f3:9b:0e:63:62:cd:75:b3:30:e0:04:6e:25:cb:cb:
1b:97:43:e6:e6:39:a5:f7:97:ba:cd:b7:f8:a4:87:
e3:88:6e:73:57:d6:f8:92:f4:7a:be:28:fa:b4:1d:
20:fd:67:20:d5:74:10:38:57:e5:76:8a:5c:a5:10:
14:a4:33:e7:c5:d1:6c:62:4b:64:79:d0:c8:0f:94:
89:4b:fe:a0:34:ab:61:77:92:a0:e6:f5:55:42:a2:
0f:37:39:b4:18:f6:86:64:5c:0c:62:b1:a5:c6:80:
93:0a:37:9c:42:3e:b0:5a:09:4f:95:dd:bd:3f:e1:
d5:5b:8a:ff:75:de:45:c4:a0:f0:3d:2a:65:8b:1f:
1e:0d:52:0c:3f:81:72:1b:11:f0:0c:43:c9:ba:a1:
3c:1a:32:fe:b0:d5:cd:10:9e:5f:86:dc:22:d3:df:
50:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:FF:3B:28:0F:EC:E3:FE:36:F4:E1:CF:40:1B:BA:98:F7:A9:3B:4E
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/mf87KA_s4_429OHPQBu6mPepO04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.28.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:a7:2f:c0:14:0f:12:e9:1c:77:b9:fe:af:e1:d3:34:dc:da:
bd:df:b1:5c:57:ad:36:16:b3:ad:e6:8a:99:48:f1:f8:59:1b:
0c:02:86:8a:c7:5b:3a:5b:23:57:c1:28:d7:c3:74:a7:f7:85:
87:f2:c8:3f:f2:10:cd:da:e3:03:39:01:a5:bd:33:90:d2:4d:
df:85:7d:22:48:8d:57:8b:4a:d8:c3:7a:81:be:0e:23:25:9c:
3b:bf:8c:ac:e6:c0:03:56:52:1d:a4:4d:6d:2f:3b:63:1c:3a:
b0:8c:6d:b7:7f:9c:d5:ca:d2:09:0b:2c:8d:8f:1d:31:63:8a:
98:0f:a4:7c:92:ef:69:63:99:27:90:1a:46:54:ba:4c:08:25:
b6:06:a5:09:1a:fe:7c:c3:8b:49:41:84:b3:30:1d:31:9c:b2:
8c:a7:15:66:61:02:b2:f8:c7:73:06:77:49:03:ad:07:48:81:
09:65:51:97:5f:38:68:6a:62:f0:7c:c8:5f:8e:b1:35:6d:ed:
87:d0:7d:1a:40:a3:64:78:da:15:66:39:93:64:f2:04:e0:0e:
17:55:3f:6b:1f:d0:b9:05:ce:12:b7:a7:0e:c4:21:af:34:78:
29:f0:8a:5c:e7:97:70:84:b3:82:6e:dd:43:4a:22:64:c5:5d:
3e:d4:51:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org