Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/131a77-c8c8-4bb7-9aee-5a665655eb57/1/CM0ufcm561uD7Xd597_b6oZKdvQ.roa
File: CM0ufcm561uD7Xd597_b6oZKdvQ.roa (raw, json)
Hash identifier: vcbeVH7hJIGz0yNSdhGj1RgEY1pe1WyFIqOdQDcZvhc=
Subject key identifier: 08:CD:2E:7D:C9:B9:EB:5B:83:ED:77:79:F7:BF:DB:EA:86:4A:76:F4
Certificate issuer: /CN=e8964e4e8ffe31f692f71318c2b7282028d0f3a4
Certificate serial: 02FF743B
Authority key identifier: E8:96:4E:4E:8F:FE:31:F6:92:F7:13:18:C2:B7:28:20:28:D0:F3:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6JZOTo_-MfaS9xMYwrcoICjQ86Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/131a77-c8c8-4bb7-9aee-5a665655eb57/1/CM0ufcm561uD7Xd597_b6oZKdvQ.roa
Signing time: Thu 14 Apr 2022 07:26:10 +0000
ROA not before: Thu 14 Apr 2022 07:26:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211510
IP address blocks: 185.251.12.0/24 maxlen: 24
2a10:a740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50295867 (0x2ff743b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8964e4e8ffe31f692f71318c2b7282028d0f3a4
Validity
Not Before: Apr 14 07:26:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08cd2e7dc9b9eb5b83ed7779f7bfdbea864a76f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7a:a2:77:f7:a3:b7:d9:b6:78:ec:dc:1d:23:
43:20:65:a0:98:fe:ca:e5:a5:39:48:94:92:5c:69:
bd:c9:89:ed:87:0a:47:d5:42:f7:57:77:0e:e9:8c:
bd:7c:72:44:6e:d0:59:87:aa:70:89:f8:7b:eb:7f:
1a:63:31:16:ff:cb:a4:83:ce:2f:9a:6d:6b:6b:31:
65:80:57:74:87:a4:9c:7c:f6:e0:27:2f:7c:bf:68:
8f:20:35:d7:f6:f6:6f:12:3f:fa:23:80:be:6a:cb:
c3:4c:fb:9a:39:86:b4:c9:9e:e3:fe:ea:e9:b3:51:
79:f8:b3:d6:51:ec:9b:4c:56:89:7c:ae:8c:d7:3f:
40:39:a8:a7:8a:a6:58:71:0d:5d:f6:ec:af:86:12:
86:a4:db:49:37:cd:97:b7:96:82:e8:9e:de:64:29:
01:3c:1f:85:da:38:b3:40:05:10:7a:1b:34:c4:db:
4a:b8:51:74:fd:78:03:00:46:3b:71:d8:0f:23:e6:
8f:61:83:cd:66:73:10:06:28:69:0a:47:bc:e4:49:
c2:20:92:7b:28:19:5d:c5:e4:c0:63:1c:d8:b6:dc:
43:c6:65:ec:c5:76:a7:18:75:2e:ea:99:c4:68:92:
e5:16:21:7d:4a:43:dd:a8:18:21:df:8f:0e:6e:d1:
78:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CD:2E:7D:C9:B9:EB:5B:83:ED:77:79:F7:BF:DB:EA:86:4A:76:F4
X509v3 Authority Key Identifier:
keyid:E8:96:4E:4E:8F:FE:31:F6:92:F7:13:18:C2:B7:28:20:28:D0:F3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6JZOTo_-MfaS9xMYwrcoICjQ86Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/131a77-c8c8-4bb7-9aee-5a665655eb57/1/CM0ufcm561uD7Xd597_b6oZKdvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/131a77-c8c8-4bb7-9aee-5a665655eb57/1/6JZOTo_-MfaS9xMYwrcoICjQ86Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.251.12.0/24
IPv6:
2a10:a740::/29
Signature Algorithm: sha256WithRSAEncryption
01:35:bd:27:93:54:64:88:f6:17:52:38:73:fd:02:67:51:9a:
23:69:6d:5f:2f:cd:51:4f:e1:3f:56:d7:18:f4:bb:98:0a:a5:
8a:d1:59:09:7c:12:10:19:ab:02:bd:65:3c:d5:9d:8f:66:b9:
5e:b8:94:3b:d6:79:db:c6:40:f8:13:8b:79:73:67:9e:ae:c0:
38:7f:76:61:01:d6:e5:af:1c:1e:16:7d:f4:ce:ff:7b:42:2b:
a4:8c:33:75:69:0e:46:07:9a:5c:25:6e:cc:f7:51:36:d9:07:
45:89:df:c6:c5:b0:a6:31:1b:02:95:ae:f4:fd:77:f9:4a:e1:
52:78:94:49:1b:62:bf:82:fb:66:75:4c:cf:cc:98:96:e5:ed:
b3:3c:05:e8:9d:05:d6:d1:83:65:51:55:1d:f0:d8:d7:04:9f:
24:6c:1f:36:34:83:02:96:1f:06:9c:5d:20:38:0f:59:8e:e4:
fc:2e:b9:e8:7b:0f:74:e0:de:a2:7d:bd:20:1b:68:6c:f9:35:
2b:f2:dc:71:3f:44:44:f4:00:24:f7:0c:f2:3a:7a:0c:9b:6f:
16:ae:60:60:5b:36:bf:2b:22:fe:99:37:f4:b0:e5:a8:16:a9:
0c:02:de:54:62:9f:2c:4e:bf:8b:d2:7e:c1:4f:02:90:45:be:
17:44:e0:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:55 2023 by rpki-client on console-fra.rpki-client.org