Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/446106-f924-4e5c-989c-33dd1f2f71f1/1/8SHvrIY0KsUe56jtYSxvXvN4rUA.roa
File: 8SHvrIY0KsUe56jtYSxvXvN4rUA.roa (raw, json)
Hash identifier: xRl1Fd4MT7Gf2l2IenisKIFmU2rUDYYNb2YOhO3DR6Y=
Subject key identifier: F1:21:EF:AC:86:34:2A:C5:1E:E7:A8:ED:61:2C:6F:5E:F3:78:AD:40
Certificate issuer: /CN=e63784c021402b727b8c35336b55ed5cc347904a
Certificate serial: 08A76D18
Authority key identifier: E6:37:84:C0:21:40:2B:72:7B:8C:35:33:6B:55:ED:5C:C3:47:90:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5jeEwCFAK3J7jDUza1XtXMNHkEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/446106-f924-4e5c-989c-33dd1f2f71f1/1/8SHvrIY0KsUe56jtYSxvXvN4rUA.roa
Signing time: Sat 01 Jan 2022 10:53:35 +0000
ROA not before: Sat 01 Jan 2022 10:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48876
IP address blocks: 194.79.250.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145190168 (0x8a76d18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e63784c021402b727b8c35336b55ed5cc347904a
Validity
Not Before: Jan 1 10:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f121efac86342ac51ee7a8ed612c6f5ef378ad40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:72:d5:98:b3:97:08:4a:04:1e:6c:11:29:03:
53:e3:a3:55:c4:34:58:04:a6:3b:e0:20:95:29:4c:
02:b8:6d:76:90:9a:d0:c6:4e:90:6f:6a:cf:f4:f3:
8c:fa:7b:c5:a0:d3:c8:b7:8d:a0:f0:4e:e3:ec:d5:
8a:98:91:1a:09:d9:91:f8:4d:53:21:20:5d:a4:c2:
58:e7:bb:84:5c:c3:b7:4f:d7:39:69:dd:de:b4:00:
21:8c:17:bb:62:64:b8:ce:a1:fd:3d:cc:9b:99:ae:
31:d5:6c:f0:37:09:35:0a:c7:76:e1:c7:78:fb:d2:
08:fa:72:17:fa:12:1c:c1:93:2b:e6:b4:22:1e:ce:
65:da:a1:1c:e3:8c:a4:2c:c8:3c:00:92:50:f6:94:
d8:cd:65:28:f1:5b:5b:63:09:d5:08:e0:dc:3a:d3:
f7:2a:4c:0d:42:51:3e:ed:4c:4b:26:a5:63:c2:e9:
2b:6b:01:60:9e:9d:ed:28:8a:10:eb:67:03:b9:ff:
62:0b:83:62:49:72:c5:87:e9:a6:b6:00:33:ad:b6:
b6:75:06:87:fe:fc:9d:2d:18:ef:f4:e0:2f:f4:bf:
02:aa:8f:fc:ed:0f:fb:53:b7:09:0a:fe:e9:5e:31:
8e:9e:f3:ab:29:05:da:b8:7f:a7:d9:02:ae:90:48:
d1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:21:EF:AC:86:34:2A:C5:1E:E7:A8:ED:61:2C:6F:5E:F3:78:AD:40
X509v3 Authority Key Identifier:
keyid:E6:37:84:C0:21:40:2B:72:7B:8C:35:33:6B:55:ED:5C:C3:47:90:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5jeEwCFAK3J7jDUza1XtXMNHkEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/446106-f924-4e5c-989c-33dd1f2f71f1/1/8SHvrIY0KsUe56jtYSxvXvN4rUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/446106-f924-4e5c-989c-33dd1f2f71f1/1/5jeEwCFAK3J7jDUza1XtXMNHkEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.79.250.0/23
Signature Algorithm: sha256WithRSAEncryption
05:20:21:2c:bc:3f:db:00:03:13:e3:be:5b:3d:58:0a:ec:01:
e1:ac:b4:5c:ec:f6:b1:34:ce:01:be:7d:d0:08:d9:67:4b:fd:
fc:b1:fd:87:8c:97:74:1d:6f:81:f2:62:6f:f8:c8:cb:37:ee:
b9:df:ce:01:77:1c:6d:60:7a:98:b4:47:a4:65:49:30:8d:a7:
fb:73:48:c9:f6:34:6f:06:5d:36:f1:e5:e2:80:c5:eb:57:9b:
da:f4:be:f7:28:14:c1:a2:c2:5a:5d:90:47:d1:3b:f0:a1:43:
23:9b:08:6b:d9:c0:6b:91:7d:39:18:b1:2a:b9:1e:85:e6:e4:
23:11:fc:d3:6b:31:41:e8:dd:c1:54:aa:50:42:a9:f0:82:d9:
f2:42:9c:d5:9e:28:47:14:56:2e:20:fb:19:b7:ba:c7:7b:5a:
04:9e:97:84:d8:c1:93:e0:14:70:93:99:8c:be:5c:ba:c4:91:
08:3b:a2:d6:16:32:3e:d8:3e:72:ab:53:f9:b0:7b:f1:32:91:
ab:21:85:d7:77:45:0d:e6:82:9c:68:72:f0:2d:0b:96:72:cc:
31:aa:5e:53:ad:fc:1b:11:16:62:2a:70:a6:25:46:4d:c2:be:
80:3b:e1:61:0f:80:5e:72:da:2b:70:0d:bc:a7:1d:43:d5:b0:
c0:d9:6c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:37 2023 by rpki-client on console-ams.rpki-client.org