Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/cd05d5-373a-45ff-84ba-404c00adec91/1/s40TaEyWiREV_mmjLHZGCvVq62Q.roa
File: s40TaEyWiREV_mmjLHZGCvVq62Q.roa (raw, json)
Hash identifier: VywtWONf1mcWi3YG7y+YH/JnUbpaky26PIT12csvvtA=
Subject key identifier: B3:8D:13:68:4C:96:89:11:15:FE:69:A3:2C:76:46:0A:F5:6A:EB:64
Certificate issuer: /CN=c8a627e6a67f7b697d8fbaf2c9b075e7c72eab0b
Certificate serial: 419A
Authority key identifier: C8:A6:27:E6:A6:7F:7B:69:7D:8F:BA:F2:C9:B0:75:E7:C7:2E:AB:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKYn5qZ_e2l9j7ryybB158cuqws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/cd05d5-373a-45ff-84ba-404c00adec91/1/s40TaEyWiREV_mmjLHZGCvVq62Q.roa
Signing time: Fri 11 Feb 2022 12:58:06 +0000
ROA not before: Fri 11 Feb 2022 12:58:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 185.92.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16794 (0x419a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8a627e6a67f7b697d8fbaf2c9b075e7c72eab0b
Validity
Not Before: Feb 11 12:58:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b38d13684c96891115fe69a32c76460af56aeb64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:34:99:7b:eb:91:24:8d:a0:0e:76:75:d9:b9:
23:2d:0d:bc:ce:f6:51:3b:30:8c:e1:8e:f8:d6:c3:
58:d0:73:89:9b:a3:b9:73:42:67:ea:4f:ca:b3:a2:
fe:15:ba:87:9a:b8:7e:1f:8b:fc:d4:d2:08:70:a9:
6b:0d:4e:7c:2b:35:4e:01:28:c0:ab:ae:32:5b:31:
b1:85:63:9f:51:af:e7:dc:fc:9a:7d:96:b5:ef:f8:
fa:a1:2e:89:c5:f8:46:c4:fe:cd:fc:c4:ea:0c:61:
78:7b:2e:ba:7d:72:df:34:dd:ec:ae:52:1d:48:5e:
d2:9d:40:b3:02:ba:c7:e5:19:55:ef:7c:d9:4c:6e:
6f:a5:84:03:80:04:be:a6:b1:3a:68:a5:7f:85:66:
43:54:c9:a1:30:1b:96:d1:77:5e:3a:76:0f:89:24:
22:20:29:fd:8d:16:56:93:df:ba:18:33:e0:89:ec:
b8:42:a4:59:39:29:e2:f0:ed:cc:b7:18:12:25:93:
33:03:55:43:fb:e9:85:d9:19:c4:3f:a9:e6:0e:cf:
f5:b6:48:e3:c2:05:ab:30:91:76:b5:94:49:e8:f9:
85:89:d9:60:b0:de:8d:34:b4:44:0a:1f:6e:b5:64:
35:c2:0b:6e:c0:c1:d8:da:24:0a:59:df:22:a9:39:
b4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:8D:13:68:4C:96:89:11:15:FE:69:A3:2C:76:46:0A:F5:6A:EB:64
X509v3 Authority Key Identifier:
keyid:C8:A6:27:E6:A6:7F:7B:69:7D:8F:BA:F2:C9:B0:75:E7:C7:2E:AB:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKYn5qZ_e2l9j7ryybB158cuqws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/cd05d5-373a-45ff-84ba-404c00adec91/1/s40TaEyWiREV_mmjLHZGCvVq62Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/cd05d5-373a-45ff-84ba-404c00adec91/1/yKYn5qZ_e2l9j7ryybB158cuqws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.208.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:b3:38:bb:aa:30:98:29:1d:e6:e1:07:41:36:07:d3:40:77:
48:f3:3a:31:ed:8d:1d:31:26:0b:d3:c6:2e:e7:ca:11:11:2a:
aa:8a:b9:71:6c:2b:5b:64:0b:3c:5a:4d:a3:b1:bb:19:ff:8c:
04:8d:eb:48:e0:59:0d:cc:3e:59:e8:51:0e:fb:0a:9c:61:c7:
1b:93:d9:f2:8f:c4:8f:fa:8e:ea:b0:d4:a2:ab:c9:4d:6e:3d:
ef:be:3d:e7:84:ba:78:c7:97:d6:1d:f7:50:cc:a4:f1:71:15:
03:64:5a:42:92:fd:ab:6a:f6:6c:5e:88:b1:d4:10:e5:3f:dd:
4f:0c:2c:af:7b:03:a8:ca:27:f0:9c:5f:bf:24:6b:f4:bf:27:
17:1d:81:2d:43:24:14:f4:25:f9:44:7f:11:86:a6:54:e6:9a:
c9:2e:68:54:9d:c6:09:ac:9c:72:e4:50:88:37:98:e8:dd:4e:
dd:67:69:cd:65:ef:0a:13:58:60:b5:3c:af:c1:7d:5e:59:fe:
e6:f2:a9:7e:30:d4:52:3f:d2:ee:75:5b:15:63:47:da:3e:24:
ed:81:95:1f:9e:b8:2f:62:12:77:fc:bc:80:49:9b:0f:93:65:
ab:cc:ec:9e:55:49:2a:ef:24:aa:16:ca:f1:1a:e6:12:f2:49:
9d:b2:18:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:38 2023 by rpki-client on console-ams.rpki-client.org