Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/i8R2uw33QxJzMMF67F47gwJ4ol0.roa
File: i8R2uw33QxJzMMF67F47gwJ4ol0.roa (raw, json)
Hash identifier: v08DYVtLfqqE3vhE2nq2V4cGUKst5SeL+NcYyE46DpY=
Subject key identifier: 8B:C4:76:BB:0D:F7:43:12:73:30:C1:7A:EC:5E:3B:83:02:78:A2:5D
Certificate issuer: /CN=cb1bd62beecab0e903b29811241db244bbf52c39
Certificate serial: 01136AA7
Authority key identifier: CB:1B:D6:2B:EE:CA:B0:E9:03:B2:98:11:24:1D:B2:44:BB:F5:2C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxvWK-7KsOkDspgRJB2yRLv1LDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/i8R2uw33QxJzMMF67F47gwJ4ol0.roa
Signing time: Sat 01 Jan 2022 11:59:51 +0000
ROA not before: Sat 01 Jan 2022 11:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212851
IP address blocks: 185.214.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18049703 (0x1136aa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb1bd62beecab0e903b29811241db244bbf52c39
Validity
Not Before: Jan 1 11:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bc476bb0df743127330c17aec5e3b830278a25d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:18:45:b8:90:e1:5c:61:3a:38:14:9f:7c:d4:
63:ca:63:bb:9d:19:46:28:9a:10:08:d3:7d:6f:19:
22:15:bd:9e:3c:1e:71:b5:c4:64:86:b9:33:98:38:
85:5e:41:bd:4d:9d:08:c0:9a:e4:f6:a8:e0:e5:3b:
cb:8c:bd:47:1b:e0:35:e8:1a:f7:fd:52:92:0a:71:
a9:6a:06:ab:44:39:f6:41:26:3f:57:85:8c:dc:e4:
3b:7b:7e:de:41:21:94:46:75:fb:30:49:fb:09:a1:
1f:1d:d4:34:45:7c:c4:cb:03:cd:3f:1c:ea:6b:27:
07:43:ff:06:31:04:0a:ba:c1:45:62:44:5a:3f:23:
98:68:68:3c:01:87:be:bb:22:a1:fe:b1:0f:d9:a4:
dd:63:b4:c0:21:92:8d:28:22:cc:9c:39:56:41:cc:
37:eb:13:c3:9d:26:2a:45:8c:73:01:65:19:21:cf:
1e:51:60:0c:d2:8b:0c:20:eb:23:e0:ab:70:41:ca:
4a:e9:77:cb:66:a7:e9:37:65:b0:d9:64:1a:2e:4d:
7e:78:59:bf:41:e3:0a:3f:ed:4a:04:d9:d2:2a:be:
ba:87:26:6b:f7:c5:b1:66:ee:b9:55:fa:e6:98:38:
d3:84:2b:4a:e7:b4:42:c9:6e:85:97:44:f0:ff:a3:
a1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C4:76:BB:0D:F7:43:12:73:30:C1:7A:EC:5E:3B:83:02:78:A2:5D
X509v3 Authority Key Identifier:
keyid:CB:1B:D6:2B:EE:CA:B0:E9:03:B2:98:11:24:1D:B2:44:BB:F5:2C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxvWK-7KsOkDspgRJB2yRLv1LDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/i8R2uw33QxJzMMF67F47gwJ4ol0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/e02b47-f2e0-4402-814f-e4016ad53cc9/1/yxvWK-7KsOkDspgRJB2yRLv1LDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.65.0/24
Signature Algorithm: sha256WithRSAEncryption
60:20:85:7c:48:e8:4a:54:c9:e7:1d:63:71:5d:3d:c2:db:6d:
6a:c6:5f:b6:19:27:c5:23:fa:e6:50:a3:4c:bd:af:ba:17:13:
6d:ae:51:cb:f4:33:46:9b:6e:65:dd:b6:e3:4e:a3:d4:13:57:
4b:f3:79:e3:06:f4:7f:7f:fc:38:45:cc:60:cc:d1:f8:32:5f:
14:75:8d:58:7c:e8:4d:78:8e:5c:8b:5c:22:12:47:ef:89:35:
23:e9:52:1a:ee:f6:33:f4:bf:67:7c:3f:a2:3a:a4:0a:fb:66:
cd:b4:e3:e8:c6:78:25:0d:c5:b3:b2:d0:2a:cf:33:32:66:2b:
7d:98:b7:d8:18:08:f6:68:74:b6:b0:25:9e:8c:2f:9b:4f:33:
36:d2:ba:f2:85:37:21:3a:92:87:53:42:83:25:25:0c:20:c3:
55:e0:6c:af:12:10:d9:7c:47:1c:68:19:97:c3:40:31:e4:5a:
e0:81:f9:48:70:ad:36:46:38:9d:bf:28:37:93:15:a6:25:60:
cf:cf:c1:1b:78:e1:be:53:db:07:0a:3c:e0:29:71:82:0b:93:
5a:22:1f:e5:a7:aa:65:8e:d2:fa:ed:63:c0:41:7f:c8:64:0f:
0a:29:7d:21:04:bd:be:64:3a:43:12:49:89:05:7d:c4:ef:8b:
41:c4:8a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:02 2024 by rpki-client on console-fra.rpki-client.org