Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/h8XdJxcL-LoGtdlhxkXwoFSEtIU.roa
File: h8XdJxcL-LoGtdlhxkXwoFSEtIU.roa (raw, json)
Hash identifier: 6IO64lKDhrpw6a+8fcqSYVJNklhuBU5I0Jb0ezbAfs8=
Subject key identifier: 87:C5:DD:27:17:0B:F8:BA:06:B5:D9:61:C6:45:F0:A0:54:84:B4:85
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38D2A0AD
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/h8XdJxcL-LoGtdlhxkXwoFSEtIU.roa
Signing time: Sat 01 Jan 2022 07:55:13 +0000
ROA not before: Sat 01 Jan 2022 07:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3917
IP address blocks: 145.26.0.0/16 maxlen: 16
145.26.56.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 953327789 (0x38d2a0ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87c5dd27170bf8ba06b5d961c645f0a05484b485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f1:22:cd:ce:88:56:cc:64:93:e0:8e:b2:9a:
b6:36:64:25:7d:5a:8a:26:05:cd:3d:d7:55:c5:27:
c4:7a:99:d7:0c:bb:a2:d7:35:45:c8:3b:19:af:48:
87:a4:8a:1b:7c:e6:27:a3:2b:0d:87:95:87:3a:12:
86:0e:f6:66:e0:09:14:2b:66:5b:a2:a9:e4:e1:5f:
57:1e:a6:20:e4:44:ca:9a:75:a3:e3:6c:bf:1b:28:
ff:3e:40:cc:c3:e1:b5:f6:19:67:74:38:78:ed:02:
38:3f:9f:ed:6d:4e:12:48:18:eb:33:52:ad:6e:a6:
bf:51:a5:e5:8a:e7:a7:4c:74:8d:6e:f5:ba:29:5d:
ef:8d:b1:0c:91:8b:81:4f:a1:86:c8:b0:9c:ad:6f:
49:10:fd:36:99:91:a8:76:18:e2:2a:42:06:a6:15:
ab:e7:3e:30:88:04:75:23:89:30:eb:25:50:9e:ce:
99:4d:32:ed:83:eb:9e:73:80:34:ba:71:31:7a:d8:
f1:2b:15:2d:12:6d:d4:2c:df:10:56:b8:18:83:e5:
35:5a:6e:03:20:37:d8:7f:7b:0f:7c:9e:23:9d:8a:
5b:37:2f:1a:eb:a8:11:a1:a7:a4:e4:08:80:e7:f9:
03:4e:fb:95:55:04:3d:5f:9d:1b:9c:3a:e8:e3:8a:
66:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C5:DD:27:17:0B:F8:BA:06:B5:D9:61:C6:45:F0:A0:54:84:B4:85
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/h8XdJxcL-LoGtdlhxkXwoFSEtIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.26.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8f:d1:37:ff:e9:b2:f0:cb:65:6d:52:ff:fb:16:13:f3:62:56:
9f:7f:70:0b:48:23:3a:b7:0f:69:e4:1e:a8:1e:33:3c:7a:41:
7f:bd:7d:99:6f:f0:ce:ab:c1:ac:29:a9:27:b5:83:bc:a1:03:
55:cd:93:e0:4b:99:4d:18:df:1d:f1:a8:3b:ec:2c:d4:20:32:
2b:5e:8d:c2:24:26:17:61:1b:3d:e3:18:d2:0f:62:eb:de:e5:
13:86:df:89:e1:1d:43:f1:fe:bd:36:aa:55:4c:2e:89:a7:9a:
7b:c6:25:1b:6c:12:89:b7:bc:44:1e:50:4f:71:37:88:7e:f7:
80:8f:11:0f:cf:9d:cb:8e:cd:d5:bd:32:b6:46:bb:17:6f:cb:
60:9b:df:4c:89:ef:03:b3:4a:78:fb:76:ce:21:ed:ad:2f:a7:
8d:81:59:c4:75:7b:8d:2f:e4:fb:84:f7:e0:a5:25:8a:bc:5a:
96:2d:f8:33:6c:66:b0:e8:d1:70:7a:60:43:17:53:7e:2e:e1:
39:44:3b:36:7b:c7:f7:2c:88:62:30:b0:06:5d:53:e2:08:69:
8a:8d:95:e7:68:f6:0e:d4:e8:66:f1:95:b8:ba:17:9e:27:ca:
1e:07:bd:9b:b4:ed:77:a8:8e:29:56:67:b0:79:8a:71:f0:2d:
53:98:3a:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org