Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/Sj8gONybYITkslxXBW4YfH0nJDE.roa
File: Sj8gONybYITkslxXBW4YfH0nJDE.roa (raw, json)
Hash identifier: SqWocvk/OW3Rljuv5XdRa57PGj5E2UZ/v4jg1VKaU30=
Subject key identifier: 4A:3F:20:38:DC:9B:60:84:E4:B2:5C:57:05:6E:18:7C:7D:27:24:31
Certificate issuer: /CN=0a97c0c818868373c4014715053adaf61af1da1d
Certificate serial: 01855D73B31BC2E6A5D75415BDB4CBE11662
Authority key identifier: 0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/Sj8gONybYITkslxXBW4YfH0nJDE.roa
Signing time: Thu 29 Dec 2022 10:35:41 +0000
ROA not before: Thu 29 Dec 2022 10:35:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60068
IP address blocks: 185.180.14.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:73:b3:1b:c2:e6:a5:d7:54:15:bd:b4:cb:e1:16:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a97c0c818868373c4014715053adaf61af1da1d
Validity
Not Before: Dec 29 10:35:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a3f2038dc9b6084e4b25c57056e187c7d272431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f0:fb:ae:69:ff:05:e9:a3:5e:d1:26:df:e4:
c0:51:af:56:9c:29:a9:1f:1e:33:07:12:76:62:0a:
16:b5:c0:45:b5:26:43:07:9e:f3:7a:a2:61:7d:fc:
18:f2:c4:9a:42:88:a5:89:17:0a:ae:cd:39:7d:55:
25:e7:fe:6b:bc:42:ea:1a:4b:23:c6:4c:47:33:f3:
04:2b:11:14:d0:3e:a2:80:70:52:16:2e:c2:a3:0f:
46:d5:1a:38:57:67:29:27:75:40:f2:8a:7e:ac:67:
71:b2:3b:d8:f3:8d:35:6e:00:ad:a0:84:a3:91:12:
68:43:ce:46:c8:7f:72:76:36:66:c6:ba:41:c4:05:
1e:1a:0a:67:cb:3c:51:62:be:f3:0f:e9:df:52:ad:
29:b9:db:8e:36:1e:69:42:b3:fd:79:37:ac:2e:93:
0f:33:55:a5:81:ad:d9:67:04:18:8b:80:3a:e5:7c:
0a:e2:98:d2:f7:28:70:0c:92:30:6a:2e:59:f7:b7:
05:6c:a6:5c:4c:cb:f7:3b:47:a3:3f:de:90:3f:f7:
ed:15:49:c6:b6:0b:c6:d1:35:b0:5e:9d:dd:c4:73:
b3:85:23:40:a2:7d:dc:fb:a4:ae:b0:85:00:59:21:
1c:9d:e6:e0:28:4a:96:76:69:ff:8a:6b:1c:b6:0c:
ea:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:3F:20:38:DC:9B:60:84:E4:B2:5C:57:05:6E:18:7C:7D:27:24:31
X509v3 Authority Key Identifier:
keyid:0A:97:C0:C8:18:86:83:73:C4:01:47:15:05:3A:DA:F6:1A:F1:DA:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CpfAyBiGg3PEAUcVBTra9hrx2h0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/Sj8gONybYITkslxXBW4YfH0nJDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a9399b-f867-4802-8c67-dbf2b3769445/1/CpfAyBiGg3PEAUcVBTra9hrx2h0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.14.0/23
Signature Algorithm: sha256WithRSAEncryption
29:77:76:aa:99:01:1e:7f:61:4d:94:fe:e9:75:f3:69:df:39:
d2:1d:96:96:27:7f:32:c1:93:9c:1c:00:45:23:b6:80:b9:90:
5b:af:43:d7:07:51:b0:e9:45:76:3c:95:5c:ca:fe:fb:ef:b3:
f2:7d:19:f1:70:77:ca:be:13:26:15:f0:cd:e6:f8:ea:09:d5:
1a:1b:2f:34:1a:d5:7a:5f:10:3b:a9:81:dd:b6:8b:99:72:31:
a1:7e:ea:8d:08:a5:23:5f:b1:fb:03:30:50:8d:f7:16:f4:b1:
5c:3c:c4:17:22:6e:35:0e:6d:0a:55:4b:db:6a:53:e9:7a:77:
cd:84:0d:84:b9:9f:76:30:56:18:3f:52:61:fc:50:43:43:6d:
7f:f5:da:7b:21:8b:6a:92:e6:16:92:ee:bd:da:25:c9:6b:08:
5f:d3:0d:f8:9c:f7:a8:85:5b:42:01:e4:38:51:90:61:37:9a:
e1:f6:02:c2:5e:76:bb:38:15:c5:b0:49:00:e4:97:ec:4a:27:
16:eb:86:cc:cd:f6:20:0a:aa:53:c8:06:71:bb:b5:1b:4a:f1:
41:60:3a:1e:0f:7a:eb:84:88:c9:08:4b:c9:26:13:b1:9e:db:
2b:42:69:24:04:bf:97:da:5f:9b:48:e5:22:8d:15:39:4f:c1:
b2:b0:60:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:03 2023 by rpki-client on console-fra.rpki-client.org