Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/8M-q-y-D0BstLIGQDiUK1Brgf3g.roa
File: 8M-q-y-D0BstLIGQDiUK1Brgf3g.roa (raw, json)
Hash identifier: j36VcEbXtmQMrC8loWAFyGSf45XgLHUvlx+IrlO6M9s=
Subject key identifier: F0:CF:AA:FB:2F:83:D0:1B:2D:2C:81:90:0E:25:0A:D4:1A:E0:7F:78
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 06F80298
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/8M-q-y-D0BstLIGQDiUK1Brgf3g.roa
Signing time: Sat 01 Jan 2022 07:01:19 +0000
ROA not before: Sat 01 Jan 2022 07:01:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211924
IP address blocks: 194.147.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116916888 (0x6f80298)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 1 07:01:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0cfaafb2f83d01b2d2c81900e250ad41ae07f78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3e:c4:da:10:c4:29:6f:ef:e9:3c:7c:be:98:
6e:06:00:9d:b7:c9:a4:fa:dd:bf:73:1d:55:7e:2c:
e4:19:94:cd:be:82:ab:9f:b0:7f:8c:6a:33:6d:39:
5c:b3:1d:ac:cf:57:cc:d9:7b:13:b4:5f:ec:4d:cb:
5e:1d:a6:87:a4:36:88:ce:2d:eb:b1:44:5b:5e:29:
53:08:29:0b:7d:5a:08:cc:32:bb:fe:6e:12:8d:87:
88:73:6a:ff:33:4a:f9:22:cc:88:33:cc:dc:64:ab:
97:bd:eb:f0:9d:ee:97:33:63:e5:ee:0f:39:5c:3b:
ee:a8:28:6e:ef:90:22:d5:78:4e:30:7e:aa:6c:b2:
2e:8d:a8:bb:b3:40:7e:af:7b:ce:40:af:48:85:c1:
b0:f0:f9:4f:36:2c:6a:d5:4d:84:31:13:84:6a:42:
7a:e1:cc:8f:04:34:78:a7:f8:ec:4c:74:a4:d7:59:
b5:c4:ba:e7:33:68:ea:da:42:4d:0a:c9:30:82:63:
1e:1b:4c:76:3a:42:45:5c:03:5a:8f:4b:d6:5f:b6:
b3:db:2a:95:a5:41:89:83:9d:68:99:5d:a5:6f:31:
05:69:88:68:cc:a0:32:90:db:d1:75:fc:04:a0:b3:
4b:32:6d:00:5b:70:93:44:2b:a4:ed:f2:57:e5:66:
7a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CF:AA:FB:2F:83:D0:1B:2D:2C:81:90:0E:25:0A:D4:1A:E0:7F:78
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/8M-q-y-D0BstLIGQDiUK1Brgf3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.105.0/24
Signature Algorithm: sha256WithRSAEncryption
11:71:0a:b8:80:56:aa:a5:0b:6f:fc:3f:5a:ef:97:6f:5a:a6:
66:a9:3e:44:10:75:1b:45:43:17:95:1c:24:90:9a:82:90:d2:
7d:dd:c4:86:a9:c2:6e:93:5b:55:2b:0a:e1:c0:52:32:a1:d2:
94:16:db:d1:f0:33:80:6b:aa:0d:80:fd:52:a1:04:6c:d0:a4:
45:02:54:7a:d6:c3:17:4c:80:06:78:3a:31:2d:1e:ba:17:f2:
8f:31:b5:80:cb:4a:c7:3f:a2:8f:d6:9d:8f:77:25:d5:2e:47:
71:e4:e0:15:88:e8:26:b5:ab:20:ff:a3:73:69:2a:07:23:91:
d7:13:b2:a6:0e:a4:47:7d:0e:83:0c:4a:f3:82:4f:02:94:d5:
11:93:f7:fa:71:3f:42:33:0c:d9:5b:ba:cf:af:24:c8:79:7b:
79:51:da:fc:9b:81:f0:19:f2:40:f8:6e:92:19:eb:5b:c6:39:
07:b1:6c:69:07:de:8e:77:f0:45:6a:f1:94:83:d7:7a:04:4b:
64:9d:84:b9:18:21:d2:59:e7:b5:dc:06:e1:37:e1:56:f8:21:
75:32:e8:f6:d8:ca:12:31:b7:74:6f:f0:28:d6:97:a1:d4:cd:
e5:1a:8f:33:80:ac:5f:2a:5f:32:03:e2:ef:d6:ce:10:dc:4b:
2b:07:f2:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:59 2023 by rpki-client on console-ams.rpki-client.org