Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1a6159-1dc6-4a09-844f-5128560dbdfc/1/8Uh50kqwggghZ2fizLXcBmHSPK0.roa
File: 8Uh50kqwggghZ2fizLXcBmHSPK0.roa (raw, json)
Hash identifier: Fp/NAfLrAQHNPvsriHYUJysHHOC9rtRqOcdRBGwhRFg=
Subject key identifier: F1:48:79:D2:4A:B0:82:08:21:67:67:E2:CC:B5:DC:06:61:D2:3C:AD
Certificate issuer: /CN=c4eba1fdf6c4de192c1d3edf8a800ca597f97d68
Certificate serial: 08E98FBF
Authority key identifier: C4:EB:A1:FD:F6:C4:DE:19:2C:1D:3E:DF:8A:80:0C:A5:97:F9:7D:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xOuh_fbE3hksHT7fioAMpZf5fWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1a6159-1dc6-4a09-844f-5128560dbdfc/1/8Uh50kqwggghZ2fizLXcBmHSPK0.roa
Signing time: Sat 01 Jan 2022 16:11:34 +0000
ROA not before: Sat 01 Jan 2022 16:11:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59518
IP address blocks: 185.131.3.0/24 maxlen: 24
2a02:6f00:ec0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149524415 (0x8e98fbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4eba1fdf6c4de192c1d3edf8a800ca597f97d68
Validity
Not Before: Jan 1 16:11:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f14879d24ab08208216767e2ccb5dc0661d23cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ab:b6:f7:31:df:b1:1a:f4:77:ce:23:7e:4c:
62:35:97:37:0e:0b:41:2a:ad:d3:30:df:d4:0c:be:
55:91:f5:e4:e2:47:66:4c:5d:0a:6f:7b:42:7b:10:
6d:6b:63:bc:4a:6b:e8:15:aa:90:1b:38:88:35:da:
7e:84:64:a6:e1:1b:fb:d5:9f:0a:d0:2e:db:47:5e:
35:5f:00:50:26:4b:6c:69:e6:3c:ed:ed:9a:ca:9c:
d2:78:08:bf:5f:48:4f:1b:f0:31:f8:10:ed:0b:41:
c2:58:8c:6d:48:4a:ee:6b:39:70:72:0d:e8:a0:aa:
1a:ba:92:74:eb:ae:f9:61:9c:f1:8c:e6:d7:43:7c:
12:b6:50:0c:8e:84:38:b1:88:e9:76:dd:56:2d:92:
96:3a:eb:73:b8:71:9f:62:ac:b0:f3:47:1c:b8:d3:
0f:23:d5:c2:59:a8:63:9a:a3:a9:2d:ce:20:a7:9f:
fd:17:a3:b7:78:a1:d2:e3:59:c0:1d:d9:54:07:ba:
41:9a:ab:60:95:c2:63:6d:de:cd:26:f2:f0:ec:22:
97:40:cf:cf:91:ba:a8:8f:0c:80:b3:c6:86:d6:0a:
0b:ca:bb:8f:1c:80:e5:b6:85:aa:ca:da:22:a7:fa:
af:78:0d:e0:9e:4e:a8:76:60:94:f6:be:8e:d6:52:
ef:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:48:79:D2:4A:B0:82:08:21:67:67:E2:CC:B5:DC:06:61:D2:3C:AD
X509v3 Authority Key Identifier:
keyid:C4:EB:A1:FD:F6:C4:DE:19:2C:1D:3E:DF:8A:80:0C:A5:97:F9:7D:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xOuh_fbE3hksHT7fioAMpZf5fWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1a6159-1dc6-4a09-844f-5128560dbdfc/1/8Uh50kqwggghZ2fizLXcBmHSPK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1a6159-1dc6-4a09-844f-5128560dbdfc/1/xOuh_fbE3hksHT7fioAMpZf5fWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.3.0/24
IPv6:
2a02:6f00:ec0::/48
Signature Algorithm: sha256WithRSAEncryption
76:c5:49:7b:c2:a5:78:58:0b:4d:9a:22:4f:c4:16:bf:f4:a2:
5d:01:01:00:30:e9:72:25:9f:5c:79:e5:16:50:61:07:1c:4b:
98:f3:c6:d4:b6:19:07:bd:62:d5:1e:77:eb:84:b6:ef:a7:8a:
45:90:3e:e1:d8:61:fd:af:f3:ee:92:1a:58:8d:cb:ca:c7:ea:
df:90:93:cd:95:02:37:7f:c7:ae:87:91:58:f8:65:e7:c2:e8:
64:73:5b:40:87:25:35:b1:d4:23:74:85:ce:6f:49:07:67:aa:
9a:e8:01:38:8d:1d:fc:97:e8:58:3c:5e:ff:b5:06:60:6b:48:
74:16:87:ca:80:b8:d5:d1:ef:6f:0d:ed:d2:be:19:db:38:73:
93:c9:9e:cd:65:5d:a0:02:43:2c:09:8a:3f:cb:d2:d8:05:ff:
60:37:bd:54:61:7b:5c:91:fa:0a:5a:05:95:55:a7:be:83:50:
ce:1c:d7:99:5d:84:e6:1d:22:ff:c3:98:3e:18:8d:63:52:c1:
c5:9a:ba:4b:f3:b9:26:23:30:1c:e6:cd:de:a5:46:52:1c:4f:
7d:f9:02:88:16:f4:1c:e1:43:0b:65:85:cf:ae:b2:50:de:52:
4c:18:60:a8:3c:15:bc:44:34:c0:14:d7:1d:e2:d9:f7:de:e3:
51:67:bd:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:25 2023 by rpki-client on console-fra.rpki-client.org