Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1f8a09-4365-4bba-8e35-5ee274eb7eab/1/CL5Uugg0Sl0vEIrIlBMzaaIGXM4.roa
File: CL5Uugg0Sl0vEIrIlBMzaaIGXM4.roa (raw, json)
Hash identifier: oackXaJee1+pA1DPptx4G59rq0GFhZ77cZg22K2IKlU=
Subject key identifier: 08:BE:54:BA:08:34:4A:5D:2F:10:8A:C8:94:13:33:69:A2:06:5C:CE
Certificate issuer: /CN=14268e4c2e025330df26fd404cae0f6af26ccc23
Certificate serial: B00002
Authority key identifier: 14:26:8E:4C:2E:02:53:30:DF:26:FD:40:4C:AE:0F:6A:F2:6C:CC:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FCaOTC4CUzDfJv1ATK4PavJszCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1f8a09-4365-4bba-8e35-5ee274eb7eab/1/CL5Uugg0Sl0vEIrIlBMzaaIGXM4.roa
Signing time: Sat 19 Mar 2022 12:35:47 +0000
ROA not before: Sat 19 Mar 2022 12:35:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210424
IP address blocks: 185.65.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11534338 (0xb00002)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14268e4c2e025330df26fd404cae0f6af26ccc23
Validity
Not Before: Mar 19 12:35:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08be54ba08344a5d2f108ac894133369a2065cce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:34:72:4f:fa:1d:9c:35:f2:ec:4f:64:e9:c9:
0f:30:fe:ff:b2:3f:32:a5:82:79:71:6a:5c:c3:c8:
e5:03:9a:2d:24:b2:b2:36:18:e7:3b:63:38:c2:20:
b4:dd:bc:d3:35:c2:71:88:6e:b5:45:77:7a:bc:36:
f5:fe:10:3d:50:5c:27:8a:80:4c:43:14:0e:60:ba:
f0:8c:ae:f1:0c:c0:41:1f:e3:64:be:2f:32:65:be:
9c:c0:11:05:7f:57:ba:48:22:0a:0c:18:fb:ec:b8:
5b:98:9b:41:36:04:0b:f6:aa:21:29:25:e8:3e:02:
b1:d9:2b:38:22:e4:d5:48:81:81:34:a1:95:35:8a:
23:ef:7d:f9:7d:ae:3c:38:64:58:a2:bd:d3:74:51:
52:e2:b3:e4:96:80:89:f9:5e:4a:bc:e0:4f:ed:97:
42:39:8e:f4:c6:20:70:95:cf:aa:e3:d0:7d:55:19:
aa:01:a6:4c:66:3b:38:1f:9b:23:eb:18:85:b1:0a:
ad:29:b2:93:32:d0:4c:90:25:34:e0:91:1a:ec:fa:
7a:9e:37:fe:13:06:de:26:c0:12:e0:11:ab:ba:2b:
6d:c2:2b:60:5b:93:ca:67:fb:7d:29:14:e4:1d:09:
c6:fa:7a:99:03:52:27:4b:a2:35:5a:90:69:0c:43:
10:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BE:54:BA:08:34:4A:5D:2F:10:8A:C8:94:13:33:69:A2:06:5C:CE
X509v3 Authority Key Identifier:
keyid:14:26:8E:4C:2E:02:53:30:DF:26:FD:40:4C:AE:0F:6A:F2:6C:CC:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FCaOTC4CUzDfJv1ATK4PavJszCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1f8a09-4365-4bba-8e35-5ee274eb7eab/1/CL5Uugg0Sl0vEIrIlBMzaaIGXM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1f8a09-4365-4bba-8e35-5ee274eb7eab/1/FCaOTC4CUzDfJv1ATK4PavJszCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.77.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:67:c2:82:49:10:7c:3a:22:30:0a:18:f6:f6:c0:80:e3:e8:
8c:d7:e8:01:3c:43:e6:a0:c0:9a:7c:dc:bf:0b:83:79:76:1e:
e7:d8:35:1d:54:59:b2:4d:8d:21:c3:53:be:fe:53:93:28:e1:
ea:5e:c0:fe:a2:3c:c2:ef:85:fe:20:10:51:ea:d6:e1:63:a6:
17:66:31:da:47:b3:26:f7:18:0f:87:83:15:86:68:4f:4a:d2:
61:c9:62:b9:92:8f:d1:50:1e:f4:1d:01:31:77:52:3f:e4:1b:
9c:e5:60:38:66:16:d0:7a:d0:5d:bb:bf:63:2f:24:99:d4:ef:
e6:6f:9d:fe:76:81:e4:38:61:0b:08:17:ac:80:91:54:cf:7c:
47:3f:76:bb:3e:41:08:b6:74:64:6e:88:93:bb:d5:f2:8c:2d:
4d:15:e6:e3:63:09:dd:1a:a8:f6:c1:69:01:18:e6:fd:a2:0f:
89:05:58:1f:ad:fa:b3:a7:d8:fe:58:01:eb:18:9c:7f:b7:e3:
a5:9b:8d:52:78:d7:65:72:da:54:77:03:5b:64:86:5c:bd:3d:
59:85:34:e6:1c:68:8c:e1:99:40:2d:3e:6c:16:b9:2a:4e:79:
79:3a:d2:12:ee:87:d8:92:69:f9:82:e6:4c:cb:71:aa:5b:04:
29:77:ec:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:28 2023 by rpki-client on console-ams.rpki-client.org