Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f9dd1c-317b-41c1-8fcb-7d9eabee15ac/1/jMOT8_5TDuorO-oq3NG-DHTVyPg.roa
File: jMOT8_5TDuorO-oq3NG-DHTVyPg.roa (raw, json)
Hash identifier: 1ygbGcAycMW30hH/CFhNAjRODhVUGpbCopXs2MHKF9g=
Subject key identifier: 8C:C3:93:F3:FE:53:0E:EA:2B:3B:EA:2A:DC:D1:BE:0C:74:D5:C8:F8
Certificate issuer: /CN=5316590a0eaf48df2b1ae23b9d559e9cac25997e
Certificate serial: 0C4F8C67
Authority key identifier: 53:16:59:0A:0E:AF:48:DF:2B:1A:E2:3B:9D:55:9E:9C:AC:25:99:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UxZZCg6vSN8rGuI7nVWenKwlmX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f9dd1c-317b-41c1-8fcb-7d9eabee15ac/1/jMOT8_5TDuorO-oq3NG-DHTVyPg.roa
Signing time: Sat 01 Jan 2022 08:56:25 +0000
ROA not before: Sat 01 Jan 2022 08:56:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204521
IP address blocks: 185.168.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206539879 (0xc4f8c67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5316590a0eaf48df2b1ae23b9d559e9cac25997e
Validity
Not Before: Jan 1 08:56:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8cc393f3fe530eea2b3bea2adcd1be0c74d5c8f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:87:e6:44:7c:6a:67:5e:18:d3:3c:c7:1e:6a:
72:68:a9:37:02:c0:dc:3e:f9:4a:a3:ac:a3:2a:58:
82:43:ce:a9:77:9c:8e:61:68:03:be:b3:02:7a:23:
ac:e0:59:c7:13:5e:a0:b3:74:49:bf:0a:0c:e1:61:
42:e8:f0:d9:98:20:18:03:71:9f:93:cd:9d:00:fa:
77:6f:54:a7:53:04:45:52:a9:89:07:3c:3f:7f:d7:
b8:aa:0e:4d:cf:31:c5:cc:0f:e3:2d:3f:38:1c:1f:
bd:d5:64:4d:6d:a2:0b:95:23:e3:49:4a:be:7f:a3:
50:fe:02:85:bd:46:04:90:3b:cd:26:1c:75:e7:50:
31:b9:59:79:34:d9:82:96:72:51:e4:e2:8a:71:4b:
a5:04:f3:56:f0:44:39:83:e2:85:1f:a9:88:38:89:
85:2e:a8:fc:0d:2b:e7:2d:bf:84:80:7c:04:f3:5f:
39:1a:78:0b:c3:0d:aa:07:1d:6f:f4:91:89:dc:77:
ba:75:13:1f:83:b1:30:03:60:f9:18:32:8f:e5:b7:
33:f0:ac:5f:2b:bd:d2:d0:28:49:7c:16:c2:9a:0c:
9f:6c:9a:fd:26:e3:ae:bb:32:6d:29:0c:5f:41:1b:
f6:a8:d5:3b:ef:a2:20:7a:4c:41:0f:d3:14:2b:d4:
2a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:C3:93:F3:FE:53:0E:EA:2B:3B:EA:2A:DC:D1:BE:0C:74:D5:C8:F8
X509v3 Authority Key Identifier:
keyid:53:16:59:0A:0E:AF:48:DF:2B:1A:E2:3B:9D:55:9E:9C:AC:25:99:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UxZZCg6vSN8rGuI7nVWenKwlmX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f9dd1c-317b-41c1-8fcb-7d9eabee15ac/1/jMOT8_5TDuorO-oq3NG-DHTVyPg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f9dd1c-317b-41c1-8fcb-7d9eabee15ac/1/UxZZCg6vSN8rGuI7nVWenKwlmX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.216.0/24
Signature Algorithm: sha256WithRSAEncryption
23:19:19:d7:21:9f:03:b5:ed:bc:2e:bd:90:0f:ed:e0:0a:7f:
ce:51:83:b2:a8:be:6a:43:08:5b:23:7c:59:fb:3c:91:f6:f6:
03:5d:38:b1:91:6b:b1:47:c7:e8:ff:c7:cb:27:3f:b3:2d:cc:
d9:67:43:66:63:5e:9e:7e:d5:8b:0c:7e:3b:2d:d4:44:0c:12:
8b:f7:ec:fc:21:e5:a8:fd:c9:38:c9:64:f1:bd:e7:6a:0a:53:
a8:18:cf:85:2b:f3:98:0f:ed:4c:9f:e5:6b:44:55:76:69:79:
fa:73:0e:86:bd:e2:e3:4e:03:5e:a3:3f:1b:bf:c9:f2:36:82:
f5:3d:ca:53:52:92:91:a9:ed:96:d4:b3:f5:7d:1f:9a:60:a6:
7f:2b:79:93:fd:48:7e:e7:e6:08:e5:ba:f1:37:c8:14:ca:13:
31:72:85:12:ee:0e:66:07:75:59:3d:b7:1b:95:28:e2:1f:65:
40:2e:b7:89:df:22:a7:0a:28:78:aa:e0:64:6d:6e:ab:59:cc:
b1:bc:84:72:4d:4b:65:71:01:fb:92:8e:c3:11:d8:0b:57:14:
d8:f6:91:01:1d:b5:b5:81:06:3b:e5:b8:ef:d6:91:7c:a7:2e:
70:b7:b8:de:d9:09:c6:e9:18:e8:66:d2:58:26:02:45:77:65:
55:fa:57:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:34 2023 by rpki-client on console-fra.rpki-client.org