Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/jQMpagKy3nUSDa-t6pdKlxSAnOI.roa
File: jQMpagKy3nUSDa-t6pdKlxSAnOI.roa (raw, json)
Hash identifier: pG2t+Q5Hl5fZHzqAY8c3YPbXVQ33OfVap/gBR2xdnew=
Subject key identifier: 8D:03:29:6A:02:B2:DE:75:12:0D:AF:AD:EA:97:4A:97:14:80:9C:E2
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0FEA0B51
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/jQMpagKy3nUSDa-t6pdKlxSAnOI.roa
Signing time: Sat 01 Jan 2022 14:59:46 +0000
ROA not before: Sat 01 Jan 2022 14:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206499
IP address blocks: 185.133.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266996561 (0xfea0b51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 1 14:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d03296a02b2de75120dafadea974a9714809ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:07:20:5f:f0:cd:dc:1a:a1:51:35:b5:63:fa:
18:6d:75:b0:da:30:1e:c7:c0:6d:9a:27:4e:78:b8:
4a:d2:d7:2f:85:e1:d5:98:f1:00:05:46:75:73:af:
99:1f:d5:bb:4c:05:c3:fe:c7:0a:c9:6a:95:40:26:
cb:f7:51:0a:a5:0a:05:7b:21:bd:a0:f9:88:c2:d2:
89:02:f3:0c:af:e3:ff:bc:63:5b:66:e0:c5:e4:47:
60:94:6f:e1:f7:77:9a:75:72:39:ed:71:28:13:bb:
5f:54:a5:19:c0:9d:1d:db:0e:ef:5f:f8:3f:cf:4c:
fc:ca:69:28:3a:eb:5a:c3:12:26:69:49:63:0a:4a:
c5:d9:65:38:98:ea:3e:bf:61:24:0f:fc:81:87:1e:
0f:09:c2:c6:53:0e:d0:e7:8d:a7:c5:78:78:bc:17:
e2:f2:ce:fa:7e:37:11:40:d9:54:39:f9:57:2f:a8:
7e:6f:e9:62:23:94:4a:44:fb:83:72:eb:96:30:37:
55:c7:a2:e8:f4:1b:48:db:b0:75:f8:7d:44:ab:4f:
5d:e7:28:27:dd:2e:15:c1:ea:a9:19:e1:84:e6:9f:
90:d3:03:0c:36:e8:76:6e:82:73:59:c5:dd:9d:07:
80:9a:95:ec:84:5a:b4:d0:17:e4:b2:32:13:22:9c:
c0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:03:29:6A:02:B2:DE:75:12:0D:AF:AD:EA:97:4A:97:14:80:9C:E2
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/jQMpagKy3nUSDa-t6pdKlxSAnOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.208.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:66:76:4f:77:ca:06:98:21:22:ad:6f:c7:da:69:e1:ab:7f:
79:f8:26:e5:96:00:5a:6d:6c:b5:52:94:df:9d:4a:31:af:a2:
78:61:3a:9b:ab:8e:01:c3:94:38:c9:eb:30:ae:5a:d3:f3:dd:
2c:6f:12:f9:ff:5d:43:ab:88:60:54:bd:3f:72:de:71:8c:05:
43:9f:a7:b3:8e:12:0a:41:67:bb:1a:a4:49:60:be:4c:ac:a8:
4d:3a:83:24:f2:8a:e3:e0:4e:7e:fa:59:bc:50:25:93:a0:80:
35:e5:2c:b2:5a:4c:08:a8:63:ab:1f:5f:ea:c0:9f:c0:b0:b3:
ee:cb:f4:ca:57:43:5f:17:22:51:06:f0:24:1d:d8:64:b0:cd:
e7:b0:fd:53:27:b1:a3:99:26:84:21:21:6f:b8:dc:a1:73:9c:
f0:1a:ce:cc:88:a7:b9:f7:f2:79:e1:fe:ed:26:96:a2:0c:ef:
c6:f5:45:8a:b7:b3:c0:db:0c:6c:4d:2f:24:d8:36:5a:92:87:
1c:de:f4:ec:79:cf:90:bf:4d:6f:0a:18:e3:45:50:ca:d8:6c:
ee:18:84:9e:5e:dc:70:46:00:6e:90:34:9f:78:f8:fc:6e:57:
a4:fa:95:25:c8:f7:91:da:d5:81:98:11:a1:24:da:38:ca:be:
c7:01:94:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:55 2023 by rpki-client on console-fra.rpki-client.org