Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/j7N2wq_qi4RDhBKEZzhqXcia6pM.roa
File: j7N2wq_qi4RDhBKEZzhqXcia6pM.roa (raw, json)
Hash identifier: ZAX+QLIxUYrrUAp2nePUpvu5+H4K6qqo3HWLBl5wl6Y=
Subject key identifier: 8F:B3:76:C2:AF:EA:8B:84:43:84:12:84:67:38:6A:5D:C8:9A:EA:93
Certificate issuer: /CN=571456649692e60566de008e126bbdd1d2ebed45
Certificate serial: 018B524FB0527627615062C50AE011B28680
Authority key identifier: 57:14:56:64:96:92:E6:05:66:DE:00:8E:12:6B:BD:D1:D2:EB:ED:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxRWZJaS5gVm3gCOEmu90dLr7UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/j7N2wq_qi4RDhBKEZzhqXcia6pM.roa
Signing time: Sat 21 Oct 2023 12:57:15 +0000
ROA not before: Sat 21 Oct 2023 12:57:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59853
IP address blocks: 185.68.228.0/23 maxlen: 23
185.68.230.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:52:4f:b0:52:76:27:61:50:62:c5:0a:e0:11:b2:86:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=571456649692e60566de008e126bbdd1d2ebed45
Validity
Not Before: Oct 21 12:57:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8fb376c2afea8b844384128467386a5dc89aea93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f3:ac:c1:43:81:8a:d2:1b:d7:b3:9b:da:7b:
cc:93:f1:a8:eb:f3:a0:71:d7:9a:88:35:a6:b6:96:
18:03:cc:88:1c:d8:d7:95:c2:43:f5:ef:8b:24:38:
d5:b0:60:0e:fc:f7:a3:1d:0b:72:2e:6b:61:b4:b5:
1c:9b:f8:10:69:cf:a9:a8:dd:fd:91:0a:f1:01:fc:
da:61:e0:92:47:84:03:70:ba:e7:88:16:93:e8:a8:
ba:34:85:f0:57:93:d9:79:2d:c0:ab:42:70:fe:5f:
58:2b:b1:bd:04:00:ed:94:15:c4:9f:62:be:b7:f1:
19:a0:f2:61:fd:43:5d:45:84:c4:72:db:97:02:67:
a3:37:db:4c:46:3d:44:bd:bb:5e:d9:70:ec:ec:c3:
76:fd:cb:fd:8b:5a:43:1c:3b:6f:73:70:fe:64:39:
60:6d:89:40:9c:60:1d:ef:f6:93:3a:84:3d:31:2c:
7c:3c:f5:e1:28:46:40:51:48:ef:29:23:5b:27:cd:
61:ed:7d:2b:7b:02:96:6a:f3:3a:34:eb:ec:60:1c:
5f:d4:11:17:04:3c:72:32:b2:1e:6c:17:35:7f:62:
3f:d9:92:f0:c2:89:f8:cc:ea:f0:fd:f0:b8:12:33:
fb:1c:6a:f4:05:80:40:c8:40:66:d3:b8:c5:06:df:
d5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B3:76:C2:AF:EA:8B:84:43:84:12:84:67:38:6A:5D:C8:9A:EA:93
X509v3 Authority Key Identifier:
keyid:57:14:56:64:96:92:E6:05:66:DE:00:8E:12:6B:BD:D1:D2:EB:ED:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxRWZJaS5gVm3gCOEmu90dLr7UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/j7N2wq_qi4RDhBKEZzhqXcia6pM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/08a7ff-2cef-4248-9fe8-04c8f3eeceeb/1/VxRWZJaS5gVm3gCOEmu90dLr7UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.228.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:b0:ff:0a:d2:1d:19:a0:47:6c:e5:71:21:51:06:bd:39:c9:
c6:04:76:69:dc:9e:35:8f:8a:cf:00:b6:87:ed:af:ce:aa:16:
53:42:7f:7f:f0:ba:ce:6c:40:1f:14:78:c4:c6:18:ff:30:ad:
d5:bd:73:83:d4:45:3e:90:ac:67:4f:8f:98:eb:54:bb:bb:5c:
18:86:1c:76:c6:98:9a:94:af:e4:b2:f5:24:b4:8d:59:f1:26:
6d:bc:84:38:75:fa:9f:24:34:d4:a8:f8:79:78:9b:44:ea:19:
ec:a8:63:ea:cb:43:96:01:35:7a:e0:f2:63:e0:2b:f8:dc:e9:
49:26:ec:f9:3c:56:81:55:15:0d:db:bf:ac:e3:2d:77:ed:1d:
5e:9e:92:ba:d5:53:b1:f3:9e:f1:97:dd:db:c3:c8:4a:42:4e:
fa:f1:01:fc:93:f7:b7:9a:ec:4d:b6:21:7f:5e:e5:29:6b:65:
d0:8a:5d:9d:a1:e7:93:e0:ec:5f:9e:0a:14:bc:b0:fc:cf:39:
19:c0:01:1d:93:3a:34:2c:51:3c:56:cd:30:ab:90:c1:6f:90:
89:5e:f7:fc:aa:5e:c3:6d:84:0a:1e:4e:9f:65:a2:f3:24:fc:
40:46:e5:cb:b8:b8:79:76:09:81:6d:4d:cd:c3:a5:83:5c:9e:
d0:9b:1b:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:28 2025 by rpki-client