Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/rvo8dA86nQQevduyyvAzkoHUMG4.roa
File: rvo8dA86nQQevduyyvAzkoHUMG4.roa (raw, json)
Hash identifier: hsvMBcmwUOF0gb41524HRRBSAPYlgD3Rd5aRxf1F+dc=
Subject key identifier: AE:FA:3C:74:0F:3A:9D:04:1E:BD:DB:B2:CA:F0:33:92:81:D4:30:6E
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 16D1D945
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/rvo8dA86nQQevduyyvAzkoHUMG4.roa
Signing time: Sat 01 Jan 2022 02:51:25 +0000
ROA not before: Sat 01 Jan 2022 02:51:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203004
IP address blocks: 85.143.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382851397 (0x16d1d945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 02:51:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aefa3c740f3a9d041ebddbb2caf0339281d4306e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3b:9f:40:87:88:a0:af:80:f4:1b:41:a1:95:
2b:ba:e7:55:f5:67:7f:c1:e7:f0:8e:ce:79:35:a0:
cb:ef:ab:e9:f7:5e:30:8f:76:05:47:eb:d8:6d:40:
48:d7:36:44:92:57:4b:39:c6:c4:eb:3a:d2:a9:9a:
f4:b9:d4:b0:0d:46:34:54:d0:c2:35:81:16:19:d7:
38:ae:b4:5a:c4:42:ad:05:54:90:06:c4:8c:d6:7f:
20:8b:7f:3a:02:75:1f:e0:b5:01:52:fa:65:b0:2d:
f9:64:fd:a6:92:12:c2:08:51:48:a1:c9:0c:7e:38:
2d:89:44:27:f6:a9:d1:b9:95:27:4a:f6:a3:fd:e7:
b9:b7:3a:f3:03:3f:05:3e:7e:b1:0d:82:1b:1e:63:
59:63:d6:0e:61:9a:85:d3:35:0c:fc:4c:c6:fb:99:
30:17:8c:e3:55:93:49:b4:47:ab:84:c0:c7:d6:57:
f4:9f:99:b7:83:61:c3:03:41:9d:f2:94:49:8f:1f:
23:30:bf:89:b8:a3:dc:49:2c:33:37:e6:2e:a9:3f:
3f:63:e4:1d:b0:0a:0a:2f:98:7a:cd:4e:04:a9:58:
88:2b:7e:18:82:fe:49:1e:c6:2c:d3:9e:c3:c3:a6:
94:67:da:c4:07:81:ef:0b:c6:28:87:64:b7:1e:33:
e1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:FA:3C:74:0F:3A:9D:04:1E:BD:DB:B2:CA:F0:33:92:81:D4:30:6E
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/rvo8dA86nQQevduyyvAzkoHUMG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.202.0/24
Signature Algorithm: sha256WithRSAEncryption
17:83:84:12:49:91:6f:30:71:56:42:60:4b:9e:3d:01:1b:86:
ce:d9:27:5b:4c:b9:c7:f6:fe:b4:b5:12:23:54:01:13:26:6c:
46:ee:ea:37:ae:ca:22:4f:fe:fc:19:f1:d9:99:e2:c7:e5:30:
d0:b0:90:99:53:02:75:0f:49:f9:2a:a2:60:a3:f7:d1:af:dc:
1b:c3:17:44:8f:2c:8d:5c:d7:ae:60:d7:62:8e:1e:bd:5a:8d:
ce:ae:76:2e:2c:28:f8:03:17:41:56:14:db:0d:bc:d1:27:f2:
f9:49:1b:26:fd:a4:00:e6:29:9f:f1:ee:90:7e:ed:25:d5:8a:
ef:17:ab:dd:d9:9c:cb:3a:7e:a0:a6:f4:19:60:c6:59:93:d9:
ab:c3:91:a9:a3:26:d7:c7:25:44:69:a1:65:31:48:50:0c:3b:
72:6b:45:d5:ca:83:d8:96:b5:24:f5:e8:56:53:9b:6b:55:94:
bc:6f:fc:31:48:0c:0b:84:de:7a:79:7b:13:8e:63:2e:86:2f:
a8:60:70:48:48:e4:3f:c9:f5:6e:32:2d:ea:0f:41:8c:6c:f1:
6d:ce:92:d6:0c:72:ad:28:fb:f2:76:0b:53:1b:ef:da:7f:f5:
8d:ca:c7:dc:2a:33:07:8a:58:eb:14:ae:2b:64:59:7d:92:79:
ae:1d:bb:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org