Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/uOLVGJlOIujWRQBv1ACNBTBYU0M.roa
File: uOLVGJlOIujWRQBv1ACNBTBYU0M.roa (raw, json)
Hash identifier: OyO8ociSsIKQU4ZkM52hnpBDzwK7HRdsnA+pnY1yZt0=
Subject key identifier: B8:E2:D5:18:99:4E:22:E8:D6:45:00:6F:D4:00:8D:05:30:58:53:43
Certificate issuer: /CN=b6ae61814f7150c9b8117f498cab94db72a8339c
Certificate serial: 0181ED437B2A57D47C93DD5C4362B77EFEA2
Authority key identifier: B6:AE:61:81:4F:71:50:C9:B8:11:7F:49:8C:AB:94:DB:72:A8:33:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tq5hgU9xUMm4EX9JjKuU23KoM5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/uOLVGJlOIujWRQBv1ACNBTBYU0M.roa
Signing time: Mon 11 Jul 2022 12:37:11 +0000
ROA not before: Mon 11 Jul 2022 12:37:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.214.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ed:43:7b:2a:57:d4:7c:93:dd:5c:43:62:b7:7e:fe:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ae61814f7150c9b8117f498cab94db72a8339c
Validity
Not Before: Jul 11 12:37:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8e2d518994e22e8d645006fd4008d0530585343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8e:25:0f:76:20:69:c9:b5:7f:58:d6:ea:f0:
6e:23:88:07:6e:4a:bc:7d:5b:6d:db:72:ad:99:af:
a4:5e:ee:66:9f:bb:c7:4d:6a:d8:3c:d3:6c:e8:1e:
8e:9f:cc:43:9b:1d:2b:50:9b:44:f2:8a:a7:ac:3c:
64:29:e7:8f:65:26:c8:57:ea:d9:a0:37:0a:b1:85:
c6:4b:c0:87:8d:40:91:12:e6:8f:eb:89:23:4a:84:
1e:6a:8f:a5:e1:8b:f6:e6:54:33:c2:e6:91:a0:0f:
2f:8c:5e:20:c9:25:f7:29:c3:04:19:f3:01:45:23:
58:c2:88:d0:77:5a:dc:df:fc:65:90:5a:fb:aa:98:
ae:49:c6:45:8a:1f:49:f6:03:33:93:81:fd:90:a9:
4f:1c:49:33:cb:11:d7:96:86:c2:73:af:a0:d3:77:
4d:ff:d3:b2:0e:b3:a8:43:c2:18:80:0d:f6:f3:b8:
d4:c3:17:2c:f5:ee:3f:f0:43:b9:c6:9a:5f:ac:27:
5c:ee:14:d9:c7:d3:f3:56:3b:8f:84:66:ab:f6:20:
8b:f1:0b:c3:1f:4f:0c:51:39:36:8a:55:73:d2:91:
88:bf:9b:fd:2c:19:ef:ff:c6:94:90:1f:8b:9d:72:
98:69:7c:3a:df:1c:f4:54:c7:98:bc:cb:ff:59:2f:
92:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E2:D5:18:99:4E:22:E8:D6:45:00:6F:D4:00:8D:05:30:58:53:43
X509v3 Authority Key Identifier:
keyid:B6:AE:61:81:4F:71:50:C9:B8:11:7F:49:8C:AB:94:DB:72:A8:33:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tq5hgU9xUMm4EX9JjKuU23KoM5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/uOLVGJlOIujWRQBv1ACNBTBYU0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/tq5hgU9xUMm4EX9JjKuU23KoM5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.166.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:87:f2:69:7e:53:6d:ac:12:71:f6:1b:74:e4:1e:36:1e:9c:
1a:5e:89:7d:0e:17:b5:72:2d:c0:99:b6:fb:1b:2f:36:74:e1:
e5:47:5b:28:af:20:63:d5:dd:c8:c4:66:21:8e:b4:4a:e8:00:
c8:ef:83:80:08:56:e3:23:8f:5a:33:4a:35:f2:20:61:12:ee:
1d:8b:aa:0b:9c:bf:5c:4c:6f:22:10:2b:a1:54:34:e9:bf:5c:
be:51:b4:cb:67:0d:41:0a:68:6d:12:0a:35:a5:bd:5a:f4:f2:
3f:17:fa:fd:14:ba:b6:5a:a0:8e:97:f4:80:6e:a9:4e:50:a6:
81:85:6e:87:62:28:eb:8a:cb:56:d1:38:05:5d:15:db:13:8d:
24:11:9f:ad:6b:ce:0c:f5:94:ec:53:89:c4:7b:94:ec:d5:d0:
d0:42:6d:e5:ac:69:60:78:62:bd:b6:42:2f:6b:c3:07:16:c5:
b6:e1:51:c7:80:09:d4:30:ab:35:3a:c8:05:6a:82:dd:d6:e3:
a9:ff:3c:58:45:ca:f6:2c:38:8b:24:32:2c:51:f1:e1:f3:b1:
f9:fd:60:65:80:4c:9d:6e:51:09:0d:6a:13:e5:5c:da:09:4c:
4b:f4:b6:35:d2:87:55:e0:dc:65:f8:aa:eb:26:50:b3:2d:25:
e5:8f:36:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:03 2023 by rpki-client on console-fra.rpki-client.org