Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/8Qev4LXPVivayr3cuNWdYu9EQDU.roa
File: 8Qev4LXPVivayr3cuNWdYu9EQDU.roa (raw, json)
Hash identifier: Y/raxCaWq8FtZRKxhCsLeM35Nmhn9nYMAHhX5nsRy9w=
Subject key identifier: F1:07:AF:E0:B5:CF:56:2B:DA:CA:BD:DC:B8:D5:9D:62:EF:44:40:35
Certificate issuer: /CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Certificate serial: 0C0746D0
Authority key identifier: 92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/8Qev4LXPVivayr3cuNWdYu9EQDU.roa
Signing time: Sun 19 Jun 2022 18:26:44 +0000
ROA not before: Sun 19 Jun 2022 18:26:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3223
IP address blocks: 147.161.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201803472 (0xc0746d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92e720465c5cd0da9c6a13b44fa0d86f649e5055
Validity
Not Before: Jun 19 18:26:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f107afe0b5cf562bdacabddcb8d59d62ef444035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:db:0c:00:5b:99:07:23:9d:d4:61:8e:a9:f6:
f9:7d:eb:07:d2:58:9c:9a:60:d7:06:a6:4d:40:c7:
4c:f6:e1:d3:a9:e3:7b:99:6f:38:8e:25:59:1b:b5:
c8:2a:9c:2b:fd:54:3a:f9:37:e5:c0:a7:04:de:9f:
74:a3:2d:44:3c:e4:7c:02:33:4e:3f:7f:82:d6:51:
48:da:1d:98:d3:4d:ab:8a:c1:df:af:b9:1b:91:e0:
f6:5d:3b:eb:cd:8f:01:2e:e1:94:cf:4d:d5:8a:3e:
ee:6c:07:34:25:4c:6d:28:5c:75:2e:67:9f:a4:9f:
b4:36:00:33:63:26:e3:07:6b:2d:9d:ef:47:c8:58:
ca:3a:f1:41:98:f3:f7:a3:0a:ea:4a:79:e8:91:c7:
fd:f2:83:a6:e9:63:11:73:4a:06:ae:0d:95:10:ab:
2a:65:65:4a:76:33:6d:63:a7:f0:37:f8:ac:08:a5:
0b:fb:21:f5:0d:28:4f:3d:90:2f:d4:08:67:df:2d:
7c:41:7f:53:fc:55:b0:15:8d:48:20:79:2e:4b:eb:
60:70:c4:63:b3:1b:df:b4:e3:be:42:e4:b6:f0:ba:
89:c4:42:84:37:3a:10:84:8a:2b:61:25:62:a1:f7:
40:0b:96:4a:7f:6e:5d:33:e9:3d:7b:3a:16:d9:5c:
dd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:07:AF:E0:B5:CF:56:2B:DA:CA:BD:DC:B8:D5:9D:62:EF:44:40:35
X509v3 Authority Key Identifier:
keyid:92:E7:20:46:5C:5C:D0:DA:9C:6A:13:B4:4F:A0:D8:6F:64:9E:50:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kucgRlxc0NqcahO0T6DYb2SeUFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/8Qev4LXPVivayr3cuNWdYu9EQDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/f8a9eb-7f8d-4bf7-83d9-9096e1674e22/1/kucgRlxc0NqcahO0T6DYb2SeUFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.161.2.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:cb:94:a7:77:bf:f0:59:5f:df:be:76:a1:79:c1:1d:cc:3e:
b4:e8:3e:14:32:8d:de:07:21:26:a0:35:97:9b:fa:25:1c:32:
bd:8a:b6:7f:6f:13:6d:4d:e8:72:31:26:d8:e8:8f:88:44:ad:
a9:24:e3:bc:aa:48:f9:37:16:d0:db:8a:34:40:a0:c9:3d:49:
64:99:ac:5c:e4:7b:6c:4d:27:af:1f:b3:e4:15:fc:d3:40:e0:
ff:30:87:bb:da:96:bf:11:ad:65:ef:f1:95:92:99:eb:f4:77:
82:bc:f9:33:0a:10:37:4e:d3:9c:ca:cf:f3:46:60:bd:de:9d:
0e:ae:a8:94:29:1d:4b:62:8e:74:cc:2a:9f:ce:07:f2:e2:d6:
90:ec:72:6f:4d:bd:b3:da:1f:f2:9a:d4:b2:4e:5c:5e:70:2e:
6b:94:fa:63:d4:6a:a5:d9:fb:79:b9:73:dc:ba:02:d9:b4:a3:
8a:95:df:90:29:40:06:22:8a:28:21:34:1b:fb:24:96:ec:27:
44:95:a8:39:36:ae:f6:0d:e4:b0:6c:11:a2:e5:02:86:3a:92:
54:a9:52:aa:c1:fb:e4:72:ed:ab:fb:1a:91:11:2d:e5:6e:65:
04:d2:18:f3:46:da:fb:59:ff:c7:a1:ac:26:33:ff:ca:03:28:
82:96:cf:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:20 2024 by rpki-client on console-fra.rpki-client.org