Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/8KeFEcuZGDFKS25oqz66j4vpzoo.roa
File: 8KeFEcuZGDFKS25oqz66j4vpzoo.roa (raw, json)
Hash identifier: 6mVONWq55fXafrjYR/9B+zrtmxA206+r1TWKOSk0+8o=
Subject key identifier: F0:A7:85:11:CB:99:18:31:4A:4B:6E:68:AB:3E:BA:8F:8B:E9:CE:8A
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0183D5B20370CBF90F1EFDD7E9FEACA584AE
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/8KeFEcuZGDFKS25oqz66j4vpzoo.roa
Signing time: Fri 14 Oct 2022 08:52:36 +0000
ROA not before: Fri 14 Oct 2022 08:52:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396356
IP address blocks: 45.8.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d5:b2:03:70:cb:f9:0f:1e:fd:d7:e9:fe:ac:a5:84:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Oct 14 08:52:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0a78511cb9918314a4b6e68ab3eba8f8be9ce8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e1:5b:13:44:b4:9b:8d:94:06:67:7b:c1:5c:
1e:86:64:3d:4f:fa:fa:a1:8b:ad:6b:35:72:82:fe:
94:f6:f2:c5:4c:23:f9:81:b4:07:32:51:4e:e6:f6:
a1:03:83:05:a9:41:1e:36:86:dd:cf:99:9c:49:1c:
7f:a2:ec:8a:a9:19:36:e5:c3:4d:30:36:73:4b:db:
ea:6e:12:e6:10:9d:03:4a:01:07:bf:eb:cc:05:56:
5c:83:36:8c:99:e7:c4:dd:c1:36:48:0d:f9:bf:7d:
5c:47:65:56:30:de:f5:b4:78:da:74:1b:28:f9:48:
02:64:76:0c:62:03:3a:c7:b5:00:a3:bd:43:20:c4:
78:5f:43:11:c4:d4:6f:7a:77:ad:d1:4d:bf:80:d0:
7e:bc:9b:69:ab:d1:4f:97:0c:e0:09:c9:c5:d2:6b:
f3:db:0e:33:35:6e:79:01:c1:eb:2b:e4:58:cc:d1:
c1:f4:cc:7d:57:4c:f5:a3:17:f4:fd:36:c8:b2:11:
cc:36:b0:90:98:c1:af:f7:cd:b2:37:c1:a7:ae:53:
6d:7d:04:d0:0d:ea:8a:2d:5d:3f:4d:e6:76:cb:84:
3b:36:70:7a:a6:c8:60:bb:4b:84:9a:11:6d:be:c5:
e6:3c:3e:a9:99:bb:79:f0:19:aa:a8:71:c1:d8:92:
0f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A7:85:11:CB:99:18:31:4A:4B:6E:68:AB:3E:BA:8F:8B:E9:CE:8A
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/8KeFEcuZGDFKS25oqz66j4vpzoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.206.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:bc:e1:ca:57:c7:c3:fd:1e:ae:94:d3:c4:23:08:7c:cc:b0:
c4:c8:31:6a:5a:78:7b:f2:85:98:d9:6c:d8:80:58:f5:4c:96:
08:88:8d:58:be:2f:44:8d:32:00:a6:1f:8d:d7:8d:c5:9f:55:
a0:07:b7:02:0e:86:c4:44:95:17:53:c7:c9:ff:92:1f:81:59:
cc:3c:95:52:51:51:24:f9:35:c2:46:b7:1d:9d:86:4e:65:dd:
72:ee:58:c4:11:b3:62:ad:dd:2e:06:74:ef:7e:c8:62:57:91:
a5:a4:a2:ee:ac:c8:d5:8f:f8:2b:c3:e5:fb:19:87:07:04:f6:
e2:cd:21:70:82:bd:50:29:32:d2:7d:8a:3a:c7:1f:8c:14:12:
cd:90:4d:08:ad:ce:2c:33:f9:02:26:1d:7c:33:54:43:2c:b5:
d8:a1:28:31:2c:e9:3b:71:0d:56:63:9d:20:8d:05:6f:40:a4:
b2:6e:25:58:3f:80:15:1b:2f:63:04:79:1d:1e:8b:69:f2:6e:
f2:f9:8e:19:c5:2b:f3:c0:c6:ce:6c:6e:b3:0c:3f:8a:10:b4:
47:23:34:51:f1:a0:bb:3a:76:af:23:92:78:66:4e:04:a3:b1:
34:7e:d1:79:5d:8d:0a:a4:8d:6a:29:99:9b:bd:bb:cf:7a:03:
8f:fc:ad:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org