Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/fb5910-fe14-4453-8c9c-83bf70b1fd6b/1/8itHWctjJcnxAFD4mFbMyU0lMJU.roa
File: 8itHWctjJcnxAFD4mFbMyU0lMJU.roa (raw, json)
Hash identifier: 7zv/RkfMf5aPQoF18siVtm8lgKrDEUe6k2PwmS68hZk=
Subject key identifier: F2:2B:47:59:CB:63:25:C9:F1:00:50:F8:98:56:CC:C9:4D:25:30:95
Certificate issuer: /CN=a3608d6b0e80a6430fb6af43fae168a0e8011fee
Certificate serial: 0182D4B48C2EA32230C3CF5BFFDA665AC635
Authority key identifier: A3:60:8D:6B:0E:80:A6:43:0F:B6:AF:43:FA:E1:68:A0:E8:01:1F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2CNaw6ApkMPtq9D-uFooOgBH-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/fb5910-fe14-4453-8c9c-83bf70b1fd6b/1/8itHWctjJcnxAFD4mFbMyU0lMJU.roa
Signing time: Thu 25 Aug 2022 11:12:58 +0000
ROA not before: Thu 25 Aug 2022 11:12:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203678
IP address blocks: 185.125.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d4:b4:8c:2e:a3:22:30:c3:cf:5b:ff:da:66:5a:c6:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3608d6b0e80a6430fb6af43fae168a0e8011fee
Validity
Not Before: Aug 25 11:12:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f22b4759cb6325c9f10050f89856ccc94d253095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7c:80:14:9a:64:1f:d3:3b:3c:02:14:39:89:
f0:d9:1e:c3:96:8a:fe:59:97:94:d3:06:c5:5d:fc:
d8:69:3c:03:4a:e2:54:47:fb:51:bb:87:03:2a:7d:
d0:77:61:27:c8:b2:d3:3e:9a:c2:0e:4d:93:70:63:
44:67:92:a3:0a:10:33:1f:d1:aa:24:d3:83:a3:9a:
64:ed:dc:de:88:3d:8f:d5:51:06:cd:dd:1c:a2:98:
c4:15:c8:62:1d:fc:7b:b7:4b:4d:e0:53:09:1a:ab:
0e:ea:78:d8:84:29:91:8b:ed:2c:fd:e8:35:d8:1e:
8e:5b:af:44:69:6d:f2:5e:81:55:1b:52:63:3a:3a:
f4:cd:b8:56:71:c8:0b:48:d2:32:1f:05:7c:0f:cc:
a4:90:22:da:56:80:f2:c7:bd:34:78:7d:f5:1a:27:
9f:8f:eb:0d:25:49:0b:a0:14:3d:69:28:db:37:75:
09:5f:17:84:9b:eb:0a:6d:00:5f:e5:26:44:db:71:
70:9d:d8:78:75:81:6f:77:ce:94:2c:2f:e8:a2:dc:
21:06:a6:68:2b:b4:ab:bd:1c:86:cf:ae:d7:3f:f5:
20:57:63:c1:1d:43:60:47:63:dc:28:a3:ca:b9:af:
5d:4f:58:16:56:1e:b4:c7:0e:ff:9c:83:30:6a:0b:
39:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:2B:47:59:CB:63:25:C9:F1:00:50:F8:98:56:CC:C9:4D:25:30:95
X509v3 Authority Key Identifier:
keyid:A3:60:8D:6B:0E:80:A6:43:0F:B6:AF:43:FA:E1:68:A0:E8:01:1F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2CNaw6ApkMPtq9D-uFooOgBH-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/fb5910-fe14-4453-8c9c-83bf70b1fd6b/1/8itHWctjJcnxAFD4mFbMyU0lMJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/fb5910-fe14-4453-8c9c-83bf70b1fd6b/1/o2CNaw6ApkMPtq9D-uFooOgBH-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.140.0/22
Signature Algorithm: sha256WithRSAEncryption
93:c3:71:13:e2:99:f1:1f:e6:4c:5c:b6:32:2a:c6:4a:40:d6:
72:35:ce:dc:c5:d1:08:ea:31:b1:82:71:c5:d9:ff:9b:83:58:
5a:e0:d9:52:73:57:68:40:7b:f4:05:8e:e7:dd:55:b3:c9:88:
ca:31:ee:68:d1:b0:ba:b4:74:53:e4:0e:46:43:54:2e:90:f3:
8f:a4:56:45:e7:16:2e:23:65:96:ea:3a:63:e4:28:75:7c:a7:
fb:49:42:d5:87:1f:a9:c7:a5:4a:56:47:cf:3b:a4:75:ac:b8:
d9:b4:b3:f2:ca:15:94:bc:ee:b1:21:53:75:82:93:2b:37:88:
5b:35:8b:82:92:10:e9:a1:44:ca:35:14:1d:01:5c:11:1c:3a:
5d:92:b4:87:9b:ba:2c:1e:6c:62:33:34:36:9e:e4:3f:e0:fb:
d3:a4:ed:d4:08:3e:06:59:ae:71:1f:b5:d7:7b:53:b9:1a:58:
3d:25:77:3c:ce:23:14:7c:1b:e3:ac:34:bf:d6:c1:90:4e:0d:
db:5d:b7:b6:ea:5e:63:fc:05:69:09:34:e2:8a:12:63:b7:45:
23:fe:89:5b:e2:82:22:59:4a:4e:70:9e:57:bb:52:ec:1a:28:
9b:f4:f2:d1:f2:35:70:af:8c:50:5a:5d:bf:c5:af:82:8b:87:
30:c9:f9:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:25 2024 by rpki-client on console-ams.rpki-client.org