Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/8CVoTQAx87FgTBtYaSOHSmkMtNg.roa
File: 8CVoTQAx87FgTBtYaSOHSmkMtNg.roa (raw, json)
Hash identifier: wiUcjKUIh/hs2OO0V4x1Rw5TQVsbH21knnXrDK1ZTgs=
Subject key identifier: F0:25:68:4D:00:31:F3:B1:60:4C:1B:58:69:23:87:4A:69:0C:B4:D8
Certificate issuer: /CN=2cc25ff32918f0b49306259d483afb9e381a3915
Certificate serial: 018271F2A342CFA78A232BDE24EA61459128
Authority key identifier: 2C:C2:5F:F3:29:18:F0:B4:93:06:25:9D:48:3A:FB:9E:38:1A:39:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMJf8ykY8LSTBiWdSDr7njgaORU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/8CVoTQAx87FgTBtYaSOHSmkMtNg.roa
Signing time: Sat 06 Aug 2022 06:58:23 +0000
ROA not before: Sat 06 Aug 2022 06:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51274
IP address blocks: 185.158.172.0/24 maxlen: 24
185.158.174.0/24 maxlen: 24
185.158.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:71:f2:a3:42:cf:a7:8a:23:2b:de:24:ea:61:45:91:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cc25ff32918f0b49306259d483afb9e381a3915
Validity
Not Before: Aug 6 06:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f025684d0031f3b1604c1b586923874a690cb4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c8:0d:49:28:ed:00:1c:04:57:17:97:4b:04:
90:54:c7:50:bd:bf:30:e0:07:c4:9a:e4:2d:23:de:
3c:6f:f9:b4:2a:c7:87:66:fa:50:1d:2f:5d:82:09:
db:78:7c:c9:33:9a:e5:16:9c:d0:b4:ad:18:11:51:
58:ce:b0:72:8c:71:b4:50:7c:66:1c:08:ab:b0:f2:
91:15:ad:a7:e2:da:69:16:8b:bb:91:7a:d1:80:df:
75:e2:9e:5e:93:fb:82:36:39:61:b6:e7:52:76:2f:
32:7b:5f:21:27:25:73:ee:af:18:e4:4e:0d:d4:da:
32:30:0e:03:7d:be:31:d7:d4:ba:c5:36:45:8a:db:
21:d7:44:7e:ee:c6:dd:d9:3b:47:55:93:52:46:f3:
ce:5b:56:a0:cb:84:9d:6c:b3:7e:46:cf:ad:36:bc:
4a:fe:44:16:7b:a7:1d:94:b2:11:7a:ce:51:4c:cb:
89:cb:92:50:54:88:f7:a5:5c:d2:9a:29:87:f3:30:
f3:93:8a:08:7d:70:c4:1d:4c:d4:68:75:b6:c7:00:
ef:f6:03:6f:e3:e9:75:4a:ba:be:8e:62:ef:50:59:
73:10:47:39:8d:da:c7:2d:cb:da:b3:d0:2b:b9:5b:
d0:98:e2:f3:65:1a:50:a2:30:ff:70:33:a5:78:22:
0c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:25:68:4D:00:31:F3:B1:60:4C:1B:58:69:23:87:4A:69:0C:B4:D8
X509v3 Authority Key Identifier:
keyid:2C:C2:5F:F3:29:18:F0:B4:93:06:25:9D:48:3A:FB:9E:38:1A:39:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMJf8ykY8LSTBiWdSDr7njgaORU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/8CVoTQAx87FgTBtYaSOHSmkMtNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1277ec-156a-46c4-9f03-e25751b3ffd5/1/LMJf8ykY8LSTBiWdSDr7njgaORU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.172.0-185.158.174.255
Signature Algorithm: sha256WithRSAEncryption
89:01:58:b7:31:a2:e8:28:e9:d1:92:a1:4d:c8:28:0c:a2:3b:
d8:78:70:55:a4:67:6f:e7:aa:db:86:7d:1b:b4:27:96:06:5b:
07:c9:85:71:ee:4e:c7:62:c8:81:09:9d:32:55:f6:20:0a:fc:
67:a8:fa:ba:01:04:5f:b0:ad:75:dc:43:b9:4b:af:3a:54:ba:
89:ee:f5:a1:cd:1d:91:9d:0f:52:ce:a1:4e:de:46:fd:1a:6a:
bf:8d:58:56:96:70:ad:9c:b0:8f:d5:e3:3e:c8:62:d5:e2:c2:
78:cf:8f:2c:a9:a2:98:34:12:5a:26:8b:ab:9d:d9:4a:2f:bd:
65:a5:9e:d8:fc:76:c1:5c:b8:52:27:06:c8:b9:be:a4:f5:33:
83:10:28:ff:cc:75:0c:3f:41:77:30:05:00:0d:05:a9:37:db:
a3:e8:75:25:1b:94:56:b8:d7:b7:29:38:a1:35:78:65:65:d5:
bb:22:49:c6:d7:0b:f1:3b:1a:0b:bd:ca:0c:99:65:17:5c:8a:
24:00:6f:f0:e5:24:b8:4b:4c:91:0a:21:2d:83:da:1f:f3:25:
63:34:7c:31:83:0d:0e:74:d8:e8:52:c7:d8:e2:95:bf:b9:65:
67:79:bc:a7:c8:80:49:01:b0:10:d2:68:77:8d:f8:eb:97:a8:
d8:ad:ba:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:47 2023 by rpki-client on console-fra.rpki-client.org