Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/B8mwKkVDghcskPMWNX-00kjyvS4.roa
File: B8mwKkVDghcskPMWNX-00kjyvS4.roa (raw, json)
Hash identifier: kEBOEku+jlyE6JUFBBLiNYBzR2Hoz9r1zVMXm31R5eE=
Subject key identifier: 07:C9:B0:2A:45:43:82:17:2C:90:F3:16:35:7F:B4:D2:48:F2:BD:2E
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0CC2F589
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/B8mwKkVDghcskPMWNX-00kjyvS4.roa
Signing time: Sat 01 Jan 2022 05:05:06 +0000
ROA not before: Sat 01 Jan 2022 05:05:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206865
IP address blocks: 178.239.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214103433 (0xcc2f589)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 05:05:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07c9b02a454382172c90f316357fb4d248f2bd2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ef:72:44:f7:8f:2a:f5:b7:e0:e8:b7:90:db:
65:8f:fe:1e:32:05:8f:ce:a0:33:0a:9e:0a:44:17:
db:49:29:6f:61:03:29:2a:c6:eb:18:a8:49:78:38:
50:b9:90:33:c6:13:f6:d3:48:e0:84:ba:7f:a0:ef:
ca:28:7c:fa:0e:dc:93:ed:19:e4:91:d1:1e:5f:9e:
66:00:69:31:8e:ef:7a:cd:7a:fe:94:a3:a2:da:fc:
a4:b7:34:0b:a1:b6:31:0a:a1:94:5c:21:83:64:c2:
5a:d5:4c:c2:20:c2:25:c1:18:64:1c:f2:39:ae:36:
b6:9e:47:c3:2b:86:f8:4a:23:63:26:4c:c8:ee:8c:
e5:89:d2:7a:0b:75:0a:77:1c:17:30:b7:91:24:e2:
3a:6f:14:91:d0:07:83:d5:28:12:36:aa:96:c5:17:
a0:5f:b1:db:1a:c7:cd:84:97:a6:8c:31:ee:5b:d0:
6f:fa:b8:27:dc:6a:c2:79:d5:5f:7c:02:3e:e0:d4:
3f:26:9b:e6:c1:b9:8a:6a:2f:f8:c9:08:ec:e4:f9:
6a:23:18:b7:a3:2c:d0:99:17:0c:b6:2f:e2:80:e9:
55:01:e7:8a:e0:08:c6:42:b9:50:8c:27:b1:41:af:
09:ab:d7:51:70:ce:3e:cd:50:5c:c7:fa:fe:1f:08:
6e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C9:B0:2A:45:43:82:17:2C:90:F3:16:35:7F:B4:D2:48:F2:BD:2E
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/B8mwKkVDghcskPMWNX-00kjyvS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.199.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:07:80:da:e3:29:35:e4:91:93:9c:74:b3:82:6a:49:a5:ac:
1b:74:7c:cd:7d:6b:db:68:b2:b1:6d:93:46:bb:94:d0:c0:13:
21:c2:ea:23:e5:66:bf:ef:7b:c1:c5:5c:9e:bc:d2:c1:82:fa:
9b:d6:b0:03:34:1f:16:cd:3f:ca:26:5c:35:40:6d:f9:19:cd:
37:99:50:84:9e:62:2f:e6:23:ca:1c:7f:c9:e3:a4:2d:c4:56:
64:15:37:b8:b8:c8:1f:50:21:00:3e:9e:90:44:e0:28:59:75:
26:0a:23:2c:36:08:bf:0e:37:e0:73:a9:bd:62:ce:2a:75:c2:
92:4b:bd:cb:83:1f:ab:eb:a1:cb:44:42:48:db:b3:3a:80:fb:
83:92:38:dd:af:c6:98:23:0a:00:7b:ba:78:85:9e:39:46:6a:
48:fc:43:bf:e3:c9:44:c7:da:4d:03:0d:c3:86:04:72:6d:8b:
80:7b:f2:cd:6b:25:87:78:ae:74:24:4f:bc:4a:57:2c:0e:a4:
12:e1:3f:46:c9:28:63:ed:a2:f1:fc:20:37:4f:98:90:0b:d7:
11:fb:6d:8d:1b:ff:ac:ac:f5:83:79:44:1f:46:4f:9e:a0:1b:
1c:fe:79:01:53:dd:78:79:12:63:4e:2f:c6:63:8b:f5:63:8e:
8b:66:fe:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:53 2023 by rpki-client on console-ams.rpki-client.org