Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/scc-8nnLpKs9T7K9WaG9XcRPu58.roa
File: scc-8nnLpKs9T7K9WaG9XcRPu58.roa (raw, json)
Hash identifier: qGPcRFfE/i/sFFmgdEC8mjQUevdTTFQPSkPoduMAmew=
Subject key identifier: B1:C7:3E:F2:79:CB:A4:AB:3D:4F:B2:BD:59:A1:BD:5D:C4:4F:BB:9F
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185304F146DE0AFCD25AC30C491456DCADA
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/scc-8nnLpKs9T7K9WaG9XcRPu58.roa
Signing time: Tue 20 Dec 2022 16:12:47 +0000
ROA not before: Tue 20 Dec 2022 16:12:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41531
IP address blocks: 185.214.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:4f:14:6d:e0:af:cd:25:ac:30:c4:91:45:6d:ca:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Dec 20 16:12:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1c73ef279cba4ab3d4fb2bd59a1bd5dc44fbb9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b0:25:3d:f7:28:a6:8e:a6:a2:86:5e:ec:32:
98:ff:70:70:08:06:f1:c4:8c:4c:8d:75:76:c2:32:
02:5b:48:c1:ac:9b:27:f7:91:5c:b6:e7:29:02:8f:
70:d8:4d:26:27:88:60:6d:73:31:0a:52:89:90:09:
1c:46:2e:3a:ea:2e:8c:a2:5a:5e:26:79:46:2e:82:
5d:06:d4:b4:a8:ee:8f:7e:96:70:7a:0f:72:42:cc:
46:4d:6b:c6:47:08:2e:03:1c:bb:59:eb:b0:2f:aa:
d7:79:dc:36:fc:e6:8d:5b:f0:a2:d6:f0:84:42:43:
24:80:7d:1c:ca:e2:68:c7:94:4f:1e:9b:d0:20:14:
4c:51:e2:0f:26:d7:5e:ea:40:77:43:be:7d:f0:f8:
b8:5f:bc:6c:f7:cc:a8:b9:5c:2c:23:ad:bb:41:47:
09:94:ef:8d:0f:9b:d8:92:43:b9:55:b2:b0:a0:9d:
d5:cc:f6:ec:47:2c:28:7f:1c:62:94:b6:e4:0b:60:
d2:43:4a:60:e5:f1:59:c8:ac:20:0a:22:93:b5:15:
18:ca:27:08:1b:b2:a1:b3:1e:06:5d:c1:90:dc:70:
b6:b9:ed:19:de:aa:6c:b1:ef:7e:74:61:11:2e:a6:
1b:da:7e:f4:e0:e7:1f:ae:d3:d1:83:6c:30:7f:0d:
75:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C7:3E:F2:79:CB:A4:AB:3D:4F:B2:BD:59:A1:BD:5D:C4:4F:BB:9F
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/scc-8nnLpKs9T7K9WaG9XcRPu58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.12.0/22
Signature Algorithm: sha256WithRSAEncryption
66:0b:09:26:84:82:95:24:d5:b8:7a:7d:ae:65:6d:cd:a9:98:
ae:75:4d:39:5e:1a:14:aa:10:63:70:d5:ad:40:94:f9:a9:c6:
da:a8:f4:b0:93:5c:e0:0f:77:b6:5d:d5:ae:b7:18:eb:79:6b:
1b:dd:9e:85:6a:8d:63:5f:2c:4d:85:46:a8:ad:02:79:d8:d1:
85:9a:3d:68:c7:2f:3d:26:f7:e6:ae:5e:dd:f4:24:85:75:e2:
83:3d:64:a8:c1:c4:9e:a8:72:41:48:09:d6:c3:9d:e8:cd:0d:
32:fe:9d:a0:06:93:72:3f:36:9f:86:d0:d4:1e:b0:d5:78:38:
5d:ed:13:fe:93:a7:21:01:cf:51:8d:1c:b8:48:c1:97:a2:b7:
02:20:a0:c7:29:e5:60:43:8b:42:7c:0d:65:be:d9:ce:88:5d:
bc:b6:e2:35:30:ef:f9:82:1b:a7:f7:aa:3a:65:2a:9e:4e:e1:
80:7b:23:66:68:d2:4a:b1:64:75:db:0e:5f:23:b1:08:c4:63:
1e:7d:22:f7:93:e2:b2:fc:b4:83:77:a9:e3:7e:25:c7:ae:6b:
02:8f:2f:98:0d:57:76:5c:35:ad:f3:4e:34:6c:f7:c7:62:7b:
20:b2:8c:0d:a3:1b:79:44:68:3a:38:a7:68:f3:d0:d7:5e:9f:
f9:30:da:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org