Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/8tpkxOLRs_IOAq4Lh2qe9mN4z1s.roa
File: 8tpkxOLRs_IOAq4Lh2qe9mN4z1s.roa (raw, json)
Hash identifier: M42dnim+MwAjYYZfv8F280M2Zr6wuUtxfWXt1a5P18o=
Subject key identifier: F2:DA:64:C4:E2:D1:B3:F2:0E:02:AE:0B:87:6A:9E:F6:63:78:CF:5B
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A1DDE84
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/8tpkxOLRs_IOAq4Lh2qe9mN4z1s.roa
Signing time: Thu 28 Apr 2022 07:53:06 +0000
ROA not before: Thu 28 Apr 2022 07:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51486
IP address blocks: 85.14.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169729668 (0xa1dde84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2da64c4e2d1b3f20e02ae0b876a9ef66378cf5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1e:4f:20:82:2e:c0:95:2c:4b:f3:81:ba:63:
5d:11:e5:28:20:19:6b:6e:d5:6e:c6:af:fa:94:6e:
63:51:8e:f6:86:43:d8:2b:84:82:d0:a3:b3:c2:48:
38:84:ba:e8:93:b4:a3:c1:a6:ee:21:26:84:2f:16:
da:5c:dd:7b:9e:d2:c3:82:34:d7:d2:35:63:4b:e2:
22:c1:ea:64:f4:c3:94:76:83:6b:7a:a9:a8:80:60:
5b:0d:9b:79:9b:cb:ca:47:79:7d:54:f6:e7:68:bd:
ce:0a:73:a3:32:41:ef:00:aa:d1:b4:8d:5f:e0:b5:
e1:65:4d:57:11:99:91:c0:19:83:90:5b:2f:67:ee:
da:bc:05:14:be:c4:7b:5d:a5:ab:a1:bc:ef:f3:7c:
8a:f9:f5:02:fb:8e:3a:13:57:38:5b:05:cc:ed:76:
6d:ad:65:52:07:38:8b:4a:96:b3:52:59:ad:4a:b9:
e1:b7:c2:78:e8:ce:79:ee:36:e4:86:00:b1:f1:9b:
ca:c5:b6:b9:97:6a:2f:79:26:12:28:43:74:f4:9d:
41:38:f9:0c:61:15:65:99:1c:cb:35:55:6c:0b:3f:
4b:42:dd:35:cd:27:69:68:ef:bf:9f:04:75:c2:bf:
cf:52:68:f3:29:d1:fd:76:af:6e:65:34:80:e2:8f:
86:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:DA:64:C4:E2:D1:B3:F2:0E:02:AE:0B:87:6A:9E:F6:63:78:CF:5B
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/8tpkxOLRs_IOAq4Lh2qe9mN4z1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.14.18.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:2c:51:be:26:3e:5e:77:68:5f:e7:c0:4c:b2:59:f2:ba:27:
f8:90:4f:ae:24:92:ba:0e:c5:93:49:89:83:71:b3:a3:d2:b6:
26:13:32:c7:ca:c1:fc:5a:e8:e1:2f:9c:49:36:57:b6:07:34:
92:20:5d:eb:0f:73:0d:c0:d7:dc:e7:5a:63:0d:a6:a4:59:35:
e4:42:ef:62:1f:b3:c1:a6:1d:b0:6d:b0:88:93:84:81:58:2f:
0c:26:60:25:52:88:92:0f:ef:90:98:1a:8d:7c:67:6e:cd:87:
83:ea:fe:17:bd:cb:8a:83:f6:b9:36:17:72:34:9b:34:ad:ed:
d8:d0:d5:cf:6b:41:66:8e:e3:f9:74:c5:4c:2c:e2:9d:5b:d4:
c2:f7:7f:58:8a:17:b7:b5:38:37:1b:be:b0:0d:78:55:01:01:
b5:af:54:47:c3:cd:3a:21:ce:d1:60:45:59:10:4b:6c:bc:e9:
6d:50:90:03:56:cf:b1:39:94:a2:32:35:b2:f1:d0:aa:2b:9e:
f8:23:12:0c:cd:2a:56:0b:44:6a:ca:6e:ba:25:95:8f:e3:66:
fa:8a:40:70:d9:45:7d:e9:e0:dd:c0:2c:44:d0:36:fa:04:78:
00:f2:9e:a6:1f:4f:bc:c8:54:5e:8b:b8:aa:5c:39:6a:1e:07:
00:27:a5:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:19 2024 by rpki-client on console-ams.rpki-client.org