Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/66hjag2K-61OPXVJpaoyV78hsCM.roa
File: 66hjag2K-61OPXVJpaoyV78hsCM.roa (raw, json)
Hash identifier: 0R3GpdXKtayxaq41vpy3fyLvbLxXP03FkvujsiPcluE=
Subject key identifier: EB:A8:63:6A:0D:8A:FB:AD:4E:3D:75:49:A5:AA:32:57:BF:21:B0:23
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0184C7A9BDFF6A21D9621750CE85094F397A
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/66hjag2K-61OPXVJpaoyV78hsCM.roa
Signing time: Wed 30 Nov 2022 08:31:41 +0000
ROA not before: Wed 30 Nov 2022 08:31:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400810
IP address blocks: 185.240.134.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c7:a9:bd:ff:6a:21:d9:62:17:50:ce:85:09:4f:39:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Nov 30 08:31:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eba8636a0d8afbad4e3d7549a5aa3257bf21b023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:88:d2:b5:ad:59:2a:4f:41:2a:41:33:ab:5a:
d1:14:9d:7e:30:32:b8:50:17:01:63:07:ca:9f:e8:
23:9b:16:33:69:ce:76:90:0f:b7:c6:74:84:d2:9f:
51:c5:d1:c9:5b:4d:66:53:5e:bb:e6:40:aa:b2:cb:
7e:1e:f3:8b:b4:bd:c3:fc:2e:af:44:ef:43:f2:a1:
16:27:18:1e:91:91:96:58:03:8b:96:97:04:a6:c6:
99:a1:d0:d0:c0:e7:c8:00:bb:ad:9a:52:0e:64:fa:
8b:77:42:b2:e6:a8:8f:4d:5d:95:68:2b:46:e2:07:
cd:e6:bd:1a:ce:f9:1c:a5:e6:be:db:31:0f:cc:f2:
08:a6:fc:0f:c6:9b:5d:1e:30:57:bc:24:ef:b5:69:
d4:7d:83:48:9c:d9:e0:ae:64:56:7b:34:0b:e0:02:
57:79:a3:3f:87:da:d9:a0:50:bf:65:10:99:d1:17:
dc:c8:a7:5d:92:f8:90:6f:90:53:cd:33:ba:58:17:
fb:f0:fd:69:2b:ed:18:ac:8c:0c:fc:15:9f:38:6b:
af:b2:63:9e:e1:67:82:84:60:e2:a9:d9:8c:80:c2:
f9:33:dc:71:d6:61:82:f2:70:d7:b9:a6:7f:aa:cf:
eb:2c:32:23:a0:27:d2:1d:20:ae:08:31:fc:c9:90:
93:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A8:63:6A:0D:8A:FB:AD:4E:3D:75:49:A5:AA:32:57:BF:21:B0:23
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/66hjag2K-61OPXVJpaoyV78hsCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.134.0/23
Signature Algorithm: sha256WithRSAEncryption
17:c8:74:54:d1:0d:0d:fa:39:9b:18:34:15:f8:42:86:f1:23:
bb:97:ce:06:ba:9b:f9:47:12:f5:78:cd:e7:96:5f:8e:b6:8c:
cf:b7:b7:3c:9a:17:65:61:4e:63:4f:09:95:1f:94:9b:c9:7e:
65:f0:15:6f:90:ac:04:1f:c0:84:a9:f4:da:c8:36:96:5f:35:
25:3b:e9:8e:a2:50:83:37:e7:f9:7b:1e:8a:d8:c0:ea:7b:5d:
66:7b:a9:5e:b5:d8:e1:76:fa:bd:a0:db:70:8b:8c:0c:33:d1:
ed:45:ba:b1:9d:5f:2d:98:4d:8b:b1:37:74:48:5e:49:de:11:
54:65:a8:de:8a:67:9a:aa:c3:d5:fa:c1:ec:f7:f0:32:0d:15:
86:96:f7:db:b3:45:16:1a:f6:9a:07:b1:47:9d:7b:71:6a:ac:
17:f9:fe:e7:e2:b2:4d:49:47:c5:85:1b:8d:2c:50:bf:37:4f:
4c:a7:89:08:50:6a:d1:82:29:1d:20:c1:c1:bc:a2:b5:ca:2f:
96:26:8f:e5:89:7f:b1:90:23:64:11:b7:ba:4f:1e:9b:9e:69:
a7:e0:c4:c8:f0:e5:ba:25:1e:88:81:d6:12:5e:80:d4:b3:3f:
52:27:99:16:6b:c6:2d:3a:50:0a:2b:58:e0:6a:f2:14:da:e8:
35:f7:6a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org