Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/8HLC88nupzP8NhptMyiSI3zR1ew.roa
File: 8HLC88nupzP8NhptMyiSI3zR1ew.roa (raw, json)
Hash identifier: CuDd9Fu/Qsqt4JnMShIyEKl6fDYFieFEfeNOnL+Jhds=
Subject key identifier: F0:72:C2:F3:C9:EE:A7:33:FC:36:1A:6D:33:28:92:23:7C:D1:D5:EC
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0185077877431E828BBA91DC6A4EDCD4C9CE
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/8HLC88nupzP8NhptMyiSI3zR1ew.roa
Signing time: Mon 12 Dec 2022 17:53:33 +0000
ROA not before: Mon 12 Dec 2022 17:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205874
IP address blocks: 151.237.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:07:78:77:43:1e:82:8b:ba:91:dc:6a:4e:dc:d4:c9:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Dec 12 17:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f072c2f3c9eea733fc361a6d332892237cd1d5ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5c:03:8e:b3:5c:96:47:39:cf:9a:3c:88:38:
21:3b:a8:52:95:f4:0c:c6:22:3a:0a:2e:00:aa:1d:
c7:a0:87:4e:5e:6d:c0:69:2f:a1:cc:a9:fa:00:0a:
59:35:e4:98:bb:26:e6:47:51:7e:b1:9d:5b:db:90:
de:10:25:2c:f0:2d:87:98:64:63:47:87:b5:71:99:
a4:6f:24:fb:a8:d7:aa:a6:56:86:31:55:a8:bc:ab:
18:53:f6:88:c8:c3:44:6b:83:72:4a:ce:58:2b:e1:
63:0e:bd:c4:df:87:56:f0:f1:6b:e4:b9:1d:16:a9:
99:f5:ad:5b:65:31:29:1b:27:09:8b:2b:81:1b:4c:
f6:ac:6c:3b:2e:ba:7b:ef:47:46:73:3c:0d:de:6f:
9b:64:97:44:75:71:2f:92:ba:e9:b7:e5:a6:23:ce:
55:82:6a:8a:d6:00:87:a4:17:c2:2b:de:b3:8b:40:
14:2a:45:2a:88:c6:b7:19:89:7b:98:e8:5f:a1:bc:
83:ab:b6:2f:97:27:74:cf:c5:7a:4f:fe:78:dc:0f:
20:34:ee:20:04:ee:93:4a:b5:4f:12:8b:b4:a2:03:
8d:8d:9c:36:37:95:7a:7f:de:23:cc:1c:bd:51:9f:
2a:c1:4c:67:52:dc:33:e0:a2:8b:d7:90:10:3f:4b:
a7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:72:C2:F3:C9:EE:A7:33:FC:36:1A:6D:33:28:92:23:7C:D1:D5:EC
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/8HLC88nupzP8NhptMyiSI3zR1ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.25.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:5d:71:33:f7:f4:db:bf:b0:40:c5:0a:35:20:b4:93:c4:33:
88:ee:f4:7a:c4:36:c2:db:c8:c8:5c:64:57:a5:bd:a6:07:6d:
a2:7a:d7:c6:77:8a:7f:86:28:82:3d:12:4d:79:e6:45:bc:2d:
cc:3a:fd:fd:d9:fd:a1:f9:72:88:3d:16:99:b8:8a:04:63:da:
cc:81:f0:65:b0:46:d5:95:b7:6e:eb:94:36:18:da:d8:9d:c8:
46:cc:1d:f6:57:90:53:10:ad:46:d1:13:37:17:80:f3:f9:52:
fe:06:ba:b9:c9:69:eb:13:4a:68:13:3c:be:70:1d:b2:80:66:
57:bc:04:d5:27:5a:5f:f7:63:c9:57:e3:25:51:d3:2d:84:21:
2c:20:ee:df:68:6c:5b:fd:65:e9:3f:cf:65:6c:84:e8:08:fc:
ff:03:5b:4d:01:54:47:51:ef:a8:31:45:c8:0f:73:ce:d5:ba:
3e:d2:bd:e5:0c:66:92:7b:49:7c:20:27:d7:46:89:6b:fa:22:
99:13:cd:4a:dc:bf:bf:1d:6c:1f:81:66:19:87:32:e4:6a:37:
e5:76:f7:54:bc:87:22:29:8b:fb:0b:bc:f5:f4:2d:67:fb:48:
20:cb:92:78:16:af:b7:57:8f:92:e4:61:b6:46:80:e4:ea:08:
7e:00:aa:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:11 2024 by rpki-client on console-fra.rpki-client.org