Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/9c9Mkq6PkByM0sfldvSZrcqOg5c.roa
File: 9c9Mkq6PkByM0sfldvSZrcqOg5c.roa (raw, json)
Hash identifier: TjhYkySRVQrC4s1L2bpwpyh6qh4AUU18XCRDiePpS0A=
Subject key identifier: F5:CF:4C:92:AE:8F:90:1C:8C:D2:C7:E5:76:F4:99:AD:CA:8E:83:97
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0B003BC5
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/9c9Mkq6PkByM0sfldvSZrcqOg5c.roa
Signing time: Fri 04 Feb 2022 16:55:33 +0000
ROA not before: Fri 04 Feb 2022 16:55:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.255.56.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184564677 (0xb003bc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Feb 4 16:55:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5cf4c92ae8f901c8cd2c7e576f499adca8e8397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:04:55:fb:dc:fb:31:5c:b6:bb:85:78:70:f8:
2f:41:ad:81:49:da:12:2e:86:29:c3:75:ba:55:db:
f9:44:6c:b6:77:5e:31:ce:ae:fb:58:95:f8:8f:3f:
8a:f3:22:85:ab:26:52:f0:31:d5:13:b6:5d:0e:d2:
ae:e6:59:81:b0:a0:91:9b:bf:34:81:57:71:ac:77:
6b:05:bb:22:54:49:50:ca:86:2c:37:94:4d:1b:36:
49:e6:32:7f:5b:35:cf:58:c5:d7:3f:9b:49:56:12:
31:d3:eb:3d:d4:eb:93:a9:d6:ab:b1:87:8f:95:8d:
c9:2a:bc:60:d8:95:8e:09:62:ce:65:e4:0c:97:98:
68:7c:ae:4e:37:89:25:15:c6:5e:32:dd:7a:de:e8:
38:ff:55:1a:42:61:e6:0b:8c:32:9b:c5:b4:d3:57:
f1:bb:f7:fe:b3:bd:3d:58:9e:08:17:a3:2b:40:9c:
8e:50:b3:24:14:1b:bc:46:be:95:f3:27:bf:7b:92:
35:3d:67:ce:a9:86:8e:43:c0:d7:c7:9a:f4:34:7d:
21:1b:e5:18:1b:a7:dd:73:c5:ec:2b:5a:20:c6:ba:
a6:23:a7:ba:e0:6b:0c:0b:3e:f4:b0:5d:21:9a:c9:
57:81:a4:82:41:37:ed:f7:b8:e3:06:56:f8:0b:cc:
81:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:CF:4C:92:AE:8F:90:1C:8C:D2:C7:E5:76:F4:99:AD:CA:8E:83:97
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/9c9Mkq6PkByM0sfldvSZrcqOg5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.56.0/23
Signature Algorithm: sha256WithRSAEncryption
70:7e:66:5b:17:bc:7c:29:54:82:5c:d7:63:a1:97:bd:88:12:
13:c7:93:07:91:9d:90:66:8f:1b:99:a1:d7:0c:28:7b:40:3c:
21:e4:af:73:dd:91:e6:47:c2:77:c3:cb:5c:6b:25:c5:9d:e2:
2a:a4:77:52:ff:45:9a:dc:30:4f:ed:0e:11:64:6a:69:7f:45:
91:04:9b:1e:3f:b1:94:55:2c:2c:3c:86:08:0a:82:b7:cf:ad:
2e:9e:c4:5c:b3:90:ca:4b:9e:a1:4c:ff:ff:b9:15:22:b5:93:
01:ae:59:ea:4e:5e:8e:af:70:ea:2d:35:c2:f4:b2:57:ab:2f:
69:3a:71:45:0e:16:d9:17:5d:74:fe:4f:d4:08:8d:e9:1c:25:
c8:4a:99:d9:e7:37:60:0c:0b:80:3c:71:37:60:2e:02:79:8e:
cd:43:37:4b:57:ec:f9:f1:61:a1:f5:56:13:a4:95:3c:c2:31:
f1:ab:c9:27:1b:49:e4:63:43:35:b4:cb:d9:c2:d3:e7:d7:98:
64:ab:84:67:93:0f:0d:83:aa:4b:c9:88:46:ef:2a:72:82:a6:
61:b0:91:b2:38:b7:ab:16:a5:ca:74:f7:0c:27:b2:d2:00:a3:
57:87:48:23:83:59:b8:17:9f:7b:29:9e:b2:a3:49:3c:08:35:
ee:2a:d0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:11 2024 by rpki-client on console-fra.rpki-client.org