Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/H4pTtUp5ShIuzj9J_dmLAgyXY90.roa
File: H4pTtUp5ShIuzj9J_dmLAgyXY90.roa (raw, json)
Hash identifier: TXG76Z4vv3FAg0wK0yLrGuTO9HvIoEYSdLo+yYJmUJk=
Subject key identifier: 1F:8A:53:B5:4A:79:4A:12:2E:CE:3F:49:FD:D9:8B:02:0C:97:63:DD
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A7E0A17
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/H4pTtUp5ShIuzj9J_dmLAgyXY90.roa
Signing time: Sat 01 Jan 2022 16:07:09 +0000
ROA not before: Sat 01 Jan 2022 16:07:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49387
IP address blocks: 85.187.201.0/24 maxlen: 24
85.187.202.0/24 maxlen: 24
85.187.200.0/24 maxlen: 24
85.187.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176032279 (0xa7e0a17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f8a53b54a794a122ece3f49fdd98b020c9763dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:93:93:8a:13:4d:16:c7:b5:d6:2f:79:ca:bd:
69:47:73:6d:d7:57:75:f3:23:57:31:22:c7:d5:16:
ea:a8:66:98:72:f0:38:14:7d:e2:1e:35:88:10:c8:
54:f0:a9:74:f7:e6:35:fa:d6:f7:03:2e:60:03:92:
de:48:b7:94:fd:78:10:ad:a5:5d:50:77:60:07:3b:
dc:4e:66:3b:82:c4:4c:16:48:39:30:bc:0e:69:63:
f1:da:b7:28:41:f4:17:fb:4f:cb:9c:73:ba:4a:fb:
a3:23:5e:b2:8a:8e:7a:79:36:71:8e:39:a5:58:98:
17:70:92:35:c1:67:e3:15:53:d1:9d:6c:9b:46:c1:
d7:2c:22:b8:f0:0e:d6:9c:00:27:c3:bf:36:79:f7:
84:20:16:f9:b8:3c:51:f6:a6:7c:9b:0e:0b:71:9f:
51:00:32:f1:e7:07:a3:e2:97:bc:97:29:d4:d9:a0:
61:6d:84:b7:5d:b2:e7:5d:14:90:eb:c2:ec:a3:e3:
f3:d2:6a:78:61:17:4f:50:3f:28:ad:f2:12:42:e2:
75:b4:94:68:a8:80:35:35:72:db:7b:d6:ad:c4:c6:
f9:1f:25:15:ed:44:42:81:0d:dc:70:7d:0f:08:70:
e4:38:33:8c:9f:bf:03:e0:0c:72:da:64:a0:c2:eb:
d0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:8A:53:B5:4A:79:4A:12:2E:CE:3F:49:FD:D9:8B:02:0C:97:63:DD
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/H4pTtUp5ShIuzj9J_dmLAgyXY90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.200.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:4a:8b:11:fb:79:5d:c7:3a:a9:77:32:22:27:47:14:22:8f:
bb:e8:ba:6c:ff:7c:1e:29:d6:ba:8c:fc:c2:aa:f3:01:ce:77:
df:da:8b:6d:75:c7:06:61:36:21:86:88:b8:77:be:24:09:08:
bd:a9:7f:95:8f:2c:ca:9d:34:8c:f8:71:fa:0c:1d:ae:b3:c6:
38:f0:09:34:99:89:25:c8:a2:3a:c9:9e:c9:f0:92:e8:3b:63:
a5:26:15:ba:45:1f:f0:a6:39:ea:86:b4:58:25:eb:c1:61:03:
6e:33:d8:35:a9:54:50:e2:42:cd:1a:a3:c6:ca:23:39:af:55:
3e:d6:33:e5:c0:d5:57:83:fa:70:13:18:76:19:d0:c9:3f:2c:
c0:d1:2b:bf:5f:2b:10:9d:db:b8:6d:f9:c0:66:8b:db:de:9c:
3b:8f:88:10:4e:c4:d4:d8:d3:08:e1:02:6a:3a:85:ad:2b:af:
7a:89:c2:c5:00:43:9d:9e:71:7b:05:08:00:f3:0d:de:0d:5c:
d4:2a:6b:17:58:0c:a7:ad:d6:0b:c2:2b:d3:75:4d:89:c9:8e:
a0:3a:6a:94:0e:a2:a7:cf:94:92:cc:05:ca:09:50:6f:8c:aa:
04:b7:c9:50:1c:b5:0b:17:d1:3b:ef:47:9c:16:7c:64:87:04:
af:bf:af:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org