Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/YOUw0ou52J-0o98wZ6BxtDv6Mow.roa
File: YOUw0ou52J-0o98wZ6BxtDv6Mow.roa (raw, json)
Hash identifier: fVz9vLzqAsUdbBzx0LkIDbznCxnOn7GONV9o8ib5QqY=
Subject key identifier: 60:E5:30:D2:8B:B9:D8:9F:B4:A3:DF:30:67:A0:71:B4:3B:FA:32:8C
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01845BEF5B7C5BAB0E0BB72081E165FE8D57
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/YOUw0ou52J-0o98wZ6BxtDv6Mow.roa
Signing time: Wed 09 Nov 2022 10:28:43 +0000
ROA not before: Wed 09 Nov 2022 10:28:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200475
IP address blocks: 185.255.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5b:ef:5b:7c:5b:ab:0e:0b:b7:20:81:e1:65:fe:8d:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Nov 9 10:28:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60e530d28bb9d89fb4a3df3067a071b43bfa328c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ef:e6:0b:63:47:04:31:00:1a:77:9a:f4:89:
34:3a:95:be:a2:c1:cc:26:a3:41:f1:92:d8:60:81:
9b:cb:68:d3:48:7d:10:0e:f7:39:89:4f:2a:54:df:
b0:5c:08:d5:41:fd:86:6e:ec:18:f3:12:0a:41:8a:
85:28:2b:09:b5:9e:dd:8f:d3:bb:9c:44:28:15:00:
27:a7:d5:0d:8e:fe:4c:3d:64:73:3b:ec:44:c1:87:
9b:29:69:80:58:f3:ca:87:26:ea:eb:a8:20:f9:b4:
98:45:66:17:88:89:57:ee:9e:6c:b0:82:81:9f:88:
a7:91:c7:7a:07:37:11:d3:25:34:93:c7:9f:81:69:
74:96:06:5b:65:6d:57:96:e0:ca:8d:19:ae:75:17:
0b:22:ef:73:b7:5d:47:73:fb:e1:c5:e2:0c:ce:53:
c2:b1:cd:6b:a8:66:87:fc:03:4c:d9:1d:b1:96:d4:
91:9f:3a:1a:91:b4:d2:ea:1b:73:69:03:0e:e8:9d:
1c:0a:86:e4:84:54:0a:60:30:92:b9:29:8d:50:ba:
50:1e:b0:ef:53:02:9d:a2:11:12:c8:ba:b3:52:71:
7f:12:12:61:58:4d:85:f0:83:52:b4:3e:3a:25:53:
5e:89:17:6f:44:96:48:11:7c:d7:4d:e1:c1:ae:3e:
02:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E5:30:D2:8B:B9:D8:9F:B4:A3:DF:30:67:A0:71:B4:3B:FA:32:8C
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/YOUw0ou52J-0o98wZ6BxtDv6Mow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.212.0/22
Signature Algorithm: sha256WithRSAEncryption
64:dc:1e:4d:15:ab:55:69:55:5c:06:14:c7:3e:9a:67:0c:0d:
a5:0e:86:a7:f6:1d:39:fa:0d:b7:fa:bc:15:19:26:0b:9c:85:
95:bb:b6:7f:bf:54:1c:6b:12:07:bf:f2:af:02:7b:bc:43:0f:
d5:dc:fd:fd:64:30:42:99:3d:32:51:34:f8:01:ab:6f:47:42:
9a:84:60:83:cb:85:6a:3c:96:de:35:7f:08:c1:d4:db:51:bb:
03:61:ed:b4:c2:cd:2a:b5:8f:67:9d:35:6e:f8:cd:63:12:6a:
34:12:63:fe:27:e2:6c:5d:ed:41:64:88:d1:5b:7e:94:f3:95:
69:ba:67:dd:13:c9:84:a9:d3:6a:6c:75:74:ec:00:8e:00:3d:
49:0d:c8:96:1e:ef:77:46:13:50:08:29:c1:71:77:69:fb:d5:
4b:9e:74:82:41:d6:05:df:b4:03:22:54:e5:6f:82:17:36:0d:
08:01:e4:a6:82:7d:d1:bc:45:ae:ed:f4:2e:19:98:46:a8:29:
5b:20:c6:32:6c:e8:8d:04:32:fa:a2:23:e3:50:98:0d:b6:35:
55:3f:03:13:af:28:57:52:35:e1:b1:51:23:04:c0:19:55:aa:
18:ab:70:1d:e2:fb:3c:31:30:a8:25:90:04:ed:21:38:5d:5b:
ec:11:e9:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org