Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/g8CKmPNflDFayx1uXeHsjhIWfaM.roa
File: g8CKmPNflDFayx1uXeHsjhIWfaM.roa (raw, json)
Hash identifier: dCK24V6J6d35TjuBwSzSQ/WhSSdx+NZEjtbwtDS5yVQ=
Subject key identifier: 83:C0:8A:98:F3:5F:94:31:5A:CB:1D:6E:5D:E1:EC:8E:12:16:7D:A3
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 018451DD558D066D88487E0D557986A8AE26
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/g8CKmPNflDFayx1uXeHsjhIWfaM.roa
Signing time: Mon 07 Nov 2022 11:32:50 +0000
ROA not before: Mon 07 Nov 2022 11:32:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212886
IP address blocks: 185.240.132.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:51:dd:55:8d:06:6d:88:48:7e:0d:55:79:86:a8:ae:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Nov 7 11:32:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83c08a98f35f94315acb1d6e5de1ec8e12167da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c8:55:da:48:10:d5:39:18:c6:1e:0a:d2:f8:
97:83:6a:6b:e6:67:62:c7:2a:0d:6c:9b:32:6b:43:
0a:46:e5:0d:53:23:87:27:6d:5c:a3:02:fe:ea:b8:
68:62:6c:fa:bc:28:9c:70:a6:d8:16:79:ec:69:37:
07:0e:ac:64:37:0c:47:77:2f:4a:83:6b:f0:dd:db:
9b:41:80:a7:d0:40:0a:a9:84:23:f3:c5:e1:70:b4:
d0:0c:fa:a6:52:73:48:8a:10:8b:fd:80:75:4a:94:
83:14:64:5f:db:13:e0:72:9a:49:93:93:50:f2:9b:
f2:f5:32:f4:a4:27:08:0c:fa:be:1c:89:04:60:b8:
f1:8b:09:f5:19:95:dd:a5:86:70:e4:83:e4:4e:8b:
c9:f3:5d:84:5a:ad:3f:1d:ac:af:32:4f:e3:e9:ad:
7b:ed:36:95:b5:72:66:91:6a:a7:c9:27:68:08:f2:
2a:bd:25:f8:b1:43:dd:16:eb:96:7b:76:70:4c:03:
d7:b9:90:21:67:61:db:4e:52:5b:8e:69:52:5c:32:
fa:bc:09:7c:bf:25:07:82:37:89:5d:3d:a2:5f:b5:
ef:db:59:fe:b8:cc:49:d8:41:38:70:46:4f:9d:85:
de:1a:44:f3:6e:f3:ec:d3:7d:85:2a:da:01:cf:70:
5f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C0:8A:98:F3:5F:94:31:5A:CB:1D:6E:5D:E1:EC:8E:12:16:7D:A3
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/g8CKmPNflDFayx1uXeHsjhIWfaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.132.0/23
Signature Algorithm: sha256WithRSAEncryption
71:f6:f5:0c:7f:a9:2f:ea:97:9a:86:58:3e:a9:ff:96:07:f0:
6c:d3:6c:19:75:b2:e2:be:a0:7a:75:2f:e1:5a:e9:98:40:e9:
c3:94:c3:24:70:78:f2:f1:e3:16:8e:e7:5a:2e:d5:02:af:a9:
c3:c1:2a:86:23:fb:bf:0c:a8:5d:d3:72:ad:2e:cb:d2:fa:27:
65:2d:93:ad:7a:2a:48:db:96:99:19:f9:7d:e7:6a:d4:d6:94:
df:35:4b:45:ec:6a:4e:48:26:84:c4:87:be:06:7f:98:6e:80:
19:1f:37:21:08:66:02:c1:67:ff:f8:95:50:8e:c3:63:c0:b7:
a9:e3:bf:83:5a:0b:e9:05:b7:e2:ce:f7:1f:27:b8:40:9b:5b:
67:f5:f3:1e:05:47:bf:86:5d:7c:49:e6:a4:8b:61:7d:5f:ac:
90:2c:07:8a:a1:30:c2:ae:9e:e6:ad:e0:96:fc:f1:85:f4:12:
3c:4d:3d:09:36:fb:e3:86:08:7b:55:6c:55:cd:96:ef:ad:09:
6f:ba:d5:50:ac:89:ec:5e:1c:72:64:65:03:fd:c2:af:51:1b:
d5:fa:04:4a:3d:63:25:2c:23:f2:9b:e1:fc:c7:5e:9a:fb:4e:
04:cc:c2:8e:91:98:70:43:b0:30:cf:ce:a4:01:e5:ef:83:93:
80:f3:fc:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org