Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/yHj36qMI14ucrk0Of34ylxgH0IA.roa
File: yHj36qMI14ucrk0Of34ylxgH0IA.roa (raw, json)
Hash identifier: /J1uVUsyGqFKINzTSEOXT6F6BEP9DyFgVltuMcFwDAg=
Subject key identifier: C8:78:F7:EA:A3:08:D7:8B:9C:AE:4D:0E:7F:7E:32:97:18:07:D0:80
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0184C80E72531EF75A49181008A02F2687B5
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/yHj36qMI14ucrk0Of34ylxgH0IA.roa
Signing time: Wed 30 Nov 2022 10:21:40 +0000
ROA not before: Wed 30 Nov 2022 10:21:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 185.240.134.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c8:0e:72:53:1e:f7:5a:49:18:10:08:a0:2f:26:87:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Nov 30 10:21:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c878f7eaa308d78b9cae4d0e7f7e32971807d080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:92:e3:5f:fd:36:e9:5c:42:c1:e0:d7:59:4a:
b1:67:5e:3a:a9:1a:f0:b1:d3:93:16:e8:ed:9a:31:
32:42:63:0f:65:02:96:ae:7e:38:22:cd:c4:01:b4:
ac:47:92:34:8f:49:79:f4:0d:4e:2c:90:52:e1:f8:
4a:1f:2e:26:07:5e:c4:f6:a3:86:eb:ef:a3:4e:5e:
03:e9:0f:b1:9c:18:cc:62:40:f3:e5:00:5e:b8:13:
7c:3e:83:c0:d7:e9:88:2e:20:62:38:3c:3f:ee:ec:
55:33:4f:b0:5b:e2:11:c6:09:8b:52:ac:73:8c:3f:
04:17:7d:02:ee:93:83:87:56:5e:00:20:52:80:c2:
4c:bb:bd:8c:7a:75:6a:6d:44:53:44:26:68:a6:db:
85:90:02:41:f0:3f:9c:f5:ed:df:be:71:00:9a:18:
28:61:9a:d9:7f:24:03:0f:7e:d8:dd:52:ad:e7:61:
6d:46:05:dd:f4:6b:26:9b:fc:67:12:4a:d8:1e:6e:
c9:83:47:7e:69:10:c9:26:d7:4e:1e:77:0a:d4:99:
43:0f:da:18:ac:31:82:02:4a:0b:e5:b9:32:4c:5c:
a8:29:0f:d0:48:25:2a:8a:d8:eb:df:48:e8:bd:2a:
d0:35:5e:a1:bc:22:b3:00:38:8f:bd:28:16:b6:12:
e7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:78:F7:EA:A3:08:D7:8B:9C:AE:4D:0E:7F:7E:32:97:18:07:D0:80
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/yHj36qMI14ucrk0Of34ylxgH0IA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.134.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:6f:07:71:e5:b9:15:19:46:5c:5a:42:d2:80:c7:8e:a8:fc:
c9:f2:26:09:79:ed:af:37:4c:2f:ec:43:7a:44:8a:32:1d:60:
28:32:5c:9f:fa:ec:ae:a4:4e:58:7b:b0:0f:31:b7:46:b2:94:
b6:89:4b:3f:c2:b3:67:0e:40:78:1d:f8:65:4d:3f:f5:5b:85:
c6:52:29:80:66:36:64:da:40:b0:0f:81:3f:76:49:a9:9f:7b:
dd:13:a6:45:68:64:7c:c4:a5:0c:f1:fa:aa:f8:37:93:b6:c5:
ee:5a:12:6f:2a:27:b6:1a:d8:6d:37:69:dc:27:87:57:ed:fb:
19:23:8e:58:86:ef:e4:c5:45:70:bf:c5:08:5e:a3:b1:04:76:
c3:ce:cd:30:22:dd:34:8a:4a:cf:78:7b:e4:de:78:06:15:50:
78:87:39:c5:00:59:1f:16:93:8c:4d:0c:5b:9f:0a:f3:7a:21:
ef:c6:e0:43:07:3d:75:62:f3:ea:fd:94:ad:8a:6c:78:80:c5:
f1:8d:28:fe:e9:b1:f3:c6:7f:81:b6:fd:75:93:ca:71:ba:ec:
e6:73:ea:67:0e:d9:fb:53:1c:e8:92:3c:c9:01:68:41:aa:da:
21:f2:8e:a7:a6:fa:f5:eb:0d:26:d8:18:79:6e:ec:ff:4b:df:
94:56:ef:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org