Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/C8hIe0acr5oMD_839V4U2RYraOs.roa
File: C8hIe0acr5oMD_839V4U2RYraOs.roa (raw, json)
Hash identifier: cg+RJhjrkntA8QtH+U/BxanTQgQ7mbOp6qsOjz5+Efk=
Subject key identifier: 0B:C8:48:7B:46:9C:AF:9A:0C:0F:FF:37:F5:5E:14:D9:16:2B:68:EB
Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Certificate serial: 01822530ADE2F4E8D323B5437CFF854F0488
Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/C8hIe0acr5oMD_839V4U2RYraOs.roa
Signing time: Fri 22 Jul 2022 09:15:23 +0000
ROA not before: Fri 22 Jul 2022 09:15:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 92.51.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:25:30:ad:e2:f4:e8:d3:23:b5:43:7c:ff:85:4f:04:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d
Validity
Not Before: Jul 22 09:15:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bc8487b469caf9a0c0fff37f55e14d9162b68eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a0:67:d6:08:98:e1:b0:a3:98:18:15:44:22:
2c:73:c8:d9:30:51:67:7d:0a:56:bc:62:cf:b9:86:
01:df:b6:76:86:e9:cb:e1:b9:55:bd:14:63:2a:e2:
56:67:1c:4f:e8:06:8b:18:06:21:49:8c:3c:0b:55:
c7:81:93:14:e6:b8:1b:a9:78:3c:03:ca:3c:3b:2a:
04:91:6d:9f:86:87:1b:f7:67:c0:a4:ec:b4:f6:53:
dd:e1:7a:cf:24:b0:4f:46:6c:ef:d0:ec:47:97:95:
f9:4b:1a:0a:06:4c:4c:02:77:40:29:7f:ed:b5:81:
a7:af:c2:23:12:25:3d:32:09:89:14:fe:49:cf:df:
b7:fd:aa:5b:2a:d2:a9:56:fb:05:5f:d1:3b:5b:1f:
3b:60:09:0d:76:c7:21:aa:d8:58:d9:aa:86:55:66:
73:8d:df:38:0c:43:e5:58:ac:65:fd:48:b1:d9:98:
50:cf:c4:59:e5:d0:6c:3f:dc:0f:50:27:98:11:00:
7d:69:25:bf:b4:86:71:ad:c6:5c:e2:b7:ad:b3:47:
09:e2:de:6c:60:c8:d4:f9:e3:b0:d0:54:04:f8:79:
8b:1e:1f:60:9a:4f:37:4d:fa:bd:d5:20:96:74:18:
22:a4:a0:bc:94:ea:8a:cb:ea:2b:f9:5e:90:da:5c:
bc:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C8:48:7B:46:9C:AF:9A:0C:0F:FF:37:F5:5E:14:D9:16:2B:68:EB
X509v3 Authority Key Identifier:
keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/C8hIe0acr5oMD_839V4U2RYraOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.51.44.0/22
Signature Algorithm: sha256WithRSAEncryption
04:f7:ec:b0:3c:62:db:de:aa:28:12:a5:4c:5d:f0:ee:31:e1:
15:47:6a:fa:0f:62:13:94:0c:f8:f6:2a:1a:eb:d9:2c:50:b0:
a5:cd:fc:bd:a5:77:35:ab:be:75:a1:24:72:24:d2:2b:28:4d:
e1:8f:ed:ea:94:eb:9d:ab:22:86:a5:13:22:12:0f:38:7c:06:
f2:f8:9b:5a:bd:b3:af:0c:58:56:f7:e1:61:a6:a6:3f:15:ed:
c9:17:45:b8:e5:20:c5:87:30:6e:b7:da:71:64:10:52:ab:17:
d0:ed:b9:0c:71:ec:ee:38:41:59:56:a0:3f:15:1e:4a:87:cb:
4a:dd:6b:59:02:1d:31:ea:f0:21:f3:e8:3e:22:19:1d:2b:3a:
a9:7b:34:d0:5b:17:7d:d1:05:ed:b1:97:be:8a:bc:ef:b6:54:
02:f9:4d:c8:2f:4d:c1:26:75:19:5e:d7:51:7a:76:98:91:65:
ec:01:1b:70:74:f2:ba:10:81:cf:b8:e1:a9:7f:ea:aa:bc:b8:
b8:c0:b7:e8:e2:3e:57:02:5e:2e:e2:fa:7b:80:e3:6b:f9:cf:
3f:74:58:72:7e:28:33:81:76:fb:a0:d4:43:af:ef:15:da:af:
ad:bb:4d:70:6d:f5:2c:9b:88:af:43:7d:2d:6f:89:88:47:12:
7c:35:31:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:18 2024 by rpki-client on console-ams.rpki-client.org