Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8BKr321Ovqk7Njdt8J8041qF2qY.roa
File: 8BKr321Ovqk7Njdt8J8041qF2qY.roa (raw, json)
Hash identifier: gcCfXt03Q1KinmjQk/aYWeUH32MR3MUVjSlnRhakqMA=
Subject key identifier: F0:12:AB:DF:6D:4E:BE:A9:3B:36:37:6D:F0:9F:34:E3:5A:85:DA:A6
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0183859DB563BBF07535E1514A979916392E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8BKr321Ovqk7Njdt8J8041qF2qY.roa
Signing time: Wed 28 Sep 2022 19:40:48 +0000
ROA not before: Wed 28 Sep 2022 19:40:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33696
IP address blocks: 185.223.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:85:9d:b5:63:bb:f0:75:35:e1:51:4a:97:99:16:39:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 28 19:40:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f012abdf6d4ebea93b36376df09f34e35a85daa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:9f:30:51:8a:95:75:35:98:48:5e:f7:4c:fd:
08:62:a6:36:62:10:bb:32:3b:98:f1:82:74:c3:89:
3d:c3:e9:26:40:2b:c0:a5:69:2f:99:e7:f9:ee:d8:
1c:7e:cc:0b:e7:3a:e0:f7:11:9e:95:8f:a8:ae:f1:
eb:70:91:b5:81:bd:c2:b9:59:97:89:94:a3:25:16:
24:17:d3:be:2e:e9:66:f9:85:da:e3:3c:4d:5a:9e:
05:50:a8:73:db:ea:f4:20:75:34:18:f2:c9:4a:24:
16:a1:be:d0:ee:09:ce:c3:4f:1f:ab:18:2c:ee:b7:
ea:fe:55:e4:18:a5:2b:85:bf:50:b0:59:3b:9b:35:
9e:83:14:96:2e:85:5f:79:e9:cb:ad:b1:55:b2:ff:
25:9a:7d:1a:cd:ed:39:3e:57:a0:dd:6a:97:15:7e:
42:57:16:ea:66:01:3d:6f:11:24:bd:e8:21:09:60:
8d:b3:a7:3d:1d:76:8f:a0:69:f6:62:83:9a:61:a7:
ae:8c:ac:a9:8a:e1:cd:71:82:75:bd:0e:06:e3:69:
0e:3c:73:8a:92:a1:c4:3f:eb:7b:5f:94:48:ea:7c:
49:ef:e6:50:a0:62:e8:6a:ba:eb:86:62:df:94:f6:
32:af:34:7f:1a:08:72:b9:91:13:70:73:87:bc:05:
a4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:12:AB:DF:6D:4E:BE:A9:3B:36:37:6D:F0:9F:34:E3:5A:85:DA:A6
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8BKr321Ovqk7Njdt8J8041qF2qY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.154.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:b0:ee:52:b6:8d:7a:f1:37:0d:85:db:21:fb:49:55:33:cd:
cb:97:e3:9c:82:49:d6:7d:cb:31:60:8f:aa:10:d6:2a:c7:69:
30:9f:b1:a5:18:a6:9a:30:bb:bc:10:cf:33:4f:99:b1:65:eb:
66:b2:e3:0b:e5:48:37:8a:77:9b:91:be:ab:18:89:24:ac:c7:
7f:13:c4:cf:75:6e:eb:12:43:4f:95:e2:6e:d0:85:4e:b0:dc:
9a:57:a4:38:a5:b7:4e:da:ef:15:ff:d1:c6:c1:1f:96:35:1c:
19:76:00:a3:a3:29:ee:e9:83:73:ff:79:b0:7e:b5:37:52:36:
d6:e7:6a:fc:ef:dc:66:a5:a8:d7:8f:e1:88:94:71:ab:b3:ab:
f4:db:e1:6b:bc:96:77:1f:0d:64:2f:7b:c9:95:21:bd:ad:30:
e9:43:35:91:a4:52:32:f0:3f:5c:55:4a:eb:c7:f6:57:32:ce:
7c:3e:af:ed:27:16:40:18:95:91:36:de:8d:72:93:62:92:32:
a4:f5:7f:3b:90:e8:62:87:65:dc:3b:6c:30:48:d2:9c:2e:2f:
a2:29:d5:d2:47:e8:ce:9e:17:5a:38:64:ed:ba:37:f3:8e:93:
cb:60:a1:95:1f:77:8a:cf:c1:d1:05:51:00:90:7b:5a:3a:77:
e2:a0:41:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org