Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8FRGnGbH1Z0peVaZrXJ1VTqg5yI.roa
File: 8FRGnGbH1Z0peVaZrXJ1VTqg5yI.roa (raw, json)
Hash identifier: NG/aLAJ6Ucp6MrWQlo3O61l4f4BG243GTY3Nh0J6qCQ=
Subject key identifier: F0:54:46:9C:66:C7:D5:9D:29:79:56:99:AD:72:75:55:3A:A0:E7:22
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0183F3527C0662E82DD64AE8EE4BAB6A9893
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8FRGnGbH1Z0peVaZrXJ1VTqg5yI.roa
Signing time: Thu 20 Oct 2022 02:56:52 +0000
ROA not before: Thu 20 Oct 2022 02:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 185.206.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f3:52:7c:06:62:e8:2d:d6:4a:e8:ee:4b:ab:6a:98:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 20 02:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f054469c66c7d59d29795699ad7275553aa0e722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:be:b8:0a:6b:2c:7d:a4:a9:a6:68:21:ed:8e:
6f:d5:13:b4:a1:87:7f:60:e7:e1:fd:62:69:e6:78:
ca:c3:ce:7d:1d:df:56:6b:4a:b6:9b:17:a3:fa:74:
cf:e5:86:71:80:12:0e:05:86:40:cf:27:f3:de:57:
aa:1d:54:04:00:d0:b0:5a:76:4c:40:80:8c:4a:f7:
e5:2d:19:f6:26:bf:e3:6d:c8:4c:2f:b9:60:b7:75:
9b:a2:fb:6a:f3:f0:a7:45:b3:09:00:2c:3d:6b:d3:
b3:4d:38:8d:32:93:3e:32:13:e1:6f:9c:ed:a2:a8:
0e:2a:0f:88:ab:f2:fe:f6:41:2d:92:e6:45:4e:66:
5d:f4:7d:6b:fe:5c:47:92:a7:3e:f9:55:fa:13:11:
75:74:9a:54:2a:41:b9:39:36:34:ff:70:8b:42:67:
96:32:e9:a2:a9:7d:f3:0b:45:79:35:03:b0:fb:88:
a2:34:ba:26:48:22:8d:87:2b:ec:64:c2:39:a0:42:
42:f0:98:e7:af:77:d2:72:93:96:3d:71:ca:68:55:
a6:94:77:83:d9:b8:09:1b:24:e4:7a:42:2b:68:9b:
07:93:df:ec:e4:59:46:72:20:ea:a4:18:6a:c4:3d:
91:b3:7d:ac:5d:f0:35:83:81:90:8b:7a:94:89:6b:
84:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:54:46:9C:66:C7:D5:9D:29:79:56:99:AD:72:75:55:3A:A0:E7:22
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8FRGnGbH1Z0peVaZrXJ1VTqg5yI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.248.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:48:10:a8:73:68:67:4f:12:7a:67:72:72:b9:be:1c:52:ed:
1c:a0:da:7d:7c:3c:7e:2e:92:dc:2e:a2:34:3a:14:99:90:c6:
d1:8e:1b:da:12:84:de:17:ac:fc:d8:bc:0f:2f:25:77:19:6c:
93:45:11:79:8b:a5:f0:1d:a5:ba:ef:3b:ee:64:53:95:c6:dc:
92:73:91:9a:d1:b4:08:74:d4:fd:47:68:e7:77:1a:53:d1:64:
7e:00:b5:ba:3c:d6:5b:04:52:73:56:01:b7:94:1a:46:d9:5f:
56:bb:81:d5:03:4d:5a:bc:7c:a3:1d:dc:31:71:3e:d3:b9:3a:
4c:5e:49:e9:f5:e5:fe:d9:41:20:a6:6c:7a:bf:8e:88:69:04:
df:38:b3:c2:73:68:bf:33:ab:8f:cf:f3:61:73:8e:bc:f7:6b:
4d:c1:cd:bb:22:11:a1:1f:e4:82:d9:f6:20:e9:0b:74:2a:d7:
80:da:36:d0:2e:a0:fb:a6:9d:35:45:1b:2e:2f:51:24:8c:2a:
05:ce:32:56:36:45:e3:0c:25:50:cd:69:01:69:40:8c:22:e0:
b5:6e:12:fb:11:40:b6:f6:76:84:0d:17:57:b2:d2:cc:45:99:
b4:d4:eb:5b:52:6a:c6:f9:61:8c:c3:eb:59:64:6b:63:c9:36:
34:05:cf:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org