Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8NA0yCPgOori5HCHQzuoXkVL5s4.roa
File: 8NA0yCPgOori5HCHQzuoXkVL5s4.roa (raw, json)
Hash identifier: /5PZbDoXNTHJXe+JbH4iV9otUi83QAJMr+NjCfQYaSs=
Subject key identifier: F0:D0:34:C8:23:E0:3A:8A:E2:E4:70:87:43:3B:A8:5E:45:4B:E6:CE
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 06F9AD06
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8NA0yCPgOori5HCHQzuoXkVL5s4.roa
Signing time: Tue 22 Feb 2022 09:49:03 +0000
ROA not before: Tue 22 Feb 2022 09:49:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.226.104.0/24 maxlen: 24
185.255.125.0/24 maxlen: 24
185.238.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117026054 (0x6f9ad06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 22 09:49:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0d034c823e03a8ae2e47087433ba85e454be6ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ae:a4:10:c7:bd:5d:db:9a:36:f2:d2:b8:72:
50:ea:43:5a:0a:ba:52:86:cb:5d:63:b1:45:63:2e:
b5:92:90:2d:b6:95:b7:32:a9:8f:af:d3:5f:b1:1d:
7e:88:3f:a5:30:7e:22:8d:87:ea:ca:0e:e3:92:2e:
b9:27:b2:06:83:81:94:23:21:71:4d:48:c8:54:0b:
3a:4f:b7:be:9c:5d:c3:ad:54:c4:7e:78:e0:4a:74:
1a:55:49:62:25:79:5c:ef:25:73:ba:32:01:7c:e6:
b3:6a:68:62:91:9b:26:02:9f:71:48:9b:28:32:36:
82:66:ea:6b:6a:f8:e5:3f:d0:ac:4d:4e:4b:72:96:
7e:80:d7:fe:ef:b1:c9:fc:5f:58:21:53:08:38:62:
36:f2:e2:ec:dd:dd:74:2f:87:b3:2b:ad:e6:b0:32:
17:06:81:7f:26:93:59:6d:b1:cf:1e:98:db:4f:50:
4e:1b:e5:d8:56:82:f3:9f:aa:5b:57:b5:ba:42:2d:
3b:37:30:99:e6:f5:c4:b7:91:68:cd:38:12:e1:82:
7c:f6:24:aa:cd:42:2f:2c:04:f5:66:a7:02:c9:01:
89:42:79:63:ef:ae:61:d9:d4:89:67:46:0e:c3:30:
26:a6:cb:26:ea:9e:81:7c:4f:7b:89:1f:6c:fc:18:
3e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D0:34:C8:23:E0:3A:8A:E2:E4:70:87:43:3B:A8:5E:45:4B:E6:CE
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8NA0yCPgOori5HCHQzuoXkVL5s4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.104.0/24
185.238.229.0/24
185.255.125.0/24
Signature Algorithm: sha256WithRSAEncryption
82:aa:47:54:dd:54:a9:e7:e2:1d:e2:56:b1:95:59:f3:59:6e:
1f:ec:a8:2f:79:b8:7b:9f:0e:a7:b9:5b:74:a5:4a:99:ee:9d:
37:c4:e7:c7:40:07:b3:fb:b9:1f:0f:e7:62:6f:e3:86:d0:ef:
ed:1e:70:73:b5:3a:9f:d8:7b:b5:8d:86:3e:b9:0d:7b:f0:1d:
6f:86:b8:23:16:01:7a:1b:f7:1e:15:14:1f:1d:a6:9c:64:ab:
b9:07:d7:67:8e:b9:51:e1:70:f0:b5:1f:73:06:c8:93:e4:7d:
2e:18:97:8d:2b:61:c7:4f:04:03:d7:25:4d:58:b8:db:23:44:
cf:d5:58:01:b1:c8:3a:42:bc:e4:0e:cf:85:46:c9:0a:fb:1b:
0a:fa:72:ad:a6:36:79:9d:0c:31:5e:a4:10:54:d4:e4:2b:6f:
43:31:c0:1c:50:d3:db:39:e2:b1:13:c8:ca:0c:37:6c:45:f1:
97:14:7c:0d:6e:2f:e9:3e:a9:58:d8:77:3a:eb:c8:2b:56:2c:
ae:8f:4e:44:1e:84:e4:9b:5e:03:8d:aa:97:c1:7a:53:60:40:
c2:a1:df:68:64:e6:e6:72:5b:7e:e6:e1:64:cd:ff:80:e0:4d:
22:88:4b:0f:20:a2:2a:ea:78:ec:c4:ec:b8:05:f5:79:b3:34:
28:ec:a7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org