Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8enXVXucOj8-AqpVxlaI1bN02Ew.roa
File: 8enXVXucOj8-AqpVxlaI1bN02Ew.roa (raw, json)
Hash identifier: RkeLpI1fCmu9PTzAlfutwZUzlAOLXVd/Bq87mzvSzLg=
Subject key identifier: F1:E9:D7:55:7B:9C:3A:3F:3E:02:AA:55:C6:56:88:D5:B3:74:D8:4C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07251B5E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8enXVXucOj8-AqpVxlaI1bN02Ew.roa
Signing time: Thu 10 Mar 2022 16:47:07 +0000
ROA not before: Thu 10 Mar 2022 16:47:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.240.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119872350 (0x7251b5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 10 16:47:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1e9d7557b9c3a3f3e02aa55c65688d5b374d84c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:da:9c:dd:fa:1c:17:f4:18:f8:3d:67:53:08:
ed:b6:0f:9a:e2:05:5f:0d:ae:e1:01:ed:a2:e0:cc:
96:6a:7c:8f:77:95:48:25:2e:9d:b5:c0:4f:85:af:
c9:35:66:73:50:1b:d9:4b:60:ea:06:6c:e7:d6:0a:
cd:2d:6b:6b:2d:a3:b2:e8:a3:42:a2:af:b4:a0:0b:
0c:53:e7:17:df:84:87:03:af:e4:e3:12:b3:20:9c:
43:85:81:c8:e6:7a:31:0d:c4:88:d7:d1:a9:32:6a:
5f:f7:f6:39:25:ea:07:95:3f:c9:52:1e:8b:9c:e9:
ad:b7:a9:5d:9b:b7:03:19:2e:d1:f3:9f:81:10:1e:
18:af:18:69:bc:4d:43:55:a5:be:88:8a:d2:2f:78:
f9:e4:13:94:f5:1f:86:4d:9d:a7:f9:f9:2c:1b:5c:
d3:28:e3:b2:ad:e5:1b:c2:26:a7:f0:3e:77:43:16:
45:09:46:ff:96:bd:e8:c5:dc:00:f3:36:c5:9d:96:
fc:ca:ab:eb:62:10:c9:5f:d2:5c:fc:f3:4d:20:1d:
35:50:e3:94:77:5a:ba:b3:b9:92:ec:6b:4a:be:d8:
c9:f1:ef:e8:44:af:ef:d5:08:67:c6:9e:cd:1c:0a:
86:c9:8e:a6:b9:f4:74:94:1c:fc:ba:df:38:e0:3d:
d1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E9:D7:55:7B:9C:3A:3F:3E:02:AA:55:C6:56:88:D5:B3:74:D8:4C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8enXVXucOj8-AqpVxlaI1bN02Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.122.0/24
Signature Algorithm: sha256WithRSAEncryption
08:ec:96:b6:ef:66:42:f5:97:2d:c7:be:7d:d9:0c:d5:f7:60:
a6:c2:a0:34:a5:d0:14:7e:19:c0:93:70:53:ba:db:94:b1:61:
0a:28:cc:e2:c9:cd:59:12:0b:ab:53:74:ad:49:d7:ce:65:2c:
f0:71:9c:7f:7e:6b:f2:78:82:f1:1c:ba:38:d9:b4:41:55:b9:
1d:8a:a1:da:9b:c5:f7:07:83:e5:9c:95:2d:f9:33:95:41:1d:
4c:84:16:d3:d3:a2:32:ff:73:14:ee:2a:55:48:b2:b9:1b:93:
45:2a:89:bf:b3:a8:b6:54:06:d0:a2:e5:55:1c:71:73:2f:0f:
41:a0:78:f6:1f:aa:2b:fc:4f:f6:6f:92:5f:54:4e:5f:d9:e2:
68:c6:b9:da:36:63:5c:bb:f8:91:b6:15:eb:d8:c9:80:f6:fb:
25:93:56:48:e2:2c:b4:d3:bc:f2:41:7f:ef:ea:b3:db:45:a6:
5b:de:65:80:ce:53:cc:23:8a:aa:5b:1f:88:54:00:b1:e7:9f:
cd:31:33:21:32:b0:84:40:4d:10:cb:63:2c:8d:30:cd:4b:a8:
a3:0e:e1:d9:07:3d:88:3e:5e:82:5e:cc:30:29:d8:27:38:5b:
3a:56:54:d4:6d:87:d8:5b:25:4a:6f:47:bb:0b:73:05:6b:6d:
3b:ae:24:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org