Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/n8ZYCw-s4L3ZH2M9UstDgfRibyo.roa
File: n8ZYCw-s4L3ZH2M9UstDgfRibyo.roa (raw, json)
Hash identifier: 5MGcrMVLn8vp2O6JV76SCVDCbofWLpAlSefBrdR2g2Q=
Subject key identifier: 9F:C6:58:0B:0F:AC:E0:BD:D9:1F:63:3D:52:CB:43:81:F4:62:6F:2A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 085371AE
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/n8ZYCw-s4L3ZH2M9UstDgfRibyo.roa
Signing time: Fri 17 Jun 2022 18:17:36 +0000
ROA not before: Fri 17 Jun 2022 18:17:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23470
IP address blocks: 45.8.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139686318 (0x85371ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 17 18:17:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fc6580b0face0bdd91f633d52cb4381f4626f2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d6:a5:ec:8d:51:5e:e8:b7:b4:7f:63:31:de:
c0:c3:88:f5:8e:e2:df:2e:c9:9c:af:7e:df:0a:58:
13:6d:eb:7e:7c:45:b2:96:94:73:49:67:8b:53:e8:
0e:41:28:0c:28:40:c0:16:a6:28:db:11:9c:99:ef:
73:9e:63:1b:27:7a:d0:9c:e5:2a:16:ed:17:6a:af:
ce:99:2d:fc:ad:cb:15:55:65:51:57:8a:44:5b:44:
4a:1d:ba:44:4c:da:d7:28:55:e5:af:44:fc:60:34:
96:df:1a:a4:5a:bf:cb:67:f9:68:ee:b4:04:43:27:
c6:6f:3e:a1:c9:48:9c:0f:f3:60:ba:b7:dc:86:92:
22:11:c7:3b:43:63:b4:5f:5e:50:b1:54:b2:d4:43:
a1:21:02:d8:9e:4d:26:4f:cf:6a:94:69:a9:60:cb:
86:a1:6f:d6:d9:a3:26:68:cc:a4:a0:44:23:ff:1f:
fe:f6:1f:03:2d:6f:cc:36:52:28:fe:70:57:02:0c:
8d:be:66:01:24:06:4e:d1:4a:ea:0c:56:a9:5c:66:
b5:c0:4e:f2:5a:bf:0a:e5:51:6e:b7:3d:08:04:f7:
5e:1f:d2:18:4a:76:21:13:7a:09:77:3f:71:0f:73:
a7:c8:75:98:14:64:65:bb:85:66:17:d9:81:49:2b:
39:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:C6:58:0B:0F:AC:E0:BD:D9:1F:63:3D:52:CB:43:81:F4:62:6F:2A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/n8ZYCw-s4L3ZH2M9UstDgfRibyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.22.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:aa:8b:7d:06:a5:18:f2:b1:5a:af:28:f3:1b:bd:c0:ae:85:
e3:bb:50:c0:1d:83:4c:49:a9:ab:8f:c4:d6:43:a2:14:4b:34:
6f:af:f4:42:18:1b:e5:04:af:03:26:0a:49:77:10:a6:ff:38:
f9:e9:66:65:fe:0e:70:55:01:4e:fe:b8:09:79:b8:53:13:c9:
7c:1d:5d:83:b7:95:c6:a4:27:f0:bf:03:60:7a:54:ac:93:e9:
c8:46:12:77:cb:b3:96:2b:f8:10:a8:c2:71:5d:b7:2e:b0:a8:
03:7d:69:b3:79:e8:87:16:4f:3e:4c:88:f2:a7:7e:59:3d:3f:
d5:51:73:c1:6a:25:f0:3e:77:3a:40:d8:8e:7e:5f:d1:4a:de:
e7:f8:8d:f5:a3:94:2b:88:6b:de:e6:9e:1c:61:7e:c7:bb:77:
56:52:8e:94:7c:81:af:fb:3b:83:d5:10:cc:bf:f8:cd:67:88:
d0:94:71:e1:4f:f5:3f:b9:e9:0b:a1:e1:8e:b6:5f:7d:04:d9:
e8:40:77:3b:26:94:c9:3f:21:6a:66:8a:96:37:ca:41:87:d7:
40:86:61:73:96:8b:1a:fa:2f:20:5b:da:3f:a6:32:1a:28:2f:
08:f8:42:6f:cf:11:c0:74:cd:f5:c9:36:3d:27:33:fe:03:fd:
bf:08:1d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-ams.rpki-client.org