Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/gN8RJsFoq8CHICm_kLALRobzp9c.roa
File: gN8RJsFoq8CHICm_kLALRobzp9c.roa (raw, json)
Hash identifier: tvfmCXaCaWPDelk3HSk2jIRARadDl9rTda+081YysLo=
Subject key identifier: 80:DF:11:26:C1:68:AB:C0:87:20:29:BF:90:B0:0B:46:86:F3:A7:D7
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 0183935ED5C1541BAC468A1AF391C09D45BD
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/gN8RJsFoq8CHICm_kLALRobzp9c.roa
Signing time: Sat 01 Oct 2022 11:46:49 +0000
ROA not before: Sat 01 Oct 2022 11:46:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212905
IP address blocks: 185.86.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:93:5e:d5:c1:54:1b:ac:46:8a:1a:f3:91:c0:9d:45:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Oct 1 11:46:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80df1126c168abc0872029bf90b00b4686f3a7d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:08:3c:f4:34:e6:93:5a:06:4e:bf:35:fb:1b:
b1:c8:d7:ad:6a:25:49:ed:bd:e7:20:62:91:76:26:
30:b5:9d:ee:38:41:03:54:76:cc:e5:93:7e:75:de:
83:48:d9:f0:9c:b6:e4:60:3a:a4:d1:4e:8d:a2:39:
34:4e:1a:d2:4f:5d:0d:db:34:0c:33:b8:ca:43:d7:
2a:0d:00:a1:e5:aa:41:ae:97:25:94:b5:ab:e1:db:
9f:dd:ab:2d:b6:65:d7:83:a1:b9:1d:5b:4c:01:a3:
53:8b:c8:57:ce:a7:6d:ba:24:66:51:b2:e1:1c:da:
75:56:79:b1:2d:84:26:df:54:0d:97:be:f8:ff:cb:
ec:e4:7b:52:bf:4e:9f:a5:59:d8:5c:d8:d0:7e:93:
f7:a7:a3:07:92:96:d3:22:88:3d:a0:61:cf:8c:ef:
d0:87:b2:11:40:b1:c4:d6:9e:f5:da:1b:5a:9d:00:
0c:60:e2:ae:f9:c6:30:56:00:15:35:87:26:f1:7b:
f2:86:42:f6:52:c6:9e:a0:ec:b9:79:59:ba:74:8c:
bb:c2:25:bb:24:4c:5c:e5:da:db:65:40:28:72:99:
9f:5a:04:92:1d:0d:58:bb:4a:ec:69:26:57:7b:8f:
f2:e3:dd:5b:03:15:e2:83:a1:46:27:40:9c:fd:a5:
10:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DF:11:26:C1:68:AB:C0:87:20:29:BF:90:B0:0B:46:86:F3:A7:D7
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/gN8RJsFoq8CHICm_kLALRobzp9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.81.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:b9:ee:b5:8f:18:dc:6a:6c:47:29:26:66:59:55:a6:4d:47:
8c:6c:46:50:18:01:fc:ff:75:87:c4:37:73:18:8d:d5:46:4d:
2b:05:6d:8c:4f:1a:bd:64:93:61:90:92:4f:e5:d8:e5:9f:08:
19:8a:30:f7:5b:40:20:7a:f3:3c:87:e3:01:35:1e:2a:75:8a:
3c:9c:5d:9d:44:92:ac:9e:58:fc:ff:5f:27:20:4d:63:6b:0f:
a8:a3:ac:47:b1:f5:72:12:89:af:a1:70:a0:f2:a1:d4:46:88:
61:a4:f7:25:96:e5:8f:e6:29:ad:f9:66:b4:77:e3:72:8a:c1:
d4:fb:f7:97:3b:78:43:a8:e3:8a:dc:0a:d7:cd:d1:72:6c:4f:
00:9c:7d:51:0f:89:c2:17:51:b8:41:ad:b8:3f:31:fe:55:db:
73:29:b9:c8:35:92:12:ca:f6:88:28:56:13:e7:b0:07:44:d5:
01:05:7a:91:d3:51:33:3d:b7:2f:72:3d:6a:b3:8b:7f:90:32:
57:64:4e:c9:a9:59:4f:1a:33:01:9e:50:af:80:b8:6a:68:71:
ea:9f:c7:da:dc:a3:e8:18:fb:7d:41:31:b4:79:67:0b:db:66:
25:8d:96:38:ea:eb:41:9e:94:99:10:65:58:7a:40:69:08:11:
81:68:9e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:52 2024 by rpki-client on console-ams.rpki-client.org