Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/8DcqOnZN-hmd132HcrAv0BjfvuQ.roa
File: 8DcqOnZN-hmd132HcrAv0BjfvuQ.roa (raw, json)
Hash identifier: M7l4BIFFnEizey97lMnFkb9ca1nAPMmvElU0g75I8rs=
Subject key identifier: F0:37:2A:3A:76:4D:FA:19:9D:D7:7D:87:72:B0:2F:D0:18:DF:BE:E4
Certificate issuer: /CN=c7485e29f118c01be86c19e668facfa485de718c
Certificate serial: 01837B76853FAD3C7E1A262043EE6EB8F002
Authority key identifier: C7:48:5E:29:F1:18:C0:1B:E8:6C:19:E6:68:FA:CF:A4:85:DE:71:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0heKfEYwBvobBnmaPrPpIXecYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/8DcqOnZN-hmd132HcrAv0BjfvuQ.roa
Signing time: Mon 26 Sep 2022 20:21:48 +0000
ROA not before: Mon 26 Sep 2022 20:21:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44472
IP address blocks: 86.111.52.0/23 maxlen: 24
2a12:c440::/32 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7b:76:85:3f:ad:3c:7e:1a:26:20:43:ee:6e:b8:f0:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7485e29f118c01be86c19e668facfa485de718c
Validity
Not Before: Sep 26 20:21:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0372a3a764dfa199dd77d8772b02fd018dfbee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e7:89:d1:a4:a9:88:74:43:d3:f6:8a:f0:86:
7b:2b:7b:11:0d:52:ea:d7:49:52:3e:73:b9:95:7f:
77:7a:9c:bd:e6:5f:05:96:c9:91:1a:1a:fd:25:08:
da:93:5d:0c:49:e5:1d:23:dd:0b:06:c2:96:c2:6e:
21:69:c1:d0:48:95:4f:08:48:bf:dd:8c:a1:5c:88:
d3:04:c4:45:69:31:5e:4f:54:eb:66:82:e5:d0:38:
da:0d:21:5d:e3:71:bd:a0:b0:0c:ea:25:48:36:9c:
17:19:1b:8a:93:8a:26:9a:11:d2:5c:6d:e2:50:3f:
37:c3:cd:f4:ee:03:a8:f6:9f:57:3f:f5:2f:b7:1d:
18:a7:a2:75:96:b5:6b:3b:22:4d:85:9c:1a:3e:6b:
f8:ca:67:f4:1f:50:6f:32:af:c6:14:5a:d8:9e:88:
15:fc:6e:1c:1e:e9:f9:7b:fe:4a:27:72:0b:af:89:
ad:56:b8:37:69:f6:63:e1:8b:72:9c:cc:21:16:2c:
66:9f:39:fd:32:60:0e:5d:b1:e3:8d:4c:31:24:eb:
a9:8b:ba:c3:d8:54:2d:b8:ca:7d:3d:38:1f:0d:ce:
91:00:e5:46:2a:69:d5:9f:24:c7:0d:ad:49:35:71:
f8:b5:b8:46:af:6e:47:86:ca:cb:50:ae:29:3c:2f:
b0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:37:2A:3A:76:4D:FA:19:9D:D7:7D:87:72:B0:2F:D0:18:DF:BE:E4
X509v3 Authority Key Identifier:
keyid:C7:48:5E:29:F1:18:C0:1B:E8:6C:19:E6:68:FA:CF:A4:85:DE:71:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0heKfEYwBvobBnmaPrPpIXecYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/8DcqOnZN-hmd132HcrAv0BjfvuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/539171-574b-4451-b6d4-57f9bc6a5c30/1/x0heKfEYwBvobBnmaPrPpIXecYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.111.52.0/23
IPv6:
2a12:c440::/32
Signature Algorithm: sha256WithRSAEncryption
b6:74:38:7c:7a:0a:65:00:54:64:0b:77:be:69:96:97:58:0d:
74:b9:1c:05:40:74:e8:09:84:a9:58:9e:a9:8a:6d:8c:58:8f:
7c:92:b9:ce:29:7e:fa:88:98:d1:e8:96:62:25:92:51:82:3d:
39:ca:39:45:c1:54:3c:54:fc:96:66:eb:46:c0:79:66:1d:fd:
00:94:d0:6e:10:3c:80:a2:f7:11:f1:00:83:e3:78:b2:ab:84:
0a:75:59:91:90:2e:28:93:f2:f8:68:1b:56:31:73:72:f9:d1:
35:1a:ec:14:2a:1c:80:b6:b5:50:4c:bb:93:21:12:0c:ba:27:
42:a0:c9:87:c3:9e:e1:fe:b1:cf:7a:f1:6b:22:86:87:6a:ab:
77:f3:0e:c5:4a:c3:66:b0:8c:8e:9e:9e:67:98:a2:10:ae:b4:
01:0c:85:b3:55:fb:29:cc:b3:e0:63:99:3a:46:2b:80:39:be:
ac:20:ad:db:21:1e:ad:da:86:42:ba:45:d3:66:b5:21:d5:f1:
05:9f:e9:f6:07:1c:5a:dd:12:85:ce:92:a4:e0:ec:88:09:7d:
6f:46:74:c2:20:f6:03:09:3c:a1:55:b1:36:eb:57:77:e6:3a:
b5:94:9e:ca:f1:c4:75:06:d5:01:57:29:51:b7:9c:d9:c4:fc:
96:ea:d7:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:45 2024 by rpki-client on console-fra.rpki-client.org