Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/t8X0_npMdXr7UGxkSve3PmK7BVg.roa
File: t8X0_npMdXr7UGxkSve3PmK7BVg.roa (raw, json)
Hash identifier: wK3EYoFfzOPmPunLfr76rDN3sA06c5zF9IkDDUNHybM=
Subject key identifier: B7:C5:F4:FE:7A:4C:75:7A:FB:50:6C:64:4A:F7:B7:3E:62:BB:05:58
Certificate issuer: /CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Certificate serial: 01061FF0
Authority key identifier: 85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/t8X0_npMdXr7UGxkSve3PmK7BVg.roa
Signing time: Sat 01 Jan 2022 01:01:29 +0000
ROA not before: Sat 01 Jan 2022 01:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212582
IP address blocks: 185.212.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17178608 (0x1061ff0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Validity
Not Before: Jan 1 01:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7c5f4fe7a4c757afb506c644af7b73e62bb0558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3c:cb:64:fb:22:91:30:cd:79:bf:3a:d2:65:
0d:70:ba:cd:27:6c:05:16:06:91:df:b1:01:62:c1:
29:5c:75:fe:69:de:5f:f1:b5:c3:47:c5:87:79:17:
94:78:3e:f9:a7:b7:7b:14:1e:47:22:ad:f8:ea:1a:
12:73:68:88:fc:d6:4b:e6:2d:98:6e:4d:da:71:56:
4a:80:ed:8f:16:8f:fc:5a:35:0b:75:30:d3:df:f1:
2a:b4:c7:36:44:ac:8c:3c:f8:ea:d2:d3:1d:62:b2:
27:c2:e3:74:8a:9b:47:b8:c8:a9:02:90:3c:da:e1:
a9:8f:1a:d8:64:06:57:73:33:49:5d:6a:eb:5b:28:
8f:f6:a4:da:0b:6e:07:b5:26:56:90:f3:a8:9c:56:
29:12:f4:68:2a:53:02:93:b6:a5:f6:ab:0a:84:f8:
5d:5d:47:27:c7:a8:6b:e4:03:8a:21:55:82:3c:99:
31:b5:52:5d:f4:2f:c1:a5:07:62:a8:3c:48:44:e9:
09:4d:21:e5:2a:cc:95:8e:4e:78:30:2c:7e:6a:99:
0f:0b:14:e7:56:76:a6:86:6e:ad:83:72:ed:2d:00:
98:e4:0a:81:ea:ac:38:75:33:99:b5:c1:71:da:2c:
43:3e:3d:38:b9:dd:9a:37:7e:fe:cf:6b:60:f6:c8:
81:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C5:F4:FE:7A:4C:75:7A:FB:50:6C:64:4A:F7:B7:3E:62:BB:05:58
X509v3 Authority Key Identifier:
keyid:85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/t8X0_npMdXr7UGxkSve3PmK7BVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/hcP2qehVDAkLw7JX9yuPZbaan2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.119.0/24
Signature Algorithm: sha256WithRSAEncryption
45:08:47:90:1d:f6:63:19:12:3b:3e:bc:40:80:33:98:1d:64:
b5:ad:2e:a6:23:73:70:f0:96:b8:9e:bf:08:9a:d8:75:12:5a:
8d:02:0c:f5:10:dd:8e:09:c1:02:c0:ed:cf:84:eb:6f:05:f3:
c5:21:5c:62:7d:46:5e:bb:6d:7f:de:96:30:51:a0:8d:93:e6:
a6:92:e9:5f:9d:6d:ac:5b:d2:7f:c7:bb:0b:d0:5c:c0:83:b6:
12:9c:4c:26:3b:e7:15:b3:7d:2a:81:d6:e6:7e:8d:f1:3e:32:
50:38:25:80:98:64:6b:de:7a:6a:65:ab:28:74:49:23:a6:84:
ef:fa:1e:70:59:f8:ea:07:4c:0c:b0:65:3a:5c:ac:c5:93:ec:
2d:14:27:de:b1:a1:dd:41:86:a1:3f:f4:d3:f2:f5:d7:98:20:
fc:c7:cc:59:b6:d4:a3:24:a9:0c:e9:3e:57:20:6d:3b:87:87:
70:d7:9a:88:fc:c9:41:ad:34:bc:fa:da:c4:34:63:1e:fb:45:
13:cd:fb:62:59:31:a8:34:ae:f8:69:92:29:f0:59:13:67:ec:
78:c0:ca:fd:80:5d:4f:8d:26:49:10:4a:84:fd:98:09:b9:eb:
1b:9e:bd:81:e7:95:06:1a:f9:04:e4:e4:a3:be:cf:19:0e:a0:
3e:aa:f6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:42 2023 by rpki-client on console-ams.rpki-client.org