Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/8WKsEhppzrqtIL8pgb1iZkSBgrA.roa
File: 8WKsEhppzrqtIL8pgb1iZkSBgrA.roa (raw, json)
Hash identifier: pjfoPnuJvYeOEUBMpxcpfTIsaoTV8vMh3BxlYRBLxis=
Subject key identifier: F1:62:AC:12:1A:69:CE:BA:AD:20:BF:29:81:BD:62:66:44:81:82:B0
Certificate issuer: /CN=29db7ca4eee1e453d26fab99c8201adf894612be
Certificate serial: 0383BF75
Authority key identifier: 29:DB:7C:A4:EE:E1:E4:53:D2:6F:AB:99:C8:20:1A:DF:89:46:12:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kdt8pO7h5FPSb6uZyCAa34lGEr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/8WKsEhppzrqtIL8pgb1iZkSBgrA.roa
Signing time: Sat 01 Jan 2022 02:00:43 +0000
ROA not before: Sat 01 Jan 2022 02:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203
IP address blocks: 37.123.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58965877 (0x383bf75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29db7ca4eee1e453d26fab99c8201adf894612be
Validity
Not Before: Jan 1 02:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f162ac121a69cebaad20bf2981bd6266448182b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:74:82:7b:28:6c:75:1e:03:db:d4:95:b2:ec:
ed:5c:6d:4d:92:ec:71:83:87:d1:26:df:d3:f5:8b:
fe:b8:83:44:56:00:64:08:c6:03:93:22:ad:7c:82:
fd:2a:b4:81:2d:9e:67:be:66:91:f3:92:a4:de:c5:
7d:9b:5f:1f:72:57:0b:f8:06:a8:62:73:77:a7:86:
f4:2b:34:48:54:7e:c7:28:77:77:8a:5a:15:b6:0c:
4f:dc:c0:f2:67:92:ad:9e:a0:dc:c5:51:0a:31:6b:
c8:18:ce:ee:19:92:60:a3:ec:89:87:23:a8:bf:60:
52:d9:c9:89:89:24:0c:d4:df:1a:40:9d:1d:31:8c:
af:66:6e:41:52:23:22:e7:3b:71:c7:18:90:37:09:
16:bf:b4:90:f4:3b:ef:26:4c:6d:55:66:f4:49:5c:
92:3a:9d:7d:60:ce:b0:96:ac:3d:62:22:4b:77:98:
3e:67:bb:a5:21:02:dd:3d:fa:bc:43:6e:52:06:2f:
a9:90:b5:07:74:63:05:62:01:1a:ea:d9:7d:39:98:
a5:12:5c:3e:59:88:25:25:b9:fd:8d:83:71:28:b7:
81:61:9d:03:a9:86:ec:e6:bb:50:2e:a4:34:91:1e:
15:78:9f:03:9d:dc:26:f8:74:c9:04:eb:6f:4b:38:
8c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:62:AC:12:1A:69:CE:BA:AD:20:BF:29:81:BD:62:66:44:81:82:B0
X509v3 Authority Key Identifier:
keyid:29:DB:7C:A4:EE:E1:E4:53:D2:6F:AB:99:C8:20:1A:DF:89:46:12:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kdt8pO7h5FPSb6uZyCAa34lGEr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/8WKsEhppzrqtIL8pgb1iZkSBgrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/7f290b-81c7-42b7-947f-d33fa1605ae1/1/Kdt8pO7h5FPSb6uZyCAa34lGEr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.123.254.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:72:62:b8:a5:22:95:d5:c8:04:47:34:f2:5a:e9:7f:cc:1f:
8b:a5:00:6d:91:15:8c:ea:26:d1:24:84:03:72:9f:d5:b3:8d:
39:65:22:53:16:77:c8:9e:3f:70:ee:01:93:77:ab:70:96:e5:
f8:c8:8e:a9:ea:f1:e0:42:ae:1c:bb:db:fb:c9:8b:8a:fa:48:
99:24:38:3f:13:69:e0:0b:00:57:85:77:26:f4:03:03:80:74:
2a:79:bd:4d:fb:ba:a8:97:e4:f6:16:14:ce:e4:1a:46:8b:7d:
16:3f:69:c6:e3:13:12:13:7d:89:93:a0:9d:64:72:4f:4c:18:
b6:d8:4d:cb:49:53:bd:a2:25:35:62:5c:cf:d8:19:04:6f:f0:
b7:28:46:da:e8:d8:9e:4d:9c:42:51:78:c9:00:42:4c:ae:58:
38:9e:99:bc:2d:b4:6c:eb:14:81:22:72:a4:29:e2:cb:f7:66:
ff:49:db:d1:4c:a7:2d:5c:7b:72:96:3c:3d:d9:30:0a:93:23:
9b:e9:b3:3f:1c:b3:9b:ce:6e:15:d3:2a:03:9a:57:cd:5f:7b:
5d:85:76:c6:76:46:fd:55:c8:d7:c3:30:fc:5b:73:5a:bf:b8:
a5:65:20:2a:24:d2:fa:f1:75:94:5d:f1:9a:40:2b:f7:d6:f1:
c1:2e:4f:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:19 2024 by rpki-client on console-fra.rpki-client.org