Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3dc72e-0861-4316-a4be-a295813f1f82/1/8O8n2pstwcYikMJ6iz3u2kG7Ths.roa
File: 8O8n2pstwcYikMJ6iz3u2kG7Ths.roa (raw, json)
Hash identifier: KBQlVXcPAVe/Cs2ENqO3sVnuXaBc2mKcSCZOlFSWxZQ=
Subject key identifier: F0:EF:27:DA:9B:2D:C1:C6:22:90:C2:7A:8B:3D:EE:DA:41:BB:4E:1B
Certificate issuer: /CN=0c1e6d5e72daf4108cf60bd47e936df1a1e97226
Certificate serial: B421D2
Authority key identifier: 0C:1E:6D:5E:72:DA:F4:10:8C:F6:0B:D4:7E:93:6D:F1:A1:E9:72:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DB5tXnLa9BCM9gvUfpNt8aHpciY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/3dc72e-0861-4316-a4be-a295813f1f82/1/8O8n2pstwcYikMJ6iz3u2kG7Ths.roa
Signing time: Sat 01 Jan 2022 11:01:37 +0000
ROA not before: Sat 01 Jan 2022 11:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 185.247.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11805138 (0xb421d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c1e6d5e72daf4108cf60bd47e936df1a1e97226
Validity
Not Before: Jan 1 11:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0ef27da9b2dc1c62290c27a8b3deeda41bb4e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ab:26:a8:98:a3:ba:2e:e6:44:ee:30:c0:fb:
59:b9:f5:9e:ac:09:0f:af:49:89:3b:ec:76:41:2c:
96:41:be:8f:62:c3:8a:5d:b1:26:8f:f5:ae:4b:0d:
2e:90:9b:67:29:57:df:71:7a:2b:b0:3f:a0:33:db:
80:47:23:49:33:71:17:ef:f2:fe:7b:a0:68:2c:69:
38:5e:f9:ed:09:5f:0a:bb:00:e9:72:4c:b2:25:8d:
85:ce:83:ed:32:63:a2:fc:fb:3a:17:d9:1c:6b:99:
4e:22:1a:be:e5:c4:e9:7b:dd:0c:df:84:5e:5c:57:
b4:a1:98:8e:5c:2d:4b:4d:c5:99:89:c4:6f:b0:b5:
7d:20:ae:cb:f7:c2:ae:f7:e6:39:8f:9a:98:c3:69:
2b:f1:ac:f0:11:4f:2e:1a:3d:59:30:7b:e6:5e:3f:
42:cd:6f:9c:72:00:5d:c5:79:41:b7:f0:ea:ce:b3:
ab:61:62:78:29:ef:41:47:d8:d2:dd:36:0b:8c:6e:
8c:ac:be:31:2f:35:a4:b4:b8:7f:07:a3:92:40:2c:
ce:15:5f:6b:5e:f9:58:16:e3:05:af:10:2a:7b:3f:
4f:41:fa:26:9f:75:45:a8:1f:ef:42:35:71:6d:02:
a9:76:7a:ef:40:1e:57:42:50:21:98:b4:52:8d:d8:
5b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:EF:27:DA:9B:2D:C1:C6:22:90:C2:7A:8B:3D:EE:DA:41:BB:4E:1B
X509v3 Authority Key Identifier:
keyid:0C:1E:6D:5E:72:DA:F4:10:8C:F6:0B:D4:7E:93:6D:F1:A1:E9:72:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DB5tXnLa9BCM9gvUfpNt8aHpciY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3dc72e-0861-4316-a4be-a295813f1f82/1/8O8n2pstwcYikMJ6iz3u2kG7Ths.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3dc72e-0861-4316-a4be-a295813f1f82/1/DB5tXnLa9BCM9gvUfpNt8aHpciY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.243.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:a1:2c:c9:ce:6b:0c:65:96:10:2b:b1:0a:05:75:9b:40:e7:
7a:79:6c:b0:75:4f:da:d2:9b:ca:f3:fb:2c:70:27:48:e5:1c:
e8:37:9b:c2:d4:9c:e8:7d:5e:c4:fc:e4:85:1c:6d:10:a1:8f:
2d:6b:f0:13:6f:1f:7f:d4:eb:87:6b:95:83:ce:11:92:f3:1c:
06:e5:44:19:28:fb:fd:aa:b9:d3:ae:7e:9e:1b:63:03:50:1f:
83:dc:16:0f:18:90:44:4c:c6:15:51:cc:1b:73:70:37:36:7a:
2d:8e:62:98:89:fd:c1:51:cc:c2:8c:97:23:8d:10:d0:4d:de:
90:63:bd:4c:af:5b:0f:77:6e:56:59:96:55:42:f0:d6:c8:5d:
10:fa:8f:cf:73:62:c3:a7:63:48:e4:2d:58:bb:2c:72:a6:e8:
fe:c2:b3:00:81:75:07:de:fd:44:18:ed:96:cd:87:aa:b0:db:
b9:bd:34:a0:6e:d1:bf:84:19:91:c8:d9:47:8c:5c:21:fd:07:
07:13:27:03:96:4d:f8:be:34:20:b3:a5:32:d3:4b:be:73:dd:
fb:cf:34:c6:fd:be:3f:c1:35:b2:8d:37:c7:22:72:bf:ec:c3:
18:1d:40:24:9b:86:d8:0d:26:79:ba:25:f1:7c:0b:de:42:ba:
68:14:e5:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:03 2023 by rpki-client on console-fra.rpki-client.org