Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/8VjpsGEbzO29eN42GjCbSlhvYr8.roa
File: 8VjpsGEbzO29eN42GjCbSlhvYr8.roa (raw, json)
Hash identifier: JEqeQFT1mIXDeYpZuLM6XR6XmyYKyNSfaC5tPd0zq/8=
Subject key identifier: F1:58:E9:B0:61:1B:CC:ED:BD:78:DE:36:1A:30:9B:4A:58:6F:62:BF
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 01841A2C2A4AE47648F0AD44352B3A613614
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/8VjpsGEbzO29eN42GjCbSlhvYr8.roa
Signing time: Thu 27 Oct 2022 16:00:12 +0000
ROA not before: Thu 27 Oct 2022 16:00:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 84.239.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1a:2c:2a:4a:e4:76:48:f0:ad:44:35:2b:3a:61:36:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Oct 27 16:00:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f158e9b0611bccedbd78de361a309b4a586f62bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ae:77:b7:3f:52:2c:f1:01:e9:fa:a7:38:9a:
fe:08:64:90:59:a6:8e:6a:31:02:1f:20:51:fd:49:
e8:b7:8c:ba:82:4a:7c:d3:f4:e0:ba:d3:12:57:18:
4a:1e:15:d3:9e:bb:b6:9e:b0:3d:47:1d:42:2e:43:
9c:b7:95:05:90:b1:0d:1d:85:09:57:82:60:fb:cc:
20:e3:d7:44:5b:50:2c:3a:5e:c2:d9:08:f8:1d:f2:
4f:55:81:af:0c:e9:f7:61:41:bb:d9:23:9c:8f:7a:
a0:c2:f7:a8:d9:59:bb:d8:b8:69:16:03:ce:ce:94:
97:00:6b:b3:3c:a4:36:c6:3d:57:29:cd:c3:e1:40:
6e:17:e2:da:f7:fe:b7:c6:ee:84:35:aa:ff:aa:cb:
07:d6:9c:f7:9e:ef:67:cb:90:54:f0:82:61:2e:14:
1c:ea:3f:bc:d6:50:64:a0:7d:40:08:66:25:db:45:
e0:5c:3e:cf:0a:98:25:2e:89:36:31:71:de:9e:21:
21:f1:21:7c:a8:b0:1d:79:ab:c7:bc:d5:95:b8:c2:
29:78:7e:55:e3:38:03:d4:c0:f0:df:17:b5:76:3b:
b7:71:dd:a5:17:3d:7f:a4:20:39:c7:fe:2f:bf:e2:
60:81:da:d0:19:86:ad:d1:0b:f6:a8:ee:87:32:be:
ce:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:58:E9:B0:61:1B:CC:ED:BD:78:DE:36:1A:30:9B:4A:58:6F:62:BF
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/8VjpsGEbzO29eN42GjCbSlhvYr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.18.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:00:e4:e9:7c:09:de:8b:8f:48:e4:db:6a:ba:8b:56:df:ff:
96:bd:2a:60:13:4d:49:57:20:8b:65:2b:c2:a6:81:69:a6:d5:
1b:ab:37:36:f9:9f:63:41:03:75:30:57:9c:5b:c1:25:93:f5:
6b:ce:99:9b:dc:36:0d:b1:4e:0a:28:36:a0:4d:a3:7c:37:ef:
66:55:2c:b5:d8:34:ff:cc:77:4b:5c:44:24:c7:f1:43:a9:d9:
cf:63:99:b2:c0:62:0a:d6:2c:2a:7f:64:10:2c:bf:46:d2:9b:
81:0c:d9:12:e6:0c:9d:3c:b5:c9:83:84:08:bd:b5:6f:13:96:
01:84:9c:a8:82:62:0b:cb:be:f1:1d:99:3f:9e:ae:b9:39:35:
8e:93:0d:5b:d6:ae:81:22:42:67:56:a3:72:5e:59:8e:17:d6:
9d:19:84:b2:9c:76:a5:ac:14:85:ed:8c:2f:c2:ab:4e:9f:1a:
6d:fa:ce:73:2f:f6:b4:1d:12:cd:0d:68:90:5b:fe:8e:1a:09:
37:ee:5a:e6:cd:04:63:5d:1f:d8:f5:77:30:d0:69:81:0d:c8:
26:5d:d9:01:cf:ab:e9:a5:97:17:fb:ed:2c:8b:93:78:04:7a:
35:23:75:45:7a:3e:83:ad:27:bd:20:90:e3:ba:6d:08:17:7c:
ec:fc:73:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:54 2024 by rpki-client on console-ams.rpki-client.org