Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/4e66a2-a372-48b4-90b4-82a3112f49c7/1/S8tm4zlXN5t-TmrXYINly9eXTmQ.roa
File: S8tm4zlXN5t-TmrXYINly9eXTmQ.roa (raw, json)
Hash identifier: +C/oKwYUNzQIgPFy0H5ZYAJVNnDusr1Gux9bVg+0AUQ=
Subject key identifier: 4B:CB:66:E3:39:57:37:9B:7E:4E:6A:D7:60:83:65:CB:D7:97:4E:64
Certificate issuer: /CN=93f25b72758da58f0f3ec0f0727353ebd2b44774
Certificate serial: 04932077
Authority key identifier: 93:F2:5B:72:75:8D:A5:8F:0F:3E:C0:F0:72:73:53:EB:D2:B4:47:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k_JbcnWNpY8PPsDwcnNT69K0R3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/4e66a2-a372-48b4-90b4-82a3112f49c7/1/S8tm4zlXN5t-TmrXYINly9eXTmQ.roa
Signing time: Sat 01 Jan 2022 12:03:20 +0000
ROA not before: Sat 01 Jan 2022 12:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42487
IP address blocks: 185.230.8.0/22 maxlen: 22
2a0d:ee00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76750967 (0x4932077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93f25b72758da58f0f3ec0f0727353ebd2b44774
Validity
Not Before: Jan 1 12:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bcb66e33957379b7e4e6ad7608365cbd7974e64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:05:9b:4b:7a:78:7d:28:d9:29:00:d1:13:57:
a4:9d:3e:5d:56:77:7a:b1:3f:83:81:12:2f:61:27:
b5:50:10:4f:6e:5b:4a:a7:ca:62:c2:32:71:eb:6c:
f8:85:1f:34:ea:61:db:28:a1:48:c7:2e:76:3f:59:
c0:4f:ba:5b:0e:48:e0:bb:c8:d9:fa:5e:34:05:8e:
18:ab:b9:d8:1d:46:bf:53:1a:43:bb:27:69:97:a0:
08:f2:dc:91:5c:b6:8e:d8:fa:01:98:56:ba:92:a2:
c8:21:c9:d2:5c:59:17:87:56:69:43:7a:1f:0b:18:
40:cb:d5:85:5a:91:90:43:24:ea:46:47:50:4c:ca:
61:f2:0d:9c:da:73:f4:96:19:33:ea:bd:d2:e3:fd:
2e:c2:69:30:29:b0:f6:52:53:a5:64:be:6c:e8:cb:
cf:ec:e7:bf:dd:51:4a:ae:df:c3:97:77:0b:c1:eb:
68:b0:fd:90:28:6a:08:9c:6e:b7:3a:fd:e8:a0:bf:
0d:f6:a1:6e:e8:31:7c:2d:92:d9:8b:6f:ad:6f:53:
b9:ea:e1:e7:f2:3a:99:10:e2:aa:45:c3:9b:94:74:
f9:16:31:a1:a1:1e:8c:d5:ac:57:f9:bb:27:b3:c8:
53:ff:50:4a:c0:18:9b:14:75:7c:af:a6:80:13:60:
a5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:CB:66:E3:39:57:37:9B:7E:4E:6A:D7:60:83:65:CB:D7:97:4E:64
X509v3 Authority Key Identifier:
keyid:93:F2:5B:72:75:8D:A5:8F:0F:3E:C0:F0:72:73:53:EB:D2:B4:47:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k_JbcnWNpY8PPsDwcnNT69K0R3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/4e66a2-a372-48b4-90b4-82a3112f49c7/1/S8tm4zlXN5t-TmrXYINly9eXTmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/4e66a2-a372-48b4-90b4-82a3112f49c7/1/k_JbcnWNpY8PPsDwcnNT69K0R3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.8.0/22
IPv6:
2a0d:ee00::/32
Signature Algorithm: sha256WithRSAEncryption
70:00:01:d9:3d:ee:da:d2:f7:da:24:83:0e:79:dc:48:ab:5f:
e7:df:ae:34:85:e7:b3:05:b6:c1:c7:c4:12:97:c2:42:8c:3d:
6f:a9:d5:fc:0d:91:78:eb:79:8e:9f:d3:84:59:2f:53:1e:e9:
58:a1:1b:1d:b6:14:50:da:a3:2d:3e:65:e0:b0:ce:32:c8:49:
a0:2a:87:2f:59:42:37:65:69:f9:52:59:c9:88:df:cd:97:98:
cd:3f:57:27:bf:f5:3f:d7:4c:60:d5:58:93:7c:da:9e:0d:ef:
20:6b:72:e8:4e:19:1d:78:f5:17:28:ae:d1:16:70:41:de:0a:
21:dc:19:05:4e:18:ae:fe:f0:61:b6:8e:ca:ca:be:51:e3:42:
9a:aa:27:85:47:1b:08:cf:0e:ee:ec:af:c7:ce:0a:fa:ef:0e:
88:08:52:5f:f1:8e:fe:9a:f2:88:58:94:df:77:bd:ff:f8:5f:
5d:6a:34:c0:6b:18:60:a4:e5:3b:ae:f7:bf:37:1b:63:f5:3a:
5a:4c:06:cb:02:5b:49:fd:dc:53:37:86:a5:8f:43:22:81:fa:
6f:8a:4f:60:3b:0b:21:bc:0a:25:4d:e6:9c:d6:e7:74:25:0e:
5d:51:84:5c:78:07:0f:3c:e0:0b:06:06:e8:43:99:07:1c:9e:
34:37:cc:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:06 2024 by rpki-client on console-fra.rpki-client.org