Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/jw8yyiIeDPc-Rz8DUM-3mJQQH6c.roa
File: jw8yyiIeDPc-Rz8DUM-3mJQQH6c.roa (raw, json)
Hash identifier: UmIX7ch3qPX3wkGhrXNXSD6rAFbZ5RfEVk/II0S0Yso=
Subject key identifier: 8F:0F:32:CA:22:1E:0C:F7:3E:47:3F:03:50:CF:B7:98:94:10:1F:A7
Certificate issuer: /CN=d9a988916d51406f9a269f30a02d0086b57f4d5a
Certificate serial: 039F6228
Authority key identifier: D9:A9:88:91:6D:51:40:6F:9A:26:9F:30:A0:2D:00:86:B5:7F:4D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2amIkW1RQG-aJp8woC0AhrV_TVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/jw8yyiIeDPc-Rz8DUM-3mJQQH6c.roa
Signing time: Sat 01 Jan 2022 04:52:34 +0000
ROA not before: Sat 01 Jan 2022 04:52:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56324
IP address blocks: 185.6.28.0/23 maxlen: 23
185.6.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60777000 (0x39f6228)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9a988916d51406f9a269f30a02d0086b57f4d5a
Validity
Not Before: Jan 1 04:52:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f0f32ca221e0cf73e473f0350cfb79894101fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:07:0a:75:3f:1c:6c:07:f4:a6:1d:de:ba:65:
27:25:08:48:dd:ac:bb:00:d1:63:0b:e1:1c:32:76:
55:ee:aa:23:9e:96:ac:80:15:70:19:ca:a0:21:56:
a0:00:07:6b:96:9b:c6:c3:af:e7:34:bf:53:9b:f8:
63:cf:82:30:2a:f1:cf:03:e5:b0:e3:74:06:d6:e2:
1a:53:f6:1e:d9:43:6e:7a:e4:e1:09:03:b9:db:6f:
a2:06:c5:be:04:e7:94:1b:e9:87:ba:0c:76:5f:a6:
1a:46:50:f2:d1:2a:3e:89:b5:d2:6b:cd:7a:1f:be:
ef:e2:eb:7a:28:00:5c:e4:e6:11:cb:d8:91:99:f6:
d1:6c:21:87:bb:51:b2:42:4f:bd:93:af:17:74:b5:
39:12:73:1a:05:a3:4d:c4:f6:1e:f1:3c:b4:de:4a:
52:0a:be:bc:75:7f:40:44:17:6a:cb:e9:7b:e2:0b:
14:3d:de:7b:ab:49:41:91:a5:9f:94:2c:a6:45:84:
fb:96:17:6e:1f:43:5f:a0:c1:3b:d8:bf:52:aa:6a:
10:07:3d:c4:01:75:5e:f1:cd:55:e8:46:04:89:28:
89:f1:6e:e6:67:ba:ab:64:8f:20:7d:b9:d5:96:c2:
73:5b:b3:20:12:4b:13:4f:46:07:ee:fe:f8:fd:3d:
ba:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0F:32:CA:22:1E:0C:F7:3E:47:3F:03:50:CF:B7:98:94:10:1F:A7
X509v3 Authority Key Identifier:
keyid:D9:A9:88:91:6D:51:40:6F:9A:26:9F:30:A0:2D:00:86:B5:7F:4D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2amIkW1RQG-aJp8woC0AhrV_TVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/jw8yyiIeDPc-Rz8DUM-3mJQQH6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/962b3f-fc26-4549-ae02-4d049a1eaf2f/1/2amIkW1RQG-aJp8woC0AhrV_TVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.6.28.0-185.6.30.255
Signature Algorithm: sha256WithRSAEncryption
8f:03:fb:42:cd:0f:4f:dd:fc:8a:3a:db:15:d2:5b:54:9d:2d:
86:eb:35:b1:9d:f5:24:e1:09:1a:47:a8:75:50:90:ea:83:89:
90:c5:52:ce:b1:2f:dd:81:c4:47:4f:7f:90:f5:bc:a6:29:7b:
d8:e3:63:e6:03:ca:08:78:ae:e2:8f:f6:06:0d:0b:01:1e:6a:
fa:57:0d:24:76:4d:08:9a:b3:f3:c8:9e:7b:83:ea:16:ec:ed:
48:d7:0e:52:c1:22:ec:84:88:11:b3:c6:81:eb:95:4d:08:71:
b9:a4:7a:94:04:ee:ab:ac:6c:46:c7:a9:1e:7d:94:3a:aa:f7:
a1:d5:93:d0:07:4a:20:7b:fc:47:87:1a:4b:4d:36:81:49:55:
36:de:d0:ce:f1:b6:25:f6:d3:e0:71:a6:d1:fc:8f:d1:9a:b3:
3d:bf:99:80:b5:10:69:f0:ba:61:72:8a:9d:13:a1:32:49:14:
a3:03:71:79:c9:24:49:4e:b5:c9:ce:7f:ab:81:a6:37:aa:eb:
67:06:ad:4a:ca:9a:f2:5e:14:b5:73:07:bb:e3:22:ca:78:d5:
9c:43:5f:59:06:4e:55:d1:33:ff:44:40:3d:bd:6c:f4:57:af:
ef:58:e5:3b:60:96:4b:32:4d:e6:d1:bf:03:31:5d:39:2a:ff:
05:9c:43:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:09 2024 by rpki-client on console-ams.rpki-client.org