Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/_PdmVXRftba_6SfE4E4OP2jH0Uw.roa
File: _PdmVXRftba_6SfE4E4OP2jH0Uw.roa (raw, json)
Hash identifier: OtH3PTfpprxg9ux/b1R/lCZ302mEVq2V5bJWtWqQF8g=
Subject key identifier: FC:F7:66:55:74:5F:B5:B6:BF:E9:27:C4:E0:4E:0E:3F:68:C7:D1:4C
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 019005AA
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/_PdmVXRftba_6SfE4E4OP2jH0Uw.roa
Signing time: Sat 01 Jan 2022 05:52:56 +0000
ROA not before: Sat 01 Jan 2022 05:52:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200406
IP address blocks: 185.231.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26215850 (0x19005aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jan 1 05:52:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcf76655745fb5b6bfe927c4e04e0e3f68c7d14c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:df:41:a0:8e:56:d6:b1:28:8e:d3:61:a4:be:
a3:b7:46:14:ae:37:c1:32:3d:e3:f7:88:59:25:87:
18:e7:17:6e:f0:61:b1:2d:05:cd:83:01:bd:f9:13:
c9:c0:1d:a1:ab:8b:ae:4e:ed:93:4e:f9:88:40:3f:
d0:14:f1:86:97:c5:35:ca:2e:2a:4c:94:23:a9:bc:
e6:21:c6:cf:6d:43:67:0d:95:de:b8:c4:68:cd:a9:
63:fa:3d:39:5e:66:32:ed:40:c9:81:35:96:bc:c0:
1e:72:03:98:3e:5a:58:b0:e5:3f:3b:2f:82:5f:91:
a0:94:75:c4:90:cf:38:56:9f:29:d2:7f:8f:6a:86:
3c:47:ca:f2:6e:8e:0e:6a:2b:5c:3a:78:81:e6:39:
04:9a:3d:80:92:cc:36:ad:bf:53:03:d6:d6:c6:28:
5d:02:69:84:97:92:91:83:99:4e:14:56:46:bb:1b:
5d:13:4c:96:6a:28:16:af:94:93:a3:6a:1d:6e:8b:
f3:48:cf:d1:97:92:9c:76:0f:dc:50:3a:85:4d:2a:
14:0a:9d:52:bb:31:ee:38:24:cb:28:0b:50:71:d3:
73:19:fd:15:36:f3:ea:5c:52:66:c8:31:54:99:84:
bd:6f:41:55:30:08:92:4a:12:a7:97:e9:0b:11:33:
00:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F7:66:55:74:5F:B5:B6:BF:E9:27:C4:E0:4E:0E:3F:68:C7:D1:4C
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/_PdmVXRftba_6SfE4E4OP2jH0Uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.112.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:fa:f4:fe:01:2b:c1:f6:1c:82:d4:97:61:80:25:05:3c:1e:
69:a6:fd:1f:18:53:90:91:80:db:cb:c8:b3:5e:ff:94:e6:6e:
c4:6a:09:b4:ae:8a:31:85:ba:83:a9:26:fe:ac:41:2b:78:22:
5f:49:01:9b:08:4b:dd:62:a7:6b:5e:04:78:b6:1e:a9:6a:f0:
97:12:42:47:16:ee:2d:7b:c7:af:ed:a8:b8:f2:50:6f:b4:96:
07:8f:5b:37:7f:fa:e7:ad:9f:8f:43:66:b4:fc:ec:8c:6d:7c:
40:43:b4:ef:21:fc:86:df:50:ff:8d:40:58:69:08:40:85:50:
39:3a:4b:59:2e:8e:7d:9f:ae:76:0a:e3:59:14:56:c3:da:1f:
e8:dc:65:14:df:ac:92:97:4e:99:62:08:6c:e8:b9:bf:12:3f:
db:7d:3d:fb:e7:4b:bf:56:f1:55:f3:29:99:d2:1a:2b:01:5f:
61:16:aa:49:75:9e:51:1c:e3:6e:cd:63:a0:0e:39:fa:2d:6f:
16:11:04:b3:f8:c3:f1:da:5c:a1:2c:c0:6e:9d:9d:f9:a3:14:
c3:2e:d5:ee:e5:8b:73:74:0a:ce:2a:38:b5:cd:f5:b5:05:1c:
0a:ff:1f:e9:dc:d1:c6:c0:02:ba:9d:ac:1d:6b:0a:21:ec:8f:
3c:22:0e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org