Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/FcUlqmfO7fCo2gU5eH7ozkKvT90.roa
File: FcUlqmfO7fCo2gU5eH7ozkKvT90.roa (raw, json)
Hash identifier: JLF/OLKgOVI4Spcvab9TMbwMNQ7gVwTcIjmJ1H3FbV4=
Subject key identifier: 15:C5:25:AA:67:CE:ED:F0:A8:DA:05:39:78:7E:E8:CE:42:AF:4F:DD
Certificate issuer: /CN=64a7a6cd583814d393bee2635b545574cc75620c
Certificate serial: 0305C014
Authority key identifier: 64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/FcUlqmfO7fCo2gU5eH7ozkKvT90.roa
Signing time: Sat 01 Jan 2022 02:52:18 +0000
ROA not before: Sat 01 Jan 2022 02:52:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51554
IP address blocks: 185.157.8.0/23 maxlen: 23
185.157.8.0/22 maxlen: 22
185.157.10.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50708500 (0x305c014)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64a7a6cd583814d393bee2635b545574cc75620c
Validity
Not Before: Jan 1 02:52:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15c525aa67ceedf0a8da0539787ee8ce42af4fdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:72:a8:48:6c:69:15:87:4a:56:aa:ee:10:77:
6e:cd:d8:43:10:b8:a6:5f:37:db:09:87:de:6b:c0:
c0:10:c3:b5:14:43:29:d2:ed:71:de:8e:43:6a:bf:
9d:83:c9:97:94:49:12:8e:da:11:17:d4:b8:8a:2b:
e4:f7:65:07:3c:b1:bf:79:24:fd:80:d8:97:bf:d2:
9a:ad:be:3a:62:da:74:b7:5f:e3:5c:36:0d:23:4e:
f7:79:de:87:cc:ce:b5:44:b9:50:47:e3:9e:24:03:
54:b4:68:b2:66:dc:e5:24:e5:4b:c7:77:38:f0:29:
3c:02:f4:67:db:1e:1d:71:36:86:2d:e7:5e:c8:89:
d7:65:5f:41:81:4f:62:7b:f8:2b:50:99:35:4c:91:
64:62:49:31:4a:b9:c7:ea:f6:80:0e:16:04:d6:c1:
36:d6:42:d1:b1:40:4c:d5:fe:36:87:e6:82:0c:e5:
33:0e:37:5f:03:b0:5b:e8:22:b4:ba:b0:fa:14:3c:
e0:2b:06:e7:50:10:43:17:62:4f:16:74:e3:18:f4:
9e:f2:68:f6:0e:6a:44:c6:d4:ad:1d:00:f6:fe:0e:
2c:6e:cc:a8:d9:02:6f:1b:62:8e:76:b9:95:69:3b:
20:53:c3:7a:dd:b4:de:9e:e5:22:54:8d:9b:a0:e8:
7a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:C5:25:AA:67:CE:ED:F0:A8:DA:05:39:78:7E:E8:CE:42:AF:4F:DD
X509v3 Authority Key Identifier:
keyid:64:A7:A6:CD:58:38:14:D3:93:BE:E2:63:5B:54:55:74:CC:75:62:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/FcUlqmfO7fCo2gU5eH7ozkKvT90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/8d6f1a-d334-418f-b726-6f5d8a74a0e4/1/ZKemzVg4FNOTvuJjW1RVdMx1Ygw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.8.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:8a:22:10:93:9d:51:26:2b:75:fc:f8:8a:9d:73:5b:37:02:
70:da:0f:da:b6:1d:d7:1f:ce:c1:43:82:f9:a2:2b:3a:76:f8:
84:80:fa:93:6a:3a:27:22:13:17:36:4f:e4:56:3e:96:42:b8:
4c:fb:1f:2b:8c:9c:19:82:08:54:9a:77:26:01:b5:1e:27:8a:
30:93:f6:9e:81:3f:42:71:5c:20:97:71:09:e1:80:a2:ce:e5:
b8:33:aa:53:ec:eb:51:c9:53:3a:ab:ae:c6:9d:cc:9f:2b:2f:
a8:8c:b2:31:44:e3:23:29:96:10:4a:dd:4d:37:2e:de:28:65:
af:88:5f:10:68:41:3c:b1:03:b1:b4:17:bd:f6:1c:c7:2f:92:
7f:0d:38:3b:9e:60:b6:d6:db:6f:04:e5:42:67:57:88:6e:95:
36:79:98:1d:9d:c6:a0:93:6d:9c:fa:98:38:ec:6b:5b:6d:53:
bc:44:5e:f5:c9:c2:53:90:40:c9:45:ac:7b:23:9f:8c:4a:4b:
92:20:f7:ce:91:cb:9c:c2:17:02:cb:65:dc:28:b7:eb:ea:ba:
e0:de:8f:0f:4a:cd:19:89:a6:8f:39:cf:da:34:db:44:0c:1a:
e5:3f:5e:0f:76:00:3c:40:12:7f:a6:87:4d:b3:1f:4c:35:5c:
5f:d1:66:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:50 2024 by rpki-client on console-ams.rpki-client.org