Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/8IrFHOG2i0OeLJi5KVwqjBj0Fkg.roa
File: 8IrFHOG2i0OeLJi5KVwqjBj0Fkg.roa (raw, json)
Hash identifier: H+rOX4GZogwlTSuAIyGI3mkrPWiOXJQnZ160byiMh+0=
Subject key identifier: F0:8A:C5:1C:E1:B6:8B:43:9E:2C:98:B9:29:5C:2A:8C:18:F4:16:48
Certificate issuer: /CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Certificate serial: 0245FCE1
Authority key identifier: E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/8IrFHOG2i0OeLJi5KVwqjBj0Fkg.roa
Signing time: Sat 01 Jan 2022 04:56:53 +0000
ROA not before: Sat 01 Jan 2022 04:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20546
IP address blocks: 185.64.96.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38141153 (0x245fce1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d9cfb078eda5816fc809e98c25cb71963e75b7
Validity
Not Before: Jan 1 04:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f08ac51ce1b68b439e2c98b9295c2a8c18f41648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:de:17:d0:8a:be:cc:2c:3d:dd:4b:a0:1e:ff:
e9:6f:db:c8:04:dc:3e:19:82:1c:fa:ee:9e:e1:f1:
a6:af:b1:fc:bd:55:86:05:2e:24:40:88:4c:cf:d2:
50:61:18:5d:89:96:e7:9a:74:4f:38:4c:3b:20:e3:
ad:28:93:e7:b0:9d:84:69:58:86:6e:75:e6:56:bb:
72:6c:15:4b:32:07:5a:18:bf:08:a3:72:8a:54:d6:
60:fb:71:25:b5:94:1d:9b:91:b5:55:c5:1d:f1:0f:
a3:82:1b:99:e4:9c:97:45:16:b3:cd:b0:7b:cd:bc:
3e:6b:25:04:89:1d:bc:4a:03:57:4a:75:cb:92:bb:
3f:5d:13:a6:42:cc:f5:ce:e3:da:69:3e:03:4f:b9:
c4:7d:41:a4:a9:a4:a1:39:b6:10:3b:93:d4:f3:b9:
a3:c7:2d:5c:3b:c6:86:c7:2d:c4:24:4d:ba:b8:4d:
fb:25:6e:6a:bf:5f:5b:3f:4d:1d:b2:75:31:47:3e:
09:08:f5:4c:b8:d7:b0:03:a3:1b:3b:5c:41:f8:6b:
94:26:f5:ee:e9:05:e5:71:ee:92:fc:cf:07:2f:90:
c9:7f:f6:60:ae:4e:84:98:0d:b2:8f:3e:25:51:fa:
27:0b:1e:90:59:ac:7d:f3:31:81:b9:7b:54:9f:96:
91:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8A:C5:1C:E1:B6:8B:43:9E:2C:98:B9:29:5C:2A:8C:18:F4:16:48
X509v3 Authority Key Identifier:
keyid:E7:D9:CF:B0:78:ED:A5:81:6F:C8:09:E9:8C:25:CB:71:96:3E:75:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59nPsHjtpYFvyAnpjCXLcZY-dbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/8IrFHOG2i0OeLJi5KVwqjBj0Fkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/000ea7-c9f4-4ebb-b9b1-feee7c29d4de/1/59nPsHjtpYFvyAnpjCXLcZY-dbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.96.0/22
Signature Algorithm: sha256WithRSAEncryption
34:8a:5d:9a:b8:1d:db:6d:79:1f:ac:c5:29:a3:da:e7:23:aa:
88:fe:5c:bb:dc:83:53:c5:e6:c5:1c:5a:a1:f9:68:10:28:e5:
62:8f:73:ab:84:0f:34:34:56:1d:b9:dd:e5:5d:c3:7a:0d:df:
3a:c0:0c:6b:33:e4:bb:ac:13:cc:f4:cb:e2:a5:d6:48:2e:c6:
a7:c7:78:0a:4c:6e:3e:3d:31:dd:83:25:d4:67:b7:57:34:53:
1a:d1:72:0e:98:60:9a:4e:21:66:91:91:9a:10:28:4e:d2:c3:
70:73:77:51:b6:df:31:de:b2:60:0f:17:09:f8:7b:41:c9:cd:
c5:95:c1:aa:fe:b9:17:93:37:dd:9e:76:a9:67:06:51:a4:7e:
25:15:af:1c:d7:27:3a:2c:a3:0b:d2:32:17:65:5e:59:b4:db:
1a:ff:f7:77:1d:54:9d:24:dd:0c:a4:a2:08:2b:c5:71:07:69:
eb:39:8c:3c:ce:6f:8a:ba:6b:92:10:ec:20:d6:12:56:a0:be:
8e:eb:1c:33:a4:81:7a:e5:f7:c7:fe:fd:fe:64:be:0e:b8:02:
40:ed:b0:1a:84:cb:ff:15:71:8c:41:e4:14:01:c6:7b:13:d2:
c1:39:ba:2a:2d:98:d7:69:2f:76:c3:07:d6:6a:98:4e:d8:80:
73:1b:3a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:00 2023 by rpki-client on console.sobornost.net