Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/iWDECViK83etjHD8VAV_zx3M7OU.roa
File: iWDECViK83etjHD8VAV_zx3M7OU.roa (raw, json)
Hash identifier: AXp36Jo6+hJfIzmhTosseDyaeXGgR/+9+RTsfh5e6DE=
Subject key identifier: 89:60:C4:09:58:8A:F3:77:AD:8C:70:FC:54:05:7F:CF:1D:CC:EC:E5
Certificate issuer: /CN=95151fbb71e41b2d1063d3b11141ada1a844c7f7
Certificate serial: 034FE737
Authority key identifier: 95:15:1F:BB:71:E4:1B:2D:10:63:D3:B1:11:41:AD:A1:A8:44:C7:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRUfu3HkGy0QY9OxEUGtoahEx_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/iWDECViK83etjHD8VAV_zx3M7OU.roa
Signing time: Sat 01 Jan 2022 06:56:10 +0000
ROA not before: Sat 01 Jan 2022 06:56:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38965
IP address blocks: 185.231.57.0/24 maxlen: 24
2a10:b880::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55568183 (0x34fe737)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95151fbb71e41b2d1063d3b11141ada1a844c7f7
Validity
Not Before: Jan 1 06:56:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8960c409588af377ad8c70fc54057fcf1dccece5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ce:ae:44:ae:ba:00:6d:23:e3:66:dd:f5:38:
bd:ea:25:89:54:a7:dc:ad:f7:37:ab:2f:b2:4e:fb:
3b:fd:a9:5d:2e:32:b3:ca:96:b8:8c:9f:fa:e5:84:
d3:b9:41:c5:86:1a:39:54:2a:63:2b:15:69:69:07:
c6:20:cd:3f:b6:37:31:67:58:00:4c:4e:ab:e2:d9:
0e:c6:dd:3c:fb:15:3e:92:b3:02:23:25:94:e6:89:
cd:d2:ec:c3:73:55:41:af:7b:e0:46:45:0a:99:42:
f8:ff:b8:4a:86:20:1a:aa:f3:81:15:d5:d6:3d:6a:
b5:87:36:7c:07:eb:c7:55:90:ac:4b:53:5e:f7:f0:
ac:e4:39:80:f1:56:f9:2d:88:99:bb:de:ba:5d:bb:
a3:66:65:55:6a:26:64:0a:cc:f1:7a:58:2a:48:c4:
eb:5c:9c:f1:ac:31:34:a0:93:61:c7:62:84:09:14:
7a:1f:e5:31:13:a1:2c:b4:db:e5:fc:ff:27:ba:61:
6f:01:c6:e9:18:24:ed:79:68:8e:68:d3:cb:db:ec:
f6:39:24:87:c9:ee:db:32:ee:d3:b3:a6:07:92:f1:
c0:5b:05:59:64:5d:2b:9a:fa:73:27:30:5c:f2:42:
56:a7:56:86:6e:2d:fd:ff:08:d7:28:91:92:74:b3:
35:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:60:C4:09:58:8A:F3:77:AD:8C:70:FC:54:05:7F:CF:1D:CC:EC:E5
X509v3 Authority Key Identifier:
keyid:95:15:1F:BB:71:E4:1B:2D:10:63:D3:B1:11:41:AD:A1:A8:44:C7:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRUfu3HkGy0QY9OxEUGtoahEx_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/iWDECViK83etjHD8VAV_zx3M7OU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/lRUfu3HkGy0QY9OxEUGtoahEx_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.57.0/24
IPv6:
2a10:b880::/32
Signature Algorithm: sha256WithRSAEncryption
35:3a:3a:5e:4c:86:97:27:b1:4d:23:36:ef:cf:9b:98:ec:dc:
1d:7b:c5:00:ad:4b:02:d6:c6:dc:6c:1a:1f:67:42:43:3a:57:
be:a2:3c:07:48:ab:13:fc:f8:30:36:9a:11:bf:8b:56:b7:25:
1f:ac:83:bc:95:ca:55:ce:40:44:c7:df:2c:5e:3e:5b:6c:95:
93:4b:60:bb:a7:e9:1b:62:92:f5:41:64:d4:89:cb:43:57:95:
81:84:b9:b7:7c:c3:0d:fc:4b:65:49:0b:e4:46:73:ec:3a:15:
5c:82:af:6f:8c:fe:ed:27:b7:4d:23:9d:16:4c:72:30:66:37:
f2:4f:bf:dc:a6:ff:9c:d8:0c:99:69:6a:8d:cf:97:58:cd:dd:
e4:f4:66:98:be:95:af:9c:7a:4e:23:cf:7d:17:71:a9:43:a0:
6d:f6:c8:95:b4:9d:b5:b4:bc:67:98:28:9f:f2:98:48:3c:86:
50:2b:40:6f:6d:6e:b3:39:ec:93:39:9d:02:d0:58:f4:7a:48:
42:7f:15:f0:1f:b1:91:46:2d:77:ed:34:72:ab:8b:f5:29:a0:
4d:b6:61:5a:e7:41:3a:74:92:8e:88:f2:0d:93:dd:ae:33:13:
16:f1:99:76:48:15:ba:f3:3d:02:f2:5d:c5:93:c7:37:83:03:
7c:a0:c3:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:40 2024 by rpki-client on console-fra.rpki-client.org