Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/S8lj8wsiKMRmewa4Hee0g4mpsIM.roa
File: S8lj8wsiKMRmewa4Hee0g4mpsIM.roa (raw, json)
Hash identifier: SzIcNRHlOjTm5/AbaXzQ6YGu9N5yGlZWFPkcSRluLbs=
Subject key identifier: 4B:C9:63:F3:0B:22:28:C4:66:7B:06:B8:1D:E7:B4:83:89:A9:B0:83
Certificate issuer: /CN=8b19f3d7ffea957261501e91664ff6823ed936ad
Certificate serial: 1086AF19
Authority key identifier: 8B:19:F3:D7:FF:EA:95:72:61:50:1E:91:66:4F:F6:82:3E:D9:36:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ixnz1__qlXJhUB6RZk_2gj7ZNq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/S8lj8wsiKMRmewa4Hee0g4mpsIM.roa
Signing time: Sat 01 Jan 2022 09:55:02 +0000
ROA not before: Sat 01 Jan 2022 09:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8758
IP address blocks: 185.166.96.0/22 maxlen: 22
2a0a:de00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277262105 (0x1086af19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b19f3d7ffea957261501e91664ff6823ed936ad
Validity
Not Before: Jan 1 09:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bc963f30b2228c4667b06b81de7b48389a9b083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a5:09:da:c9:f3:4c:9a:7f:64:cc:74:6a:dd:
b0:e3:be:dd:5c:29:58:93:8b:6f:ca:f4:ff:d5:75:
c6:bc:0b:50:72:a8:2d:74:39:ca:e2:59:c5:02:b9:
74:30:77:50:22:1c:7e:a7:b6:d3:ff:4d:d3:a5:01:
5a:b6:45:81:fe:97:5e:61:5c:7f:ab:bd:d5:af:c3:
4c:11:fe:5d:5c:51:15:9e:74:cd:83:b5:bd:f3:02:
91:f9:8b:46:c5:cd:49:4e:f0:51:5e:19:45:7d:c9:
c6:e2:ab:ff:2e:f5:6f:a3:a7:6c:5f:fb:75:51:7f:
1f:34:52:dc:32:df:f9:98:80:8d:0c:73:02:69:ee:
03:5c:2d:19:3d:87:92:2f:fe:32:06:5d:fd:26:62:
dc:ec:3a:c1:58:a6:64:3a:cc:b5:16:b6:e9:fc:5c:
af:8a:46:0e:9e:52:d5:bc:31:4f:a5:b2:1e:66:8b:
18:40:27:5d:8e:a4:79:d6:51:9e:13:95:4d:00:ae:
e2:d0:ac:3b:53:d9:53:24:77:63:88:06:b4:0f:db:
7c:a1:df:9b:8d:14:c5:ff:77:0c:b7:ff:da:a4:48:
4a:8b:7b:68:17:53:7d:ea:d7:0d:f7:91:7b:75:0c:
c9:e6:5b:8b:b6:6c:ba:69:2f:ac:3f:d0:03:74:6d:
f3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:C9:63:F3:0B:22:28:C4:66:7B:06:B8:1D:E7:B4:83:89:A9:B0:83
X509v3 Authority Key Identifier:
keyid:8B:19:F3:D7:FF:EA:95:72:61:50:1E:91:66:4F:F6:82:3E:D9:36:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ixnz1__qlXJhUB6RZk_2gj7ZNq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/S8lj8wsiKMRmewa4Hee0g4mpsIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/d1ade7-fbe2-4203-8551-b6542e6447a0/1/ixnz1__qlXJhUB6RZk_2gj7ZNq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.96.0/22
IPv6:
2a0a:de00::/32
Signature Algorithm: sha256WithRSAEncryption
3c:78:f5:e8:ac:76:ff:0f:d4:87:2b:d8:86:ad:5d:5f:ba:6e:
22:c3:1e:4d:95:69:e5:02:a8:27:14:a9:4d:c9:df:de:df:46:
b0:4a:0f:22:75:5a:fe:bc:3e:8e:84:55:32:e6:4c:48:8e:86:
60:2f:af:8c:2b:9a:07:ba:74:8d:f6:d0:6c:aa:37:60:db:f0:
b0:2f:29:83:8d:8a:58:61:e6:13:8b:ba:a7:8c:47:ea:ca:e3:
d7:e2:ee:9b:c7:fb:56:b2:9e:15:bd:ca:70:e4:60:fb:f0:4c:
8f:51:42:3a:67:66:1c:5d:4b:e8:d7:38:ab:5e:90:23:fd:02:
71:cc:f3:61:e2:87:f4:87:5a:af:20:5c:64:9d:1a:30:bd:36:
4f:2d:2a:98:f4:4e:44:fe:36:c9:87:6d:8a:4a:8a:cd:da:2e:
f1:f4:ca:39:3f:57:58:7f:9b:b7:8a:f0:d9:92:c7:43:b7:7c:
10:36:99:b0:92:8c:de:bb:d5:41:1d:5c:8d:9d:d8:fe:56:4f:
d7:52:72:bb:2f:1b:f5:c8:a1:b1:77:86:12:da:84:54:d8:74:
55:af:43:dd:7f:56:5d:65:2e:32:32:73:b4:17:73:98:ae:8f:
e7:d5:aa:f7:ea:4d:2f:a9:f5:53:50:f9:04:ee:2a:1f:4c:8c:
15:22:99:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:01 2024 by rpki-client on console-fra.rpki-client.org