Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/9770a1-59bd-415a-bade-b282dd674823/1/O7iWdj4f9YgZ8fO_Dj1-lp_xDno.roa
File: O7iWdj4f9YgZ8fO_Dj1-lp_xDno.roa (raw, json)
Hash identifier: rL1j+iN6odJ39GRWa2EhLX8+R200KViELstfBWoiBtM=
Subject key identifier: 3B:B8:96:76:3E:1F:F5:88:19:F1:F3:BF:0E:3D:7E:96:9F:F1:0E:7A
Certificate issuer: /CN=d4d1f325bf8ae694a19f28fd407cd5bb500e1b3e
Certificate serial: 034D4934
Authority key identifier: D4:D1:F3:25:BF:8A:E6:94:A1:9F:28:FD:40:7C:D5:BB:50:0E:1B:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1NHzJb-K5pShnyj9QHzVu1AOGz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/9770a1-59bd-415a-bade-b282dd674823/1/O7iWdj4f9YgZ8fO_Dj1-lp_xDno.roa
Signing time: Sat 01 Jan 2022 15:06:03 +0000
ROA not before: Sat 01 Jan 2022 15:06:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.116.0/24 maxlen: 24
2001:7f8:c7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55396660 (0x34d4934)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4d1f325bf8ae694a19f28fd407cd5bb500e1b3e
Validity
Not Before: Jan 1 15:06:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bb896763e1ff58819f1f3bf0e3d7e969ff10e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c6:cc:66:c4:46:42:d8:9c:01:ff:c7:99:44:
7f:b2:d6:7c:a3:6e:24:be:4b:dc:a9:17:b7:db:b9:
e1:55:44:80:e9:7e:b8:10:b7:bb:2d:66:07:75:cb:
c2:42:66:33:a3:c5:7d:ed:84:3a:b7:39:be:3a:f5:
82:d0:46:0b:33:f2:e4:f6:d4:10:9b:b6:90:85:b8:
21:3c:7f:06:0d:c0:f2:5f:4b:64:77:84:83:b6:08:
72:b6:92:38:44:c2:33:ec:0d:d9:b9:7b:c8:65:18:
50:27:94:40:a3:b9:13:26:ce:60:9d:35:2d:8d:b3:
19:08:f4:8c:1f:03:9b:fa:01:36:3a:9d:a2:f1:79:
f6:35:a9:c9:d7:f4:76:30:d4:e7:23:b8:a1:f4:6b:
f6:0a:a6:55:45:59:c5:2f:46:4e:e5:a5:4d:5a:e9:
f9:de:ed:df:42:2d:61:99:f6:4a:5d:7d:d3:79:3e:
ce:10:71:5b:44:db:2f:24:05:86:86:c0:03:54:17:
b6:c9:a1:aa:c7:53:96:06:32:bf:a7:9c:c9:49:83:
ab:cf:ed:04:ad:8e:91:94:d8:d0:3e:08:e1:48:1a:
a9:c3:ce:e0:7d:66:d3:22:77:90:58:dc:74:62:28:
1f:7e:00:bc:96:63:38:f1:ce:c2:2a:9c:5b:a2:c5:
09:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B8:96:76:3E:1F:F5:88:19:F1:F3:BF:0E:3D:7E:96:9F:F1:0E:7A
X509v3 Authority Key Identifier:
keyid:D4:D1:F3:25:BF:8A:E6:94:A1:9F:28:FD:40:7C:D5:BB:50:0E:1B:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1NHzJb-K5pShnyj9QHzVu1AOGz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/9770a1-59bd-415a-bade-b282dd674823/1/O7iWdj4f9YgZ8fO_Dj1-lp_xDno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/9770a1-59bd-415a-bade-b282dd674823/1/1NHzJb-K5pShnyj9QHzVu1AOGz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.116.0/24
IPv6:
2001:7f8:c7::/48
Signature Algorithm: sha256WithRSAEncryption
5a:38:3e:13:d6:ee:23:52:ca:2c:9c:47:6f:cd:4f:84:97:2b:
19:be:9f:7c:86:7e:25:ef:c5:de:79:04:5f:7d:c9:0f:86:6e:
17:3f:17:9f:85:0c:09:a9:44:27:c4:a0:f8:38:cf:75:b3:1c:
bc:54:9c:34:5b:3b:7b:90:54:dd:26:0c:40:d8:87:e5:c3:40:
1f:cc:26:18:06:21:f8:4f:51:75:fb:14:4e:55:7b:42:c5:17:
47:8f:9e:be:e8:68:d4:55:28:fe:22:ca:6d:30:17:0f:0c:8b:
d9:8b:5a:9f:00:4e:5d:65:81:bf:8d:b0:62:bc:40:a3:cd:2f:
0a:f4:72:b1:97:1b:21:4e:80:7f:58:67:49:f2:97:35:cb:c2:
9f:38:2c:cf:99:24:b8:23:86:0d:a1:e0:d2:21:8b:d8:f6:c7:
2a:19:54:51:aa:8d:3b:07:cd:23:d8:eb:e6:15:00:be:05:6c:
58:90:da:d9:1b:e3:2e:0e:14:a8:0a:55:7d:e1:8f:34:a7:c3:
81:9b:da:a7:f3:0f:6b:25:9f:29:fe:b0:39:60:3a:69:b5:6c:
03:f5:f4:af:16:8f:d1:50:04:d0:0b:9e:03:b9:31:22:f4:31:
72:b6:db:a5:d0:0c:52:a4:73:c4:0d:9c:79:c9:01:48:15:ce:
23:7f:0a:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:32 2023 by rpki-client on console-fra.rpki-client.org