Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iepe89XePAu2OhdfKglHwtVNHE4.roa
File: iepe89XePAu2OhdfKglHwtVNHE4.roa (raw, json)
Hash identifier: d6a2w/ipcAnnKxaw0JV6eRcVlbpgZ235ntqfMh6dsFo=
Subject key identifier: 89:EA:5E:F3:D5:DE:3C:0B:B6:3A:17:5F:2A:09:47:C2:D5:4D:1C:4E
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1CA0CF3B
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iepe89XePAu2OhdfKglHwtVNHE4.roa
Signing time: Wed 05 Jan 2022 14:26:46 +0000
ROA not before: Wed 05 Jan 2022 14:26:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 185.252.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 480300859 (0x1ca0cf3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 5 14:26:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89ea5ef3d5de3c0bb63a175f2a0947c2d54d1c4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:74:a2:91:aa:0a:3a:ec:fe:71:1a:d2:ad:24:
50:35:ca:69:60:fb:45:65:13:4e:01:1b:18:4c:bf:
5e:5a:a4:4d:42:c6:81:8d:39:4f:4e:71:eb:d7:40:
91:af:76:e3:c2:b3:7e:6d:34:21:11:c5:44:ee:96:
90:6a:a9:8f:d4:2f:c6:26:93:e3:82:a3:f3:fa:f8:
43:d3:06:3b:b8:68:45:4d:2c:f1:72:94:20:41:5b:
bd:59:f6:56:40:22:22:53:70:4e:d7:bf:5a:c2:9e:
a5:a3:23:c1:19:5f:4a:9b:79:ab:72:3e:4d:07:0e:
13:df:3f:3b:cd:ea:56:21:fc:71:fb:30:0e:94:fe:
8f:41:df:e3:be:80:43:48:44:68:d2:29:a4:fa:6e:
b1:9b:6a:29:22:49:d8:ec:78:57:1e:71:25:c7:4c:
24:c3:26:4f:51:77:d2:45:74:b5:b9:ac:d5:a7:35:
28:fc:21:70:b4:b4:73:8c:fe:ec:62:55:51:a6:3b:
64:7c:88:5e:9f:b0:d2:2d:ec:22:bc:90:7d:68:1d:
00:2c:18:3c:29:46:54:f4:50:00:5d:44:67:df:e3:
7c:65:da:af:13:a1:3f:32:c3:64:b4:1e:cb:fd:d5:
34:0a:ea:1a:1d:dc:72:f7:55:1b:a1:e3:19:b1:88:
63:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:EA:5E:F3:D5:DE:3C:0B:B6:3A:17:5F:2A:09:47:C2:D5:4D:1C:4E
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/iepe89XePAu2OhdfKglHwtVNHE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.177.0/24
Signature Algorithm: sha256WithRSAEncryption
74:3e:e0:4c:2e:e8:bb:39:c3:ec:21:aa:ef:76:07:38:b5:8e:
fe:7a:86:f7:69:f6:ae:e2:95:30:29:9a:28:78:a3:c6:a9:17:
a8:29:13:28:c0:b9:4f:cd:65:a0:cb:a7:e9:5e:10:33:e0:56:
6c:00:aa:f2:3c:54:0a:7a:6c:21:96:01:68:25:ad:05:b6:5f:
d2:d2:a2:11:df:a4:5e:d2:f3:4d:5e:e3:26:77:7a:7e:05:7d:
6b:13:58:c8:42:bc:c5:35:a1:1b:e3:d9:45:e3:25:4c:68:17:
29:13:66:69:75:0f:fc:5f:0f:4a:dc:e6:61:e0:a3:6e:90:c7:
3a:59:4d:7b:8a:05:a8:5b:80:f9:13:4b:69:d3:59:e7:85:1e:
da:22:85:b5:9b:c8:ba:eb:99:d4:a1:4b:3d:fb:cf:86:b4:ae:
00:c9:d0:9d:c1:36:32:58:27:2d:fd:d9:ab:ab:d7:bc:b0:65:
1c:f6:f1:a3:44:10:42:d4:51:3f:44:a8:6b:8d:16:f6:f6:74:
78:6b:c3:aa:6c:5b:53:6e:2f:e0:f3:4b:05:e3:37:53:01:42:
99:ad:df:39:a7:9d:30:5f:2e:67:f8:99:fd:68:8a:d9:43:ae:
70:ed:76:12:69:12:df:20:33:0d:a8:ee:a1:c3:aa:ad:87:5e:
4e:2c:2e:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:41 2023 by rpki-client on console-ams.rpki-client.org