Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/R5TRzodFKnmT-MfKnhI2c_R1Yv4.roa
File: R5TRzodFKnmT-MfKnhI2c_R1Yv4.roa (raw, json)
Hash identifier: odSD2xYtOA3g0NI/TFsL66HhgefbdyWRmn/OSQT98uI=
Subject key identifier: 47:94:D1:CE:87:45:2A:79:93:F8:C7:CA:9E:12:36:73:F4:75:62:FE
Certificate issuer: /CN=8afc31f36c97777f906b93e83ae657f00aeb3099
Certificate serial: 0D7ECA5D
Authority key identifier: 8A:FC:31:F3:6C:97:77:7F:90:6B:93:E8:3A:E6:57:F0:0A:EB:30:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivwx82yXd3-Qa5PoOuZX8ArrMJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/R5TRzodFKnmT-MfKnhI2c_R1Yv4.roa
Signing time: Sat 01 Jan 2022 03:57:40 +0000
ROA not before: Sat 01 Jan 2022 03:57:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47232
IP address blocks: 185.214.192.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226413149 (0xd7eca5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8afc31f36c97777f906b93e83ae657f00aeb3099
Validity
Not Before: Jan 1 03:57:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4794d1ce87452a7993f8c7ca9e123673f47562fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:61:04:e9:1c:de:99:a7:c8:97:f0:1e:ec:c3:
4f:c1:35:6f:85:2a:01:2d:c8:56:ee:4d:e4:40:25:
bd:b7:b2:e4:af:03:08:55:3c:74:ec:d2:b1:b6:41:
00:ac:b6:21:2b:07:b3:9a:cd:be:d3:98:89:64:a1:
ac:d6:43:02:ad:cd:0b:38:c7:fc:95:74:b4:14:ee:
f7:fe:68:24:b6:07:26:d6:3f:91:7e:e9:e4:02:71:
3c:10:94:7f:3a:62:3c:6d:14:81:6a:ac:bf:62:77:
b4:c3:43:34:a6:84:5b:e2:67:5c:2a:12:59:b8:ff:
b9:e9:b1:d1:ae:f9:2b:e4:da:a0:9a:3d:b6:a8:ec:
4c:7a:78:ef:41:a4:4e:9f:a5:6f:18:08:8b:ff:ad:
1d:74:51:99:f3:ed:c0:8f:12:45:0e:8e:67:84:12:
a9:15:8c:f6:45:98:1b:20:db:b9:e9:e6:9f:81:ec:
76:8c:c0:30:fa:b6:d0:df:c0:5e:6a:19:ed:f2:ab:
0b:98:ff:ed:2b:7f:67:2c:31:22:2c:0a:d3:fd:77:
98:be:80:8c:4e:c1:e0:34:4d:14:71:d5:6c:f1:d6:
1d:26:fe:64:5b:ef:a7:48:a2:1f:f3:e9:27:c8:a3:
a9:2e:07:63:53:9a:0c:de:8c:4f:96:5c:02:bb:7b:
24:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:94:D1:CE:87:45:2A:79:93:F8:C7:CA:9E:12:36:73:F4:75:62:FE
X509v3 Authority Key Identifier:
keyid:8A:FC:31:F3:6C:97:77:7F:90:6B:93:E8:3A:E6:57:F0:0A:EB:30:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivwx82yXd3-Qa5PoOuZX8ArrMJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/R5TRzodFKnmT-MfKnhI2c_R1Yv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/ivwx82yXd3-Qa5PoOuZX8ArrMJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.192.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:33:87:0a:82:98:9d:4a:73:0f:76:36:62:ad:79:0e:3a:a3:
c9:a9:b5:53:c8:0a:45:58:22:46:d6:11:72:87:55:43:9d:10:
93:e7:09:45:9e:fd:64:c0:57:92:48:27:7b:76:39:bc:8d:f1:
4c:cc:a2:11:45:65:ca:44:78:2a:7a:c9:54:4a:1a:bc:bc:9d:
12:e6:ba:c3:10:cf:c9:76:38:dd:5c:4a:3a:4b:73:39:09:3b:
92:4c:10:ac:8c:f2:27:ca:30:71:a7:06:11:81:73:cd:66:f6:
1e:31:55:ce:7d:11:06:13:66:d0:37:71:1c:91:f7:42:c3:c7:
33:a8:ec:15:2f:1b:fa:1b:5e:ac:eb:30:63:1c:33:74:8f:86:
71:94:22:54:4e:f1:e1:92:11:95:0b:dc:47:17:16:21:b1:b8:
fd:c5:b3:c1:4c:e2:34:21:73:fd:d9:ec:c7:29:74:f1:92:8c:
36:c7:da:0b:28:2e:e2:e0:5a:35:b2:3e:56:47:fc:72:1a:bb:
33:c1:80:12:7e:ba:97:58:c6:0b:c5:51:25:a0:5a:f3:01:16:
0f:08:98:87:69:6b:2a:f9:ad:7f:cb:05:2b:15:13:ec:2c:4c:
e6:20:e9:c5:e5:da:51:ad:24:2c:29:02:a3:a5:6e:a1:9c:17:
45:77:83:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:00 2023 by rpki-client on console-ams.rpki-client.org