Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/9c7aff-d83e-4f51-9b96-5484c39b2d4e/1/Ed27d2coVX3KGXUa-mCDWixH3nI.roa
File: Ed27d2coVX3KGXUa-mCDWixH3nI.roa (raw, json)
Hash identifier: ziFLqm3ZLwehjJ7nvllNg3smGAZ9H4Qm4HwZm7SGcR4=
Subject key identifier: 11:DD:BB:77:67:28:55:7D:CA:19:75:1A:FA:60:83:5A:2C:47:DE:72
Certificate issuer: /CN=21bfa77b3cd782933e5f255445d428adfbdca0e1
Certificate serial: 356F2E8D
Authority key identifier: 21:BF:A7:7B:3C:D7:82:93:3E:5F:25:54:45:D4:28:AD:FB:DC:A0:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ib-nezzXgpM-XyVURdQorfvcoOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/9c7aff-d83e-4f51-9b96-5484c39b2d4e/1/Ed27d2coVX3KGXUa-mCDWixH3nI.roa
Signing time: Mon 28 Mar 2022 06:55:08 +0000
ROA not before: Mon 28 Mar 2022 06:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13302
IP address blocks: 185.166.16.0/22 maxlen: 24
185.166.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 896478861 (0x356f2e8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bfa77b3cd782933e5f255445d428adfbdca0e1
Validity
Not Before: Mar 28 06:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=11ddbb776728557dca19751afa60835a2c47de72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:31:da:96:c8:8b:4f:d1:5e:ef:db:7d:fc:36:
56:4c:03:7d:35:d1:67:5c:8a:e7:a6:ae:b6:1d:15:
c9:a9:a1:3d:71:9a:ff:c0:4c:2c:76:5b:f1:39:25:
6b:32:6a:35:a3:39:87:1a:23:22:56:96:d6:15:67:
a7:82:d3:2c:fc:74:eb:7c:41:e6:56:b7:a3:9d:4f:
61:6c:12:78:4b:5c:1f:e3:b3:e9:e7:65:94:1a:df:
f8:e1:13:b0:69:87:a1:8b:26:bf:06:53:d9:c9:73:
4c:76:8d:f8:23:54:f8:c2:b2:0f:3f:af:77:83:f6:
70:f3:a5:b2:1e:08:70:3b:62:05:15:9e:50:d3:81:
db:10:64:72:f7:0b:38:7e:24:3b:de:7f:3a:cc:b0:
86:8e:5c:ad:98:93:ad:fb:3e:00:b8:70:79:88:8b:
94:14:66:de:02:26:fa:32:1a:b2:32:c6:97:75:82:
6e:d6:86:49:ce:79:14:fa:36:24:e5:1a:18:7c:07:
dc:ba:60:b4:d8:24:84:1f:cb:fe:1e:65:a1:c1:07:
bf:2f:c1:2b:7c:67:c9:43:26:22:de:73:26:53:c1:
27:48:9c:0d:65:97:c8:64:1d:69:6f:83:14:57:b1:
c8:25:b7:89:4b:c0:95:8b:a0:d5:78:5a:01:41:db:
ea:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:DD:BB:77:67:28:55:7D:CA:19:75:1A:FA:60:83:5A:2C:47:DE:72
X509v3 Authority Key Identifier:
keyid:21:BF:A7:7B:3C:D7:82:93:3E:5F:25:54:45:D4:28:AD:FB:DC:A0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ib-nezzXgpM-XyVURdQorfvcoOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9c7aff-d83e-4f51-9b96-5484c39b2d4e/1/Ed27d2coVX3KGXUa-mCDWixH3nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/9c7aff-d83e-4f51-9b96-5484c39b2d4e/1/Ib-nezzXgpM-XyVURdQorfvcoOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.16.0/22
Signature Algorithm: sha256WithRSAEncryption
34:49:cd:4b:0c:91:5d:ea:f4:ca:09:4f:3d:7f:f8:e2:37:eb:
9c:19:4a:68:1d:10:9a:ee:60:ee:98:32:82:e8:8e:4b:55:eb:
51:e2:96:05:5b:ae:f4:9a:bf:23:c2:76:4e:a5:67:2f:1b:ae:
5f:89:57:da:3f:00:08:fa:e3:d0:58:a3:ad:32:85:7c:9f:5d:
2e:35:2a:1c:fb:99:b7:86:a4:fd:8d:94:3e:83:53:49:a8:ce:
21:98:2a:e2:50:1d:04:14:2e:a0:82:a0:37:b9:b2:c1:9a:35:
74:f6:04:f5:5a:8e:43:90:3d:a8:c9:bc:c6:6a:89:4c:ae:e7:
70:50:d7:72:86:34:82:fa:b3:c7:83:58:d8:d7:b8:7f:76:ff:
cb:9b:0e:c4:55:3a:e7:d1:b1:98:fb:49:11:2f:c8:05:a6:74:
76:2a:7c:94:32:8e:03:16:58:07:33:1d:41:cc:a8:36:8a:41:
95:91:cb:25:7c:a4:0c:35:19:8e:4c:79:39:14:94:5e:17:d5:
8c:3e:ae:3c:0d:eb:91:99:24:8b:24:b8:22:12:79:03:b8:94:
60:51:01:c5:aa:df:6a:f2:37:58:e6:1d:74:63:45:bc:57:ac:
19:7c:97:15:89:c6:ed:3f:f9:8e:87:0b:f4:6a:2a:83:e8:f1:
c1:49:1c:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:14 2023 by rpki-client on console-fra.rpki-client.org