Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/9d4c0c-158f-4344-9641-747ced0b7486/1/kIwQ1EQsiJplqTWBE_uNaH2Fy64.roa
File: kIwQ1EQsiJplqTWBE_uNaH2Fy64.roa (raw, json)
Hash identifier: 8UU2BxEvK9D5OOh9wsA8/YY9ft9UOpSS/2zKxX2fMRs=
Subject key identifier: 90:8C:10:D4:44:2C:88:9A:65:A9:35:81:13:FB:8D:68:7D:85:CB:AE
Certificate issuer: /CN=f18053ea7f3ab79a75e8f875386775551ef75739
Certificate serial: 3564DDE8
Authority key identifier: F1:80:53:EA:7F:3A:B7:9A:75:E8:F8:75:38:67:75:55:1E:F7:57:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8YBT6n86t5p16Ph1OGd1VR73Vzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/9d4c0c-158f-4344-9641-747ced0b7486/1/kIwQ1EQsiJplqTWBE_uNaH2Fy64.roa
Signing time: Sat 01 Jan 2022 02:59:33 +0000
ROA not before: Sat 01 Jan 2022 02:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15401
IP address blocks: 185.3.64.0/22 maxlen: 24
178.237.96.0/20 maxlen: 24
31.193.48.0/21 maxlen: 24
2a00:4280::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 895802856 (0x3564dde8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f18053ea7f3ab79a75e8f875386775551ef75739
Validity
Not Before: Jan 1 02:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=908c10d4442c889a65a9358113fb8d687d85cbae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5f:8e:8f:e0:cf:3b:11:21:d4:88:9d:32:79:
74:da:00:69:3e:0b:15:d3:6d:05:11:dc:6e:b9:36:
9b:20:eb:90:f7:cf:8b:7f:8e:b9:df:32:fb:6b:b5:
66:14:25:c0:3b:ea:5c:ea:51:34:6e:38:df:17:a0:
ac:7a:72:1b:4e:e9:83:a8:58:b4:0e:43:9c:4e:bf:
fa:6e:13:02:98:58:00:02:2e:84:21:df:ca:3d:00:
26:78:66:dc:58:17:39:11:c4:fa:91:aa:10:ef:8f:
ea:e0:b9:e6:90:7d:96:3f:bf:c6:63:ef:08:d8:3b:
0e:bd:c6:3b:47:d3:56:61:a3:91:f7:10:96:cf:1f:
77:fc:57:cf:9c:ef:e1:ee:7d:04:c9:06:40:ac:68:
9a:9e:2c:17:cf:aa:fe:ed:26:24:ae:b4:94:6e:9e:
10:0a:71:42:a9:23:c2:2f:58:50:f7:38:7a:7f:0a:
42:67:38:bd:c1:8f:85:c5:16:87:89:2b:a5:a9:2a:
41:e7:27:c9:e4:a4:45:30:35:64:05:39:d8:a3:a0:
f7:f4:4b:32:ee:4f:43:0e:14:77:d4:86:83:9f:1d:
4d:56:a4:5d:2b:b1:f4:e5:81:9c:75:1e:4c:4d:4a:
11:fa:79:2f:49:bc:6e:19:1e:cd:ab:ab:85:19:2b:
b9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:8C:10:D4:44:2C:88:9A:65:A9:35:81:13:FB:8D:68:7D:85:CB:AE
X509v3 Authority Key Identifier:
keyid:F1:80:53:EA:7F:3A:B7:9A:75:E8:F8:75:38:67:75:55:1E:F7:57:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8YBT6n86t5p16Ph1OGd1VR73Vzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/9d4c0c-158f-4344-9641-747ced0b7486/1/kIwQ1EQsiJplqTWBE_uNaH2Fy64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/9d4c0c-158f-4344-9641-747ced0b7486/1/8YBT6n86t5p16Ph1OGd1VR73Vzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.48.0/21
178.237.96.0/20
185.3.64.0/22
IPv6:
2a00:4280::/32
Signature Algorithm: sha256WithRSAEncryption
8c:38:c1:ae:d9:e3:1e:4d:5b:30:b7:d9:c5:14:23:2b:de:88:
a9:0f:81:36:3f:fa:6b:05:96:ea:65:29:4f:55:e2:cd:55:47:
f0:c8:a0:47:34:f1:8c:22:65:d3:af:63:03:3f:83:81:5c:44:
52:94:29:4f:d9:4d:42:fa:02:4a:ce:36:dd:29:4f:db:e7:e7:
52:bc:37:2f:c5:26:3b:a6:7c:35:f5:16:4c:6a:3e:1d:f1:03:
01:6b:6f:0c:e5:7f:c8:96:00:b8:c6:00:a4:eb:e3:e6:d2:64:
ca:fb:36:82:92:df:da:00:4f:9c:26:1c:a7:0e:b9:59:ac:0c:
58:2b:dd:0d:06:42:d5:4e:a6:57:8f:fe:4b:b2:1e:c6:33:c5:
ae:15:f2:30:14:3f:ac:c2:83:c6:b6:26:0c:ca:eb:ae:2a:d0:
d3:6d:ea:66:7d:ab:32:a9:0c:cc:12:81:d1:31:d8:ec:a1:8b:
31:71:94:4d:48:92:d2:b1:19:72:f4:96:25:31:c5:78:9c:62:
5d:8a:cc:8e:e4:25:6f:c8:77:07:78:9d:58:4f:d2:22:9c:6a:
06:67:00:16:41:a7:15:b0:34:fd:fa:4a:3a:f3:c4:89:07:45:
66:e1:49:2d:ad:5a:c7:3d:37:68:08:a2:12:be:97:9b:1e:73:
1f:e3:22:03
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:29 2023 by rpki-client on console-ams.rpki-client.org