Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/Ih8IThucf8qTla-nUk1X87P9PSw.roa
File: Ih8IThucf8qTla-nUk1X87P9PSw.roa (raw, json)
Hash identifier: Oxo8lS9W46HwPYU/WPIJLq76N/5AYWpi1MQ3ViitvEg=
Subject key identifier: 22:1F:08:4E:1B:9C:7F:CA:93:95:AF:A7:52:4D:57:F3:B3:FD:3D:2C
Certificate issuer: /CN=64f47c98440f103825c8ea5074298b18cc113e20
Certificate serial: 1347E42A
Authority key identifier: 64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/Ih8IThucf8qTla-nUk1X87P9PSw.roa
Signing time: Sat 01 Jan 2022 00:58:44 +0000
ROA not before: Sat 01 Jan 2022 00:58:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201639
IP address blocks: 185.3.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 323478570 (0x1347e42a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64f47c98440f103825c8ea5074298b18cc113e20
Validity
Not Before: Jan 1 00:58:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=221f084e1b9c7fca9395afa7524d57f3b3fd3d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:82:7d:c8:69:78:d7:de:53:3a:56:d1:63:c7:
53:a2:9e:c4:84:ee:0f:d3:ab:95:2d:7e:1a:f3:40:
b0:d5:0a:22:0f:b3:96:e4:95:3a:43:f9:87:99:25:
2a:9b:92:1f:f1:3c:be:4b:53:8d:3f:39:2a:9f:92:
67:08:b4:fb:f2:30:72:5e:8e:c3:97:1d:ff:07:49:
78:cd:0e:bb:e7:6c:6c:30:c5:eb:1a:86:c6:6b:dd:
3a:dd:89:a2:c9:9e:4f:ed:10:c7:72:94:1d:01:07:
d8:76:1e:25:51:1c:c7:10:65:88:0d:fd:d6:bf:d6:
a6:1e:0e:e3:89:89:21:0d:60:35:b2:2e:f6:53:ea:
d1:d8:a3:0e:ff:87:e0:30:c7:1c:7d:80:3f:2e:3a:
0a:90:2e:25:58:b1:4b:1b:bb:14:d2:9c:48:7c:2f:
db:24:9b:95:4b:12:71:cf:49:c0:af:2f:0b:43:6b:
20:ae:71:cd:70:47:7e:54:a8:c2:72:ac:24:cb:c0:
01:1f:cb:34:b4:db:cf:70:cd:42:04:bd:ac:e8:f8:
1b:b2:86:b5:53:51:aa:1a:41:cf:bf:bc:e7:6e:9d:
bc:08:64:8f:10:65:83:b8:c8:cb:25:9b:7c:35:6d:
c5:e3:0a:3e:46:a0:1a:ad:e9:87:93:d8:91:09:48:
19:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1F:08:4E:1B:9C:7F:CA:93:95:AF:A7:52:4D:57:F3:B3:FD:3D:2C
X509v3 Authority Key Identifier:
keyid:64:F4:7C:98:44:0F:10:38:25:C8:EA:50:74:29:8B:18:CC:11:3E:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZPR8mEQPEDglyOpQdCmLGMwRPiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/Ih8IThucf8qTla-nUk1X87P9PSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/099aeb-c713-42f8-91d6-38447855d669/1/ZPR8mEQPEDglyOpQdCmLGMwRPiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.188.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:47:37:5e:8b:92:70:2b:2d:1f:c6:99:77:fd:92:92:ee:bb:
bb:b4:a0:86:e2:03:ef:cd:ba:01:9b:a4:6e:4e:9e:a8:4e:62:
56:ae:5e:3e:3a:e2:da:95:d5:bb:cb:2f:fc:72:f9:fa:06:37:
83:39:cf:92:a6:fb:e8:f2:17:aa:88:ab:85:42:dd:e7:cc:43:
9e:c7:b8:55:3b:7b:8d:da:08:57:f8:84:ce:14:31:41:5a:b6:
f2:1d:5c:36:8b:50:66:b5:63:bf:37:99:4e:8b:40:1a:aa:52:
b5:74:b5:dd:09:8f:fc:83:6d:dc:62:37:d3:b7:7a:fc:69:d6:
a0:d3:da:70:7b:f8:de:df:16:9c:6d:70:2d:11:a8:be:34:45:
f9:14:df:6a:15:a8:96:22:63:09:3a:87:25:a4:c3:97:0d:b5:
5c:59:eb:11:14:a9:f0:d2:20:d0:d8:90:b4:93:39:bc:d0:8b:
45:9e:af:1f:11:db:61:26:66:48:36:6b:db:66:b8:6b:de:a2:
c9:f9:04:70:46:57:3d:fb:94:1d:2e:ad:c2:35:65:5e:5d:e5:
c3:df:a2:a9:08:13:f8:ce:94:9b:40:bc:02:f7:19:ae:77:50:
fe:1c:79:28:68:bf:87:4a:a7:ea:f0:2b:fe:7b:cd:13:d7:de:
1b:91:b2:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org