Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/eef304-a06a-449c-a37c-8bf488610bf5/1/ikx4Cpd2sS_moYpYK7xVgEEG5W4.roa
File: ikx4Cpd2sS_moYpYK7xVgEEG5W4.roa (raw, json)
Hash identifier: BiQ68ClDHsE1OPVu8ebMv7CN4T8sP7E6p7DJFt3Qr1U=
Subject key identifier: 8A:4C:78:0A:97:76:B1:2F:E6:A1:8A:58:2B:BC:55:80:41:06:E5:6E
Certificate issuer: /CN=6dc66ca5c9e769ce919334fb1f66c8bd9fcaae96
Certificate serial: 018326EC55C0D45F1280FE975C55E9A1C30C
Authority key identifier: 6D:C6:6C:A5:C9:E7:69:CE:91:93:34:FB:1F:66:C8:BD:9F:CA:AE:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bcZspcnnac6RkzT7H2bIvZ_KrpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/eef304-a06a-449c-a37c-8bf488610bf5/1/ikx4Cpd2sS_moYpYK7xVgEEG5W4.roa
Signing time: Sat 10 Sep 2022 10:22:45 +0000
ROA not before: Sat 10 Sep 2022 10:22:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 185.94.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:ec:55:c0:d4:5f:12:80:fe:97:5c:55:e9:a1:c3:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dc66ca5c9e769ce919334fb1f66c8bd9fcaae96
Validity
Not Before: Sep 10 10:22:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a4c780a9776b12fe6a18a582bbc55804106e56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3a:b6:9a:a7:03:cb:8b:89:58:36:99:28:bf:
1b:cd:98:29:78:82:31:a5:c8:31:94:1b:c7:d4:89:
a5:4f:12:b8:bf:df:60:00:65:c4:39:de:af:59:73:
6d:e5:b7:56:a1:66:48:90:63:69:66:9f:bf:ec:fc:
be:23:e3:04:e9:1e:6a:23:76:59:2a:5f:6e:80:4d:
b7:80:12:75:68:46:9d:84:b5:1d:3d:5e:81:02:52:
da:ac:5c:4e:7a:44:b5:78:95:1f:4a:4c:a6:14:de:
1e:0d:dd:ab:ec:34:7e:bb:01:c1:95:cc:11:92:6f:
37:61:7e:ce:87:f9:11:07:6b:6d:f2:54:30:23:95:
a4:aa:19:c3:bb:cd:54:fd:dd:fc:c3:33:79:4a:bc:
38:5c:a0:ac:6b:d1:4f:64:23:34:95:52:e8:0f:13:
0c:6c:75:f3:4e:30:02:c6:79:f0:e7:67:42:c5:2e:
6e:a9:ae:5c:4a:f7:49:39:48:3a:84:95:06:84:6e:
a5:bf:4f:c6:25:ae:db:a8:25:29:2f:4e:52:d7:f8:
34:96:51:93:cd:07:e5:b8:8b:e7:8a:8e:3d:2e:5c:
2f:56:6b:7e:0d:c7:1b:7e:10:6f:9d:84:71:88:f6:
9b:43:23:61:f3:45:95:f2:ce:ee:d2:37:b6:c6:ee:
ee:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:4C:78:0A:97:76:B1:2F:E6:A1:8A:58:2B:BC:55:80:41:06:E5:6E
X509v3 Authority Key Identifier:
keyid:6D:C6:6C:A5:C9:E7:69:CE:91:93:34:FB:1F:66:C8:BD:9F:CA:AE:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bcZspcnnac6RkzT7H2bIvZ_KrpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eef304-a06a-449c-a37c-8bf488610bf5/1/ikx4Cpd2sS_moYpYK7xVgEEG5W4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/eef304-a06a-449c-a37c-8bf488610bf5/1/bcZspcnnac6RkzT7H2bIvZ_KrpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.66.0/24
Signature Algorithm: sha256WithRSAEncryption
01:b5:e8:b0:2f:e9:7b:90:e0:4e:9a:e6:b4:87:32:05:09:c0:
dd:1b:92:e4:1d:a8:e4:1e:1b:24:93:25:b9:98:00:5a:98:32:
cf:d8:2f:91:76:3a:c2:31:11:1b:07:79:23:4b:73:ea:ef:f0:
42:9a:cc:7d:f9:94:c3:1b:76:a3:66:4c:f5:ab:4f:a6:43:1f:
c8:be:63:a3:c1:11:a2:52:57:15:d1:98:7d:d7:1e:54:31:0c:
ae:ab:1d:50:71:f0:59:03:ae:89:da:3b:df:b4:af:47:50:55:
31:40:b4:57:dd:99:b0:8e:5b:4e:54:cc:aa:7f:42:42:04:e7:
a6:59:2a:b6:82:5b:82:04:d7:37:23:f6:d7:f0:ed:73:34:d6:
c3:34:64:f3:52:90:bb:7f:eb:3a:83:b5:22:26:ed:d0:ba:75:
59:88:ea:83:b4:75:13:4b:69:17:f2:01:89:07:a8:a8:db:85:
56:d4:09:23:10:76:c5:25:5c:fa:ee:85:b8:b8:e8:2a:93:ca:
06:a7:61:45:8d:60:a8:36:31:64:f1:b9:a4:21:d7:16:df:46:
aa:b4:e1:dc:88:55:d7:fb:03:20:d9:67:24:2d:b5:1c:ca:6b:
86:f8:c2:a1:fa:82:3e:2c:f5:8c:3d:d9:98:f3:3d:c4:7f:3f:
9b:91:5e:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:33 2023 by rpki-client on console-ams.rpki-client.org