Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/T0WRpfTu451686AqNTI85DfAWF8.roa
File: T0WRpfTu451686AqNTI85DfAWF8.roa (raw, json)
Hash identifier: 8k8s396FF79/nQE2M/voiwm5C958j8VnH9KD03al0KQ=
Subject key identifier: 4F:45:91:A5:F4:EE:E3:9D:7A:F3:A0:2A:35:32:3C:E4:37:C0:58:5F
Certificate issuer: /CN=3cd37ec23719b2f142f46e6f3317664034adf598
Certificate serial: 10FF9259
Authority key identifier: 3C:D3:7E:C2:37:19:B2:F1:42:F4:6E:6F:33:17:66:40:34:AD:F5:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNN-wjcZsvFC9G5vMxdmQDSt9Zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/T0WRpfTu451686AqNTI85DfAWF8.roa
Signing time: Sat 01 Jan 2022 08:59:40 +0000
ROA not before: Sat 01 Jan 2022 08:59:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43395
IP address blocks: 185.83.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285184601 (0x10ff9259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cd37ec23719b2f142f46e6f3317664034adf598
Validity
Not Before: Jan 1 08:59:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f4591a5f4eee39d7af3a02a35323ce437c0585f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:88:45:00:3b:a0:c7:73:15:30:90:ae:c0:4c:
9e:d6:b1:ae:1e:41:88:c2:f8:95:1a:5b:ff:42:30:
3e:5f:a5:73:9d:d0:d9:51:8f:f8:23:3d:fb:7c:ea:
8b:f4:8e:20:ae:29:af:7d:49:f0:73:50:49:8b:f6:
22:88:d9:38:3d:d0:28:85:83:51:e8:b7:ea:21:a9:
7d:7d:05:50:34:5d:9c:81:e7:2e:ee:58:e0:09:49:
5a:62:c1:d4:37:c3:08:08:80:b0:7e:d5:5c:49:6b:
64:22:eb:81:46:e7:f7:2a:f4:b8:43:6c:73:f5:f8:
ca:2a:a5:21:86:3b:c1:43:88:51:68:8f:4e:1a:28:
d5:1e:8c:23:64:06:c4:eb:4c:b3:07:92:8a:bb:94:
9b:8d:bd:d0:77:38:a8:68:95:80:2d:e4:30:7f:71:
71:b7:f3:5b:f5:d7:53:e0:6e:8e:40:fe:90:7e:ba:
a5:d3:0b:55:56:7a:1a:c8:bc:ae:e6:de:ea:30:56:
50:33:1a:a4:ac:4a:39:03:e5:71:29:44:ea:d1:6a:
ca:b2:ca:2d:65:ea:a8:ab:d1:80:80:8c:86:8a:02:
b5:6c:d8:8c:c0:64:f2:39:30:24:66:02:2b:18:f7:
dc:40:0c:bb:d4:66:0c:af:18:35:be:76:3b:2d:76:
95:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:45:91:A5:F4:EE:E3:9D:7A:F3:A0:2A:35:32:3C:E4:37:C0:58:5F
X509v3 Authority Key Identifier:
keyid:3C:D3:7E:C2:37:19:B2:F1:42:F4:6E:6F:33:17:66:40:34:AD:F5:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNN-wjcZsvFC9G5vMxdmQDSt9Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/T0WRpfTu451686AqNTI85DfAWF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3f7e56-0916-47ac-8586-a9388f31b47e/1/PNN-wjcZsvFC9G5vMxdmQDSt9Zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.182.0/24
Signature Algorithm: sha256WithRSAEncryption
97:3d:99:d9:02:32:99:73:a8:a5:fb:e0:8f:42:7a:86:8a:0a:
b7:28:6d:d9:9e:50:64:75:4d:81:79:bb:d6:7a:86:26:e5:e0:
e9:28:50:80:be:e3:00:b0:b0:b1:9b:1a:6a:c4:16:84:41:fd:
5a:60:52:89:fd:25:e1:f4:61:2f:17:c0:cd:da:48:4c:9a:2b:
6e:0a:6c:a6:5c:46:fb:d9:81:78:cd:f8:9f:49:7a:05:9e:f5:
af:6a:0f:51:a9:fa:07:38:6b:b6:17:3e:f8:c0:31:44:34:e5:
46:2c:92:03:ac:ad:9f:bf:a0:de:b3:11:3b:6a:6a:81:c0:5c:
e7:9f:55:64:38:c6:ac:99:f2:9b:f6:bd:f8:74:a5:6b:54:41:
73:23:65:04:04:f6:3b:2f:78:31:12:87:48:2f:ba:6e:34:2a:
38:04:61:03:80:82:1b:92:cf:22:c5:60:2a:6f:5d:ce:d2:ef:
fd:91:e0:91:9c:f6:19:3c:dc:32:10:ea:e5:eb:85:07:1b:f9:
ac:36:36:08:ff:95:24:2d:b8:6a:fd:de:dc:d1:a6:e1:74:2e:
4c:cf:e0:9e:dc:d0:6c:9c:11:ab:e8:d0:ca:e4:a5:44:59:9b:
91:b5:da:f0:88:0b:61:01:35:73:53:7b:c9:80:d9:3e:a6:b5:
a3:a0:c6:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:38 2023 by rpki-client on console-ams.rpki-client.org