Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/Ip13VIXo88fAB1hz8k0G2YCKz0o.roa
File: Ip13VIXo88fAB1hz8k0G2YCKz0o.roa (raw, json)
Hash identifier: OA0m4C5MsjAQdx46jApHE61XZwO5PG4hHn56PIHWTXo=
Subject key identifier: 22:9D:77:54:85:E8:F3:C7:C0:07:58:73:F2:4D:06:D9:80:8A:CF:4A
Certificate issuer: /CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Certificate serial: 0BFD6C45
Authority key identifier: 85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/Ip13VIXo88fAB1hz8k0G2YCKz0o.roa
Signing time: Sat 01 Jan 2022 01:58:43 +0000
ROA not before: Sat 01 Jan 2022 01:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61062
IP address blocks: 185.247.196.0/22 maxlen: 24
2a0d:cb80::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201157701 (0xbfd6c45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854c0db0065844d9594dfe8dd8efd77ed1e493f8
Validity
Not Before: Jan 1 01:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=229d775485e8f3c7c0075873f24d06d9808acf4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a2:03:7c:7f:bc:7c:14:bb:c1:5b:f7:92:f2:
c6:10:0f:de:b9:e1:98:7a:2d:9e:77:c2:1e:3f:fe:
4b:fb:25:11:a6:f0:d1:51:ef:b8:e5:85:8c:d6:40:
3f:11:c1:ea:4d:d8:29:82:90:81:ec:0a:c8:87:9d:
13:35:ca:8a:92:5a:74:29:76:88:07:12:aa:30:2d:
1e:3a:1f:46:c3:ba:10:af:ea:e1:07:0a:67:82:c7:
ea:0c:56:be:f9:9f:df:cc:be:c3:ed:7a:81:1b:fe:
ed:e4:c2:67:d7:c9:9f:b8:8c:53:f4:b0:8e:6c:7e:
fd:14:4d:d2:41:e5:8d:d2:43:c5:bc:b2:9b:fa:b2:
3c:61:53:15:eb:30:24:0c:ec:c3:f5:db:ed:7a:71:
d2:de:e0:a5:f0:df:f5:9f:c9:55:3d:66:ea:6c:cb:
aa:49:5c:09:82:fe:34:96:31:fc:fe:32:d5:08:ef:
8f:19:52:b0:f3:04:23:ed:e1:72:55:f7:1c:f5:58:
b9:c5:22:29:2a:8a:2d:8b:91:1e:90:8b:49:82:87:
39:2e:12:a1:3e:53:25:36:1e:14:a7:6f:6e:da:0d:
02:54:b6:7b:fa:3a:b1:5c:84:2e:2b:eb:42:e1:53:
4c:f9:56:d0:14:eb:fc:22:37:5e:f8:b4:a6:94:51:
cf:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:9D:77:54:85:E8:F3:C7:C0:07:58:73:F2:4D:06:D9:80:8A:CF:4A
X509v3 Authority Key Identifier:
keyid:85:4C:0D:B0:06:58:44:D9:59:4D:FE:8D:D8:EF:D7:7E:D1:E4:93:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUwNsAZYRNlZTf6N2O_XftHkk_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/Ip13VIXo88fAB1hz8k0G2YCKz0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ec67db-c7a1-48a6-ab94-60b93595bac9/1/hUwNsAZYRNlZTf6N2O_XftHkk_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.196.0/22
IPv6:
2a0d:cb80::/29
Signature Algorithm: sha256WithRSAEncryption
80:f6:59:01:94:79:45:cb:bc:3c:74:63:27:2a:61:97:2a:d0:
a4:c6:65:f3:23:fa:6a:70:7e:27:8a:61:23:67:a1:c2:ab:6a:
81:33:36:0e:58:6c:3d:9d:b7:58:19:0f:fc:eb:ea:fa:c6:cf:
a1:54:48:41:85:aa:4c:df:d7:62:41:a5:e3:32:5c:42:95:95:
c5:f3:cd:c5:7f:9f:cb:44:fa:66:4e:5c:03:8a:76:a1:da:f6:
7c:90:b1:2a:e1:19:b2:ef:47:3d:2a:cc:e6:a0:d4:8d:d2:2a:
23:6c:e9:fa:4d:49:8c:43:ff:58:23:65:04:5c:e2:38:3c:7f:
77:78:56:79:f0:35:6b:19:45:ca:e2:39:4a:2e:d2:e2:be:73:
99:9c:15:49:b9:ec:6e:24:4b:f3:1e:bc:98:d3:40:2a:0e:49:
b6:58:46:b4:b3:29:9f:dc:63:f4:65:6a:03:a7:02:53:cd:5f:
68:ee:f4:fa:15:c1:24:01:70:4f:cb:65:2a:4a:18:43:25:c6:
48:c4:9b:41:3f:d0:13:6e:35:8c:cc:4c:56:c4:90:58:ce:9a:
ba:8e:4f:38:ef:05:50:5a:28:df:25:5b:89:2e:fe:07:b4:a0:
16:68:c2:7e:ae:13:2e:48:39:47:32:07:fa:59:f4:ca:67:a4:
2e:a1:3e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:00 2023 by rpki-client on console-fra.rpki-client.org