Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/44cbb0-1aee-4490-ac52-c941e6a9139f/1/ikkd4ebVFwrBzSqO-FjJ0lSpbGg.roa
File: ikkd4ebVFwrBzSqO-FjJ0lSpbGg.roa (raw, json)
Hash identifier: O4BOMZ5VVk0dosUzHDlvQhvEDtYgmqPAuI7WUz1gxTs=
Subject key identifier: 8A:49:1D:E1:E6:D5:17:0A:C1:CD:2A:8E:F8:58:C9:D2:54:A9:6C:68
Certificate issuer: /CN=f9c256745bd273c9186ae296368a2117d3d2cad9
Certificate serial: 01824A6A661D4719E2A9C04C6CF4C7DF1603
Authority key identifier: F9:C2:56:74:5B:D2:73:C9:18:6A:E2:96:36:8A:21:17:D3:D2:CA:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-cJWdFvSc8kYauKWNoohF9PSytk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/44cbb0-1aee-4490-ac52-c941e6a9139f/1/ikkd4ebVFwrBzSqO-FjJ0lSpbGg.roa
Signing time: Fri 29 Jul 2022 14:44:23 +0000
ROA not before: Fri 29 Jul 2022 14:44:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39307
IP address blocks: 185.210.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4a:6a:66:1d:47:19:e2:a9:c0:4c:6c:f4:c7:df:16:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9c256745bd273c9186ae296368a2117d3d2cad9
Validity
Not Before: Jul 29 14:44:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a491de1e6d5170ac1cd2a8ef858c9d254a96c68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7a:48:95:9d:43:10:82:55:52:94:17:69:dd:
29:74:b3:db:d3:e7:c4:2c:82:b1:b3:e6:24:23:77:
bb:be:a7:53:fe:22:42:ba:c9:97:05:68:e2:be:e8:
3f:f1:b1:1c:80:fd:bc:0a:9e:37:2f:f5:3d:9e:02:
f9:9d:f7:34:ea:7a:07:93:c2:44:ae:8d:c6:a0:a3:
9b:64:65:5e:19:20:99:5c:a1:68:6b:0a:85:b3:55:
d8:cb:70:ac:12:6c:f9:f6:d8:6c:19:3c:97:48:16:
7f:fe:a1:a7:a0:2b:ab:0d:45:8c:df:45:b2:c8:94:
26:5d:f9:39:39:1a:82:fe:8e:2f:d3:6b:22:0b:b1:
79:46:a8:f6:9e:a3:d3:33:28:69:de:67:00:ba:1c:
99:d2:2b:86:a5:38:af:f1:6c:02:1a:f9:d3:51:78:
83:e2:29:3c:0d:9d:b4:ab:26:0d:a6:07:29:12:27:
e9:6e:93:7f:32:3d:47:80:e8:22:62:a9:8c:da:9c:
57:f2:2e:23:a1:e2:02:89:c3:ed:7f:cd:b0:37:8b:
7a:78:12:e3:f0:af:d8:a2:bc:7f:6a:65:18:0b:ee:
8b:e0:09:cf:56:22:20:75:89:89:dd:a7:d7:3f:c2:
a1:6b:d8:f4:a0:3e:34:3a:e0:2c:c1:d3:7a:e4:9b:
cf:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:49:1D:E1:E6:D5:17:0A:C1:CD:2A:8E:F8:58:C9:D2:54:A9:6C:68
X509v3 Authority Key Identifier:
keyid:F9:C2:56:74:5B:D2:73:C9:18:6A:E2:96:36:8A:21:17:D3:D2:CA:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-cJWdFvSc8kYauKWNoohF9PSytk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/44cbb0-1aee-4490-ac52-c941e6a9139f/1/ikkd4ebVFwrBzSqO-FjJ0lSpbGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/44cbb0-1aee-4490-ac52-c941e6a9139f/1/1-cJWdFvSc8kYauKWNoohF9PSytk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.160.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:86:f7:02:fb:9e:17:53:3c:6d:ac:51:b0:60:7e:ca:b2:c0:
4c:e4:fa:6b:df:03:21:89:da:15:43:89:46:64:c6:be:52:4e:
46:ee:93:11:4e:7b:03:c5:65:f3:5d:ae:48:d3:00:b1:a0:52:
6b:ec:9c:82:7b:c2:33:49:3b:b4:da:92:ca:b3:a5:d1:60:6d:
85:18:87:12:f9:19:16:74:a3:9e:a9:b9:de:3a:8c:6b:a8:c5:
f0:19:22:ff:02:f1:60:50:cb:84:1b:32:df:e3:b3:c6:ca:12:
a7:4c:35:d8:ff:21:d0:73:70:a8:c6:7c:ed:b7:fe:f7:d9:c8:
d8:3d:43:b4:90:1e:a4:ed:e9:0a:16:bb:86:1a:23:d9:61:a2:
51:16:dc:8c:76:6b:9d:cb:a8:8f:ca:82:5b:58:b9:3f:98:fb:
8a:9d:9d:f3:d1:b8:a2:20:1f:e4:3e:8b:2f:d7:a7:dc:45:d2:
e9:86:93:37:c5:39:85:2d:32:69:e2:02:a9:cc:84:8b:b0:a3:
25:46:1a:98:9e:4d:9b:27:86:66:4d:cc:56:8e:fd:45:45:cd:
43:c5:37:7d:b1:d9:84:ff:82:b7:97:83:43:46:e9:72:2a:dc:
7d:30:d2:bd:af:52:86:9b:9d:c8:2b:32:81:b5:53:7d:ae:de:
0a:b4:9c:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:48 2023 by rpki-client on console-ams.rpki-client.org