Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/hKaXmVZDxhKW5gQsZUBzHoFsym4.roa
File: hKaXmVZDxhKW5gQsZUBzHoFsym4.roa (raw, json)
Hash identifier: vcV13M8yz5hw9WlZR9PCBuoHTNUTZAOErhHHYIcNtR8=
Subject key identifier: 84:A6:97:99:56:43:C6:12:96:E6:04:2C:65:40:73:1E:81:6C:CA:6E
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 416A5C
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/hKaXmVZDxhKW5gQsZUBzHoFsym4.roa
Signing time: Tue 22 Mar 2022 12:06:58 +0000
ROA not before: Tue 22 Mar 2022 12:06:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62370
IP address blocks: 185.244.106.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4287068 (0x416a5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Mar 22 12:06:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84a697995643c61296e6042c6540731e816cca6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:68:8b:3d:1f:c5:f5:a0:e7:40:12:af:c1:cf:
1f:a5:70:bb:12:58:8a:a0:88:fb:fd:26:33:16:89:
ea:fc:a9:2a:3a:c0:95:33:01:a3:00:0b:dd:aa:b8:
77:72:cf:52:04:cc:f6:05:2d:49:97:e4:5b:5e:6f:
12:d2:b3:ff:40:b5:17:b3:eb:6f:7b:41:23:2f:36:
4b:c3:74:33:bc:47:c2:cb:88:4a:e8:01:c2:14:c2:
be:cd:73:78:4f:32:19:40:4f:78:f4:81:1c:fa:84:
6e:7f:bf:d5:dd:7b:bb:95:84:86:5d:ab:3f:6e:b9:
f8:78:ea:1b:bf:e2:b6:f2:a4:4d:29:08:fe:02:1c:
c3:34:61:ad:15:14:a3:40:d8:ff:15:8e:51:d2:cd:
f3:b1:44:da:86:cb:1e:08:d4:fb:58:ea:9f:0d:14:
f8:8f:0c:bc:a4:9a:bc:db:62:d5:3a:82:66:fe:50:
b2:99:3d:7b:08:c5:b6:93:4c:07:67:8d:ae:94:98:
1d:65:5f:fe:13:76:83:f1:e4:78:59:2f:c1:01:24:
2d:d2:24:72:fb:ef:6f:f0:87:42:52:b9:71:77:59:
b0:0a:9a:2c:c7:6c:70:15:12:7d:75:14:9d:32:d4:
2f:56:55:1a:17:a7:b8:0d:10:c9:e5:78:3b:96:27:
77:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:A6:97:99:56:43:C6:12:96:E6:04:2C:65:40:73:1E:81:6C:CA:6E
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/hKaXmVZDxhKW5gQsZUBzHoFsym4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.106.0/23
Signature Algorithm: sha256WithRSAEncryption
30:80:12:7f:25:98:73:64:06:3c:97:32:4c:9b:24:ab:7a:69:
ff:56:13:7f:7b:d0:03:5b:85:fe:2f:82:f8:8e:9e:5f:7b:ba:
c2:69:0e:74:5d:89:42:01:e7:6d:91:43:59:3f:e9:27:dc:5e:
55:e0:d6:15:cd:51:db:1b:fe:71:74:e7:fe:c8:89:3f:55:d8:
11:55:6b:b1:a4:5c:d3:72:c5:6a:13:86:70:38:73:4c:f7:dd:
38:fb:52:5b:2c:78:72:a4:18:46:ba:c2:4d:cf:81:2e:99:75:
b3:c0:3b:f0:78:da:34:2b:c5:49:b5:df:4c:1b:51:4a:02:b8:
8c:c0:64:d8:8a:8e:e3:78:93:cb:b8:72:6d:dc:6b:b4:a9:55:
0d:9c:54:5d:f2:e2:c7:c9:4c:44:a0:5b:c6:63:b7:b6:c7:eb:
6b:4f:24:db:dd:ce:c1:d6:8c:6e:08:f1:d6:f8:7a:e2:47:8c:
d5:50:72:1f:20:a6:d8:67:dd:d6:97:58:7d:43:d1:8c:38:f7:
47:93:93:5a:e8:53:40:a9:4b:b7:1c:a5:81:61:62:96:84:97:
30:ae:db:b6:93:94:94:54:21:e3:88:6a:3b:97:dc:d4:29:c1:
d7:a1:1a:8e:06:b3:20:a6:f1:ec:27:4d:45:30:fc:d1:11:b3:
bd:d2:64:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:57 2023 by rpki-client on console-ams.rpki-client.org