Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/iBmUAB2cOC9RR2YFZphpg42PrJc.roa
File: iBmUAB2cOC9RR2YFZphpg42PrJc.roa (raw, json)
Hash identifier: cLZKXv6BXpmIFxCmGxNS8vxnbWVXHSNqjpS+jWq+bu0=
Subject key identifier: 88:19:94:00:1D:9C:38:2F:51:47:66:05:66:98:69:83:8D:8F:AC:97
Certificate issuer: /CN=e74c290b5bccdb7de5383ee45ba615d2f306761f
Certificate serial: 0182B4CAA5A680FD8E2F6B693C8FED684EF2
Authority key identifier: E7:4C:29:0B:5B:CC:DB:7D:E5:38:3E:E4:5B:A6:15:D2:F3:06:76:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/50wpC1vM233lOD7kW6YV0vMGdh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/iBmUAB2cOC9RR2YFZphpg42PrJc.roa
Signing time: Fri 19 Aug 2022 06:29:15 +0000
ROA not before: Fri 19 Aug 2022 06:29:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398273
IP address blocks: 185.34.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b4:ca:a5:a6:80:fd:8e:2f:6b:69:3c:8f:ed:68:4e:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74c290b5bccdb7de5383ee45ba615d2f306761f
Validity
Not Before: Aug 19 06:29:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=881994001d9c382f51476605669869838d8fac97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:47:a3:c2:10:c5:d3:13:67:55:f2:27:ff:b9:
21:63:40:08:1f:45:91:33:08:a7:b1:0c:36:f4:6f:
bb:6c:d5:2a:97:f8:15:21:31:37:76:30:5a:d3:4f:
54:33:e1:d4:9a:f4:9d:89:8c:cf:54:b7:4a:74:66:
c5:14:da:e7:e2:30:a8:b1:52:c4:f5:bd:51:90:4d:
71:f3:74:a6:bc:68:9a:dc:33:42:53:f7:38:c3:4b:
e7:8a:ef:c5:d0:06:92:cb:ad:2b:3c:fb:a9:73:60:
76:af:0e:b9:71:9d:1b:76:41:39:d7:2e:48:4e:8e:
c8:c0:ca:a2:d4:2a:5a:eb:57:84:ae:ff:b1:0d:2b:
72:18:02:24:1e:bd:25:a2:7e:04:bc:06:11:23:af:
f9:8d:e0:b4:72:c3:b9:0b:ee:12:10:11:e0:a2:22:
a6:28:98:68:8f:49:f8:7d:7e:fe:17:34:84:c4:83:
2b:48:78:36:ca:d2:fb:f2:41:3b:c6:fc:97:09:08:
1b:1a:7b:b1:24:7f:8d:93:79:f1:e9:f6:aa:e2:03:
fc:dd:5d:5a:5e:ff:63:6c:95:18:07:f2:3c:06:74:
a2:cf:ec:69:5d:09:9c:30:10:b4:c3:fd:6f:33:6d:
43:af:df:1a:ce:7c:46:06:7a:23:d4:af:fd:ec:a8:
13:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:19:94:00:1D:9C:38:2F:51:47:66:05:66:98:69:83:8D:8F:AC:97
X509v3 Authority Key Identifier:
keyid:E7:4C:29:0B:5B:CC:DB:7D:E5:38:3E:E4:5B:A6:15:D2:F3:06:76:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/50wpC1vM233lOD7kW6YV0vMGdh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/iBmUAB2cOC9RR2YFZphpg42PrJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/222376-5cf6-4978-a8a3-d741fb273116/1/50wpC1vM233lOD7kW6YV0vMGdh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.200.0/24
Signature Algorithm: sha256WithRSAEncryption
95:36:91:01:c6:50:d2:0f:d4:0f:16:82:40:ec:0c:b2:67:b4:
4b:eb:a2:20:01:9c:96:24:0b:d3:26:03:5c:ab:65:87:2a:87:
ce:dc:00:03:b7:e5:de:46:ad:87:5e:c9:63:55:ec:74:78:10:
8e:60:55:28:10:76:ea:38:4c:57:7b:0f:bf:3e:b6:da:30:69:
10:34:aa:6a:19:13:34:72:5d:07:aa:58:6b:ad:89:f3:1a:b0:
80:cd:2c:1c:42:a8:3b:fb:44:91:c9:d6:b9:ff:d6:fd:98:7b:
b5:ce:0b:6a:b5:c5:f0:75:09:a6:c0:8d:45:72:29:f6:a5:c0:
c4:b6:27:0c:0e:c9:e5:ad:f4:3b:07:05:8e:7c:c3:bb:ee:32:
d0:40:b6:47:4b:98:bd:ab:16:0a:f5:ea:53:70:9d:bf:bb:88:
f3:8e:17:da:42:d4:1b:e3:02:86:eb:26:27:9e:4b:4d:04:1a:
23:20:da:c5:59:b1:dc:7b:8e:04:36:1b:63:75:98:98:2c:5f:
ee:76:59:4c:3a:3f:ea:63:df:35:a3:29:08:c3:73:ef:b6:cb:
b3:7d:ad:de:80:1b:13:1f:66:17:23:4b:9c:e7:f5:68:70:69:
8b:b4:8a:45:a7:36:6c:d7:4d:d9:1e:e7:ec:27:07:8a:8d:25:
ad:fb:22:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:01 2024 by rpki-client on console-ams.rpki-client.org