Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/v3G_ZNRwd6izLka98DSJE1euPXk.roa
File: v3G_ZNRwd6izLka98DSJE1euPXk.roa (raw, json)
Hash identifier: CmBj+RCnKOQDUEbjln0dGCUGIhbS23O88X0Rnco8eT0=
Subject key identifier: BF:71:BF:64:D4:70:77:A8:B3:2E:46:BD:F0:34:89:13:57:AE:3D:79
Certificate issuer: /CN=87be093097097c4457ff5aa3e5893c8c15432612
Certificate serial: 03529B1B
Authority key identifier: 87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/v3G_ZNRwd6izLka98DSJE1euPXk.roa
Signing time: Sat 01 Jan 2022 02:02:05 +0000
ROA not before: Sat 01 Jan 2022 02:02:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39409
IP address blocks: 185.216.8.0/24 maxlen: 24
2a10:9906::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55745307 (0x3529b1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87be093097097c4457ff5aa3e5893c8c15432612
Validity
Not Before: Jan 1 02:02:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf71bf64d47077a8b32e46bdf034891357ae3d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:33:59:86:c3:25:38:60:f0:56:1d:6a:57:ce:
c2:57:d1:6b:a9:e2:4e:1b:50:99:a4:0e:73:6d:d3:
95:65:f8:04:ea:f4:4f:55:52:e3:db:39:80:88:c2:
ac:04:f6:45:91:86:77:92:1a:ed:b8:95:89:58:47:
63:34:62:d1:5d:f4:df:34:42:eb:cf:97:39:ed:ad:
51:63:3b:81:ab:54:d4:71:df:83:91:cf:5a:86:97:
5d:f1:c7:f2:97:5f:66:ea:56:e0:4e:db:61:63:2c:
a6:9f:45:c6:b3:08:1a:f1:61:11:03:d5:18:af:c5:
70:b2:99:c2:af:8b:a6:4f:68:2b:45:77:79:68:b5:
70:6c:d1:43:b2:59:4d:8b:c7:b2:4b:e3:00:b0:ca:
33:e6:7b:43:d7:08:4c:3b:d3:94:de:5e:1d:34:96:
31:6f:02:44:00:d5:b2:c4:94:c5:af:63:a2:c6:d9:
b8:2c:27:c8:70:62:fa:45:90:aa:5d:bf:7d:9a:22:
54:0a:01:4e:a5:6a:c9:ab:6e:fc:d9:27:17:6a:7f:
72:65:12:1c:be:d0:78:64:d2:33:8e:a2:cd:2e:bc:
66:4a:b7:c3:c4:44:ca:b2:68:c0:8e:2c:fa:dc:a4:
2e:23:7c:d1:39:98:e7:d1:ec:cd:28:41:93:55:45:
2d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:71:BF:64:D4:70:77:A8:B3:2E:46:BD:F0:34:89:13:57:AE:3D:79
X509v3 Authority Key Identifier:
keyid:87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/v3G_ZNRwd6izLka98DSJE1euPXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.8.0/24
IPv6:
2a10:9906::/36
Signature Algorithm: sha256WithRSAEncryption
83:a8:eb:81:99:a2:03:12:56:a4:76:aa:81:23:56:9f:93:8c:
9f:bc:8f:17:77:a0:78:84:70:f9:76:c5:6f:2d:a4:23:5a:93:
2c:68:ff:f7:48:02:63:17:f1:53:3b:9c:b8:c8:68:3e:b8:e7:
ec:84:5d:f6:b8:3f:c1:2c:0e:c7:1a:e2:74:1d:8c:9c:03:c3:
95:de:7e:a2:60:05:8c:5a:ad:08:d5:fd:61:ca:bf:95:21:82:
4e:1c:08:4e:ef:a3:6e:4c:09:8a:aa:df:a0:fd:bc:3d:90:95:
af:8d:1a:20:09:e9:1a:ec:bc:0d:b7:e7:51:1e:63:1e:5d:4c:
41:c0:4c:c1:b8:53:4f:2c:ad:4f:cf:62:93:7d:7b:5a:a3:af:
4c:82:21:00:6d:a2:5a:79:03:c7:df:00:3c:35:d0:fa:68:b1:
2c:b8:15:93:c1:27:bf:a8:2b:62:ff:20:c5:42:ee:16:45:79:
cf:f1:58:7d:f8:21:cb:6f:53:71:a2:eb:ba:41:77:a9:79:1b:
b7:46:60:fb:90:b1:c3:b1:68:50:73:ed:67:d3:1e:0e:1b:00:
b8:13:15:b6:07:c6:c2:5f:3d:10:c1:fe:a4:ab:2c:7d:64:97:
1a:c8:a5:d7:35:1f:e1:3b:d2:a3:43:cf:0f:6f:6b:4b:f0:db:
9f:27:4f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:39 2023 by rpki-client on console-fra.rpki-client.org