Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/4TA8_Ikpr_ZMXMPYmv6ln7RTFH8.roa
File: 4TA8_Ikpr_ZMXMPYmv6ln7RTFH8.roa (raw, json)
Hash identifier: Iez4w3ms1VCsZXfDWew0ZahAs+bwoxPwavAg5fkuCRc=
Subject key identifier: E1:30:3C:FC:89:29:AF:F6:4C:5C:C3:D8:9A:FE:A5:9F:B4:53:14:7F
Certificate issuer: /CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Certificate serial: 111BB7A1
Authority key identifier: 37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/4TA8_Ikpr_ZMXMPYmv6ln7RTFH8.roa
Signing time: Sat 01 Jan 2022 11:58:35 +0000
ROA not before: Sat 01 Jan 2022 11:58:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198171
IP address blocks: 185.102.76.0/22 maxlen: 22
2a00:ca80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287029153 (0x111bb7a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Validity
Not Before: Jan 1 11:58:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1303cfc8929aff64c5cc3d89afea59fb453147f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:78:63:63:75:7b:08:66:45:3d:5a:38:d3:72:
76:87:d5:97:e6:31:1e:b2:69:95:fb:60:4a:63:81:
3c:f5:56:a2:3d:7b:72:08:7c:5b:85:e6:7f:ec:3f:
0c:60:5b:b0:e3:2d:79:ee:85:d1:16:d4:be:60:d8:
76:8b:c3:02:45:16:16:39:39:3a:3f:fc:b5:79:8a:
fd:5c:48:ab:40:9b:f4:b0:69:b5:2f:8d:08:ed:d4:
17:c7:d6:90:af:c9:91:8d:59:92:68:a0:9b:21:40:
7b:dd:96:c2:bf:a9:0d:85:54:d8:41:aa:5c:d5:d8:
11:ae:6b:37:f6:b9:59:61:1e:62:b4:ed:a8:91:5c:
e6:75:0f:60:f4:74:43:28:d7:38:e8:68:6a:12:f1:
8c:b5:50:ed:d7:bc:41:eb:06:51:a2:b4:34:82:05:
58:39:30:21:0c:f0:3a:fd:a1:0a:86:65:73:18:9a:
ec:a9:b0:23:a0:b4:6a:41:03:5c:cc:cb:60:2e:54:
29:67:0a:fa:e9:81:02:3c:e0:87:c8:18:9f:f3:39:
bc:11:4a:10:b2:36:02:95:aa:16:00:77:ac:e7:e2:
64:1f:5b:dd:64:ab:92:9a:52:67:69:0f:b3:2a:54:
64:b1:50:73:9c:80:a6:c4:28:6c:8c:3f:7b:3d:a1:
b7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:30:3C:FC:89:29:AF:F6:4C:5C:C3:D8:9A:FE:A5:9F:B4:53:14:7F
X509v3 Authority Key Identifier:
keyid:37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/4TA8_Ikpr_ZMXMPYmv6ln7RTFH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.76.0/22
IPv6:
2a00:ca80::/32
Signature Algorithm: sha256WithRSAEncryption
cd:5d:4c:1c:6b:90:54:7b:29:52:99:05:28:40:2a:9b:4e:25:
3a:6e:11:8b:0b:68:9d:90:44:e8:2f:e0:79:ff:f7:b5:20:11:
17:a6:d2:c6:a9:86:dd:31:80:16:9f:60:44:f0:6b:f5:2c:b0:
87:56:f4:4f:84:05:26:59:b9:bc:2e:43:e2:df:0e:af:df:d0:
d3:eb:2a:a8:d1:40:94:74:07:23:55:f0:9a:2e:00:05:44:d8:
06:54:f0:1c:8a:be:67:4f:aa:9f:ab:bf:8a:e6:bc:3b:00:cf:
2e:6e:f8:d3:df:79:1b:49:7a:40:ed:99:93:85:26:51:64:d5:
94:f1:7e:aa:00:42:25:cc:8b:8b:16:70:47:b0:a4:3a:b5:68:
c5:0d:9f:43:8f:4b:e1:fa:5b:38:3c:80:9f:2d:e2:41:ee:54:
61:19:85:4c:a5:27:9c:ab:25:92:ac:35:07:d6:cb:14:c8:9a:
d9:72:c5:8a:bf:18:65:c7:0e:4d:2d:c8:fe:48:4b:85:41:36:
db:f4:f1:9e:fb:e2:68:6e:d2:c2:3f:94:37:62:9d:c9:97:9d:
f4:ca:a0:0f:b4:16:be:0e:d2:1f:01:7f:f6:72:0c:1e:5f:d6:
e2:7a:4d:e5:9d:1b:bd:d7:79:45:84:4a:fb:64:78:57:0a:b6:
62:26:4a:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:59 2023 by rpki-client on console-fra.rpki-client.org