Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/538iH001I8xV8WG9adGGt1TihQw.roa
File: 538iH001I8xV8WG9adGGt1TihQw.roa (raw, json)
Hash identifier: nM26qZgaHggh5tdARM5rrk+z3xlzNE+OdZTyTUhyQLY=
Subject key identifier: E7:7F:22:1F:4D:35:23:CC:55:F1:61:BD:69:D1:86:B7:54:E2:85:0C
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01836AE88C09B08B3A310ED0ABBFADF6C7F6
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/538iH001I8xV8WG9adGGt1TihQw.roa
Signing time: Fri 23 Sep 2022 15:12:48 +0000
ROA not before: Fri 23 Sep 2022 15:12:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41378
IP address blocks: 185.83.202.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6a:e8:8c:09:b0:8b:3a:31:0e:d0:ab:bf:ad:f6:c7:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Sep 23 15:12:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e77f221f4d3523cc55f161bd69d186b754e2850c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5a:42:f5:1f:ce:c2:1f:8c:41:86:4f:a7:52:
cc:9b:07:63:88:26:a1:e6:93:b4:92:50:0e:b7:26:
f6:bb:02:c9:dc:80:21:cc:aa:1c:84:fe:71:f0:8c:
af:13:c8:54:7c:62:2a:a6:3e:a6:90:e0:6c:1f:d3:
17:4a:e6:4e:12:1b:21:ce:0a:14:e5:71:1a:8b:75:
36:e7:b3:77:86:a5:a3:3f:3b:14:9f:aa:33:9a:d6:
69:c8:41:e2:4d:44:8e:a9:11:4f:4a:7c:03:4d:dd:
2c:02:ad:f1:d8:64:32:b8:12:d2:3e:3e:ef:4a:24:
c0:c7:65:b4:b0:c7:68:91:27:19:e3:fa:21:67:94:
68:86:6c:7d:79:d5:ac:b9:b2:3f:23:ed:ef:70:d3:
b8:67:23:13:ff:a9:ae:2e:77:60:e2:1c:4b:07:e6:
30:ba:41:22:0c:25:60:e9:50:e7:83:53:31:46:72:
28:e1:1d:51:bc:b3:6f:ba:f0:e5:da:c9:1e:c2:c5:
03:a1:f4:bd:1f:8b:38:5e:9b:01:66:37:1a:a4:20:
d3:9e:28:c5:c0:4e:95:57:6b:3f:c6:a7:4b:8f:33:
c8:a8:00:76:5a:a6:4a:a5:25:d4:60:9c:31:9f:0f:
50:ab:6c:4d:9a:b3:d7:d3:d6:c4:e3:0c:f7:e0:a7:
01:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:7F:22:1F:4D:35:23:CC:55:F1:61:BD:69:D1:86:B7:54:E2:85:0C
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/538iH001I8xV8WG9adGGt1TihQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.202.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:af:a3:9d:e1:cd:69:bd:d3:f3:34:09:df:a7:a6:05:68:84:
ce:88:29:58:84:b5:5c:74:31:66:f3:9a:8c:92:91:c4:5c:8e:
2c:f0:c8:da:74:8f:a3:c1:15:0d:28:cd:cf:10:26:c4:3a:78:
28:bd:85:12:fb:7b:37:f2:44:ab:23:a8:b3:3f:39:01:ba:94:
b5:ed:52:36:66:ad:5e:52:b0:fd:d9:b8:da:b5:10:49:56:5e:
7f:66:44:0b:ab:32:46:4f:7e:c4:dd:71:4b:5e:1e:02:35:86:
06:73:da:bf:38:f0:d5:3b:6f:04:67:13:5f:5d:91:f2:cc:6d:
4b:23:5c:36:2e:aa:46:f7:f8:d0:60:fe:29:41:da:a3:8d:b4:
53:27:cb:42:a9:61:c1:2c:e9:97:af:b1:72:03:a5:1a:1d:9a:
41:f7:bd:90:86:7e:9e:dc:55:08:1a:94:bf:87:02:b8:80:c8:
33:06:67:2b:43:fd:e6:07:14:df:cc:5a:8d:d7:b2:47:f7:ad:
a6:79:ce:60:da:38:c6:17:80:63:07:1f:3f:33:a2:ee:98:f7:
27:51:08:20:19:a6:bc:f4:8b:13:90:13:30:32:35:f7:1c:62:
b1:59:30:64:39:eb:ad:68:c8:76:9a:71:e2:ba:24:12:55:66:
57:66:dd:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org