Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/vRS10RoiPCDH5KU68xh9lc5Gsik.roa
File: vRS10RoiPCDH5KU68xh9lc5Gsik.roa (raw, json)
Hash identifier: 7hmcECeDzJJ4u0EfxhhJWPBOJfP/6KRigNlGyc4NLzo=
Subject key identifier: BD:14:B5:D1:1A:22:3C:20:C7:E4:A5:3A:F3:18:7D:95:CE:46:B2:29
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01836651F015D495DE88822188F418490460
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/vRS10RoiPCDH5KU68xh9lc5Gsik.roa
Signing time: Thu 22 Sep 2022 17:49:49 +0000
ROA not before: Thu 22 Sep 2022 17:49:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 185.83.200.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:66:51:f0:15:d4:95:de:88:82:21:88:f4:18:49:04:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Sep 22 17:49:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd14b5d11a223c20c7e4a53af3187d95ce46b229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ad:22:ec:f8:a5:c5:db:c6:16:87:7a:5f:4c:
c2:f6:9b:e1:cd:70:f4:25:cb:76:fc:80:75:e6:5c:
dd:f3:c8:4a:36:41:95:25:5c:65:2a:d3:75:33:14:
b0:4d:b9:61:0c:74:72:e3:24:fe:cc:53:c0:f5:64:
8f:84:d7:b4:0e:59:1a:93:a5:02:61:e6:5f:64:7c:
4d:a3:9f:b0:f2:89:2a:0a:72:58:9d:9d:26:28:2d:
c5:c8:45:f6:ce:66:9f:43:f6:f4:1d:c7:11:89:00:
87:57:61:8b:a6:bc:85:dd:10:9f:40:93:06:20:1f:
81:0f:b6:eb:bc:03:a4:db:9d:7a:e0:d1:f8:6a:50:
f1:58:fb:82:a7:02:a5:99:d0:da:01:e7:8f:2a:a2:
5a:89:7a:a7:69:76:7e:f7:3d:0c:40:11:a7:94:52:
e2:72:8f:c2:a6:f0:52:84:fd:a7:55:e3:55:76:40:
fc:75:1e:18:1e:a9:f6:8b:b0:b9:25:a5:3b:99:90:
c2:71:10:f0:1c:2a:5b:b9:21:14:24:4e:d4:9a:3b:
31:f7:97:34:b1:2d:70:09:d9:c7:9f:76:66:68:38:
26:4e:cb:a1:27:5e:41:f5:14:41:7a:df:3a:ec:d4:
87:bc:93:52:ad:05:d2:78:84:9d:22:3a:6f:71:fe:
71:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:14:B5:D1:1A:22:3C:20:C7:E4:A5:3A:F3:18:7D:95:CE:46:B2:29
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/vRS10RoiPCDH5KU68xh9lc5Gsik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.200.0/23
Signature Algorithm: sha256WithRSAEncryption
44:8b:aa:8a:ec:f6:18:8a:e6:d2:af:f4:ba:2e:b1:66:af:97:
f1:77:04:b5:81:25:2f:a0:6b:85:64:ca:7e:02:43:3c:81:3e:
73:36:ff:92:61:e8:73:89:8b:eb:5d:0c:ca:52:19:b0:ed:95:
e6:8b:27:e1:ab:78:e4:60:5e:b7:dc:b2:8d:25:bc:09:e9:3d:
a6:8e:de:eb:6c:e0:8a:8a:f3:f6:50:a0:68:99:15:6a:49:f5:
08:78:5e:07:55:4f:4a:e1:35:00:ce:a2:5a:38:2b:05:24:3d:
27:74:03:74:7b:aa:e1:64:0f:a6:d6:5f:34:b2:b4:f9:a2:f0:
3b:12:0a:6d:33:b7:bd:39:57:39:19:91:11:b6:ef:9e:d5:3c:
72:a4:29:17:43:f7:6a:85:74:95:1d:cf:90:a5:3a:df:86:20:
ab:78:16:c5:b3:e1:83:2f:14:c2:5a:e8:80:ea:6c:ad:9f:d1:
82:81:2b:ef:15:be:8a:90:4f:c9:e8:56:ec:ef:a2:d8:d6:25:
d5:6c:6d:71:92:53:ed:43:4b:3f:8f:4e:52:d4:81:3d:d5:47:
9a:fa:a1:44:76:60:73:47:9b:f6:74:34:76:fe:94:53:7b:e4:
ac:8b:06:a4:67:82:7a:5d:9e:e4:dd:a3:0b:12:33:8f:c1:dc:
ec:a7:f5:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:14 2023 by rpki-client on console-fra.rpki-client.org