Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/dmSJriNhFN8aGLHSYDR4PaptzaY.roa
File: dmSJriNhFN8aGLHSYDR4PaptzaY.roa (raw, json)
Hash identifier: A8GxfK5yT4Y7wOfqqz8CmJlslIm94dtF1t6bKPSJJHo=
Subject key identifier: 76:64:89:AE:23:61:14:DF:1A:18:B1:D2:60:34:78:3D:AA:6D:CD:A6
Certificate issuer: /CN=992b86095ce558d2e9618728a44228a27be9098f
Certificate serial: 0181DCD127F50E244B3361EED1C78D9DB89A
Authority key identifier: 99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/dmSJriNhFN8aGLHSYDR4PaptzaY.roa
Signing time: Fri 08 Jul 2022 07:58:23 +0000
ROA not before: Fri 08 Jul 2022 07:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 166.108.160.0/22 maxlen: 24
166.108.172.0/22 maxlen: 24
166.108.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dc:d1:27:f5:0e:24:4b:33:61:ee:d1:c7:8d:9d:b8:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=992b86095ce558d2e9618728a44228a27be9098f
Validity
Not Before: Jul 8 07:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=766489ae236114df1a18b1d26034783daa6dcda6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ba:c0:da:03:63:26:33:48:6c:83:26:38:2f:
69:32:41:31:de:3e:4d:e9:f6:00:62:eb:07:04:26:
43:59:27:5c:a4:24:1a:63:a5:40:27:79:9d:d5:ad:
60:28:e1:09:f7:dd:01:63:a4:32:57:f1:cd:3d:49:
ae:55:53:3f:00:cf:af:ef:4d:b7:d3:cf:85:cd:d0:
3e:9c:c3:93:51:97:7a:75:47:bf:58:b5:2a:dd:44:
93:8f:98:3f:77:41:18:fd:d1:83:fa:8f:f3:cd:c4:
11:82:00:b7:9a:a6:ae:55:15:bb:c5:80:49:5c:36:
62:38:b0:fd:b5:50:ae:fb:ab:c7:a0:0e:f0:34:ad:
03:bd:d8:cd:51:93:70:b2:5d:23:e2:48:a7:6f:04:
27:cf:50:2e:0a:ed:46:bd:a4:a8:44:4e:95:55:40:
71:ee:95:da:70:a1:f6:ee:85:14:3b:ed:82:4b:ee:
8f:4c:1e:0c:df:a0:77:19:f7:eb:cb:08:73:5f:06:
92:02:e1:eb:40:43:ca:40:a8:bf:05:df:5e:1f:15:
31:45:6f:19:94:05:bb:ea:1f:54:5d:82:a1:a9:09:
6c:6a:db:e9:dd:be:70:68:cb:ca:c0:ac:43:ae:aa:
d3:d4:36:d7:8b:e6:46:dc:df:53:15:fb:66:8b:d6:
c3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:64:89:AE:23:61:14:DF:1A:18:B1:D2:60:34:78:3D:AA:6D:CD:A6
X509v3 Authority Key Identifier:
keyid:99:2B:86:09:5C:E5:58:D2:E9:61:87:28:A4:42:28:A2:7B:E9:09:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSuGCVzlWNLpYYcopEIoonvpCY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/dmSJriNhFN8aGLHSYDR4PaptzaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/8ea9b9-3b6e-4fdf-b5d1-f04fdcc09e51/1/mSuGCVzlWNLpYYcopEIoonvpCY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
166.108.160.0/22
166.108.168.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:43:67:f2:12:2a:61:e0:9d:17:56:14:cb:49:e3:45:1a:27:
9d:78:78:97:d7:0e:78:53:ca:ba:d4:34:6e:08:31:d7:66:18:
dc:50:48:91:c3:52:ba:e5:26:14:70:20:94:a3:1d:ea:77:ec:
be:e1:56:23:cc:b7:21:72:7b:d1:a6:b9:f9:8d:03:e5:ec:7f:
97:8d:58:cc:1c:48:74:73:9c:ff:14:ea:d4:d0:d4:a2:98:52:
19:92:80:00:b0:ae:a1:14:a6:df:74:1a:19:71:ed:60:a0:c5:
c0:23:04:e4:fb:57:97:f0:7e:e0:ac:10:b1:4a:c9:f7:84:45:
aa:33:fe:fa:e9:d4:9c:06:b2:aa:87:ec:36:25:40:39:53:e7:
3e:c8:0e:da:6a:7e:03:7e:5d:f9:81:2c:ba:01:94:0a:ca:b0:
0c:ad:3c:91:af:1c:17:41:ec:f5:a8:fc:fa:0f:4b:87:23:b0:
32:8b:ae:26:e5:6d:b0:c5:9b:c1:49:ca:14:8e:d4:48:77:1a:
10:df:cc:b7:16:95:ae:c0:4f:23:14:1c:f1:23:99:d2:9d:3a:
75:13:39:02:86:50:b2:4f:14:20:4a:91:31:ce:37:24:2f:8f:
8b:c2:c7:1c:9c:2a:71:46:50:ee:fa:ec:ba:1d:55:22:a6:d0:
29:ea:b8:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:46 2024 by rpki-client on console-fra.rpki-client.org