Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a85f3d-65a2-4f6c-9cb9-82660ee4eac4/1/in8DyGbbwBXwSi0Xt7THNS8kDxQ.roa
File: in8DyGbbwBXwSi0Xt7THNS8kDxQ.roa (raw, json)
Hash identifier: 0RQk67qV5lca5qUfuGaW7bbmC5NgkRj3WAjd2tJbnG0=
Subject key identifier: 8A:7F:03:C8:66:DB:C0:15:F0:4A:2D:17:B7:B4:C7:35:2F:24:0F:14
Certificate issuer: /CN=dc3cb20c5ca7c4ed8e42078b1a67287a0d991cec
Certificate serial: 03945355
Authority key identifier: DC:3C:B2:0C:5C:A7:C4:ED:8E:42:07:8B:1A:67:28:7A:0D:99:1C:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DyyDFynxO2OQgeLGmcoeg2ZHOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a85f3d-65a2-4f6c-9cb9-82660ee4eac4/1/in8DyGbbwBXwSi0Xt7THNS8kDxQ.roa
Signing time: Sat 01 Jan 2022 03:54:57 +0000
ROA not before: Sat 01 Jan 2022 03:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198432
IP address blocks: 185.68.111.0/24 maxlen: 24
185.18.198.0/24 maxlen: 24
185.18.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60052309 (0x3945355)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3cb20c5ca7c4ed8e42078b1a67287a0d991cec
Validity
Not Before: Jan 1 03:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a7f03c866dbc015f04a2d17b7b4c7352f240f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:22:69:d6:1d:75:f0:bb:a5:6d:76:a4:1c:84:
b3:52:e9:7c:e2:f5:01:40:d5:7b:59:7d:af:5d:58:
54:80:14:b5:14:94:f3:a7:3b:27:0d:0e:0a:b3:3a:
bf:94:fb:4b:31:8d:a8:f6:c3:ec:0e:50:c1:a2:d6:
a3:8f:f8:d2:38:ac:a4:cf:24:48:66:b0:e3:58:76:
d6:bf:e0:48:00:5e:cc:8f:62:1d:83:9b:7c:63:53:
34:77:d6:9e:a4:bc:a0:23:b6:e9:b4:ec:13:0d:f7:
72:10:99:31:8a:3e:39:99:84:dc:d9:40:a5:e7:25:
15:a1:ea:93:25:37:08:12:60:82:47:66:4c:51:39:
64:4b:05:62:63:a0:ea:f9:c5:a2:78:99:0e:90:0a:
46:8b:26:fa:e6:be:fd:e2:2c:fa:7d:56:a4:f1:29:
d1:2c:e4:cb:16:ca:65:07:04:e4:02:45:31:49:2f:
60:16:13:27:09:d5:07:4b:87:06:65:c2:d1:7c:42:
3e:14:68:c2:d0:dc:82:58:0d:82:b1:26:d8:87:b6:
75:29:a3:37:56:dc:0b:1f:c7:e2:fe:28:12:09:12:
4b:00:de:dc:04:d4:6e:fd:a1:45:51:75:7e:f3:82:
d4:5e:3d:46:60:b8:0c:f7:92:e9:fc:52:a8:14:f3:
76:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:7F:03:C8:66:DB:C0:15:F0:4A:2D:17:B7:B4:C7:35:2F:24:0F:14
X509v3 Authority Key Identifier:
keyid:DC:3C:B2:0C:5C:A7:C4:ED:8E:42:07:8B:1A:67:28:7A:0D:99:1C:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DyyDFynxO2OQgeLGmcoeg2ZHOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a85f3d-65a2-4f6c-9cb9-82660ee4eac4/1/in8DyGbbwBXwSi0Xt7THNS8kDxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a85f3d-65a2-4f6c-9cb9-82660ee4eac4/1/3DyyDFynxO2OQgeLGmcoeg2ZHOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.198.0/23
185.68.111.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:78:a4:8a:cb:fe:eb:cf:43:1d:be:58:c2:ed:c2:98:42:12:
93:be:e9:4e:ac:7b:73:2f:45:be:e2:96:30:6a:04:9a:48:50:
95:e3:9c:48:45:07:f2:59:bf:79:07:d5:d5:2d:2c:24:3f:a3:
bc:33:2b:24:83:c5:a0:05:e0:5b:e8:37:e0:de:7e:22:12:38:
37:6d:8e:a0:6b:f5:fe:3b:7b:31:5a:c4:27:26:73:86:cd:5c:
f7:ef:7a:18:f0:27:22:f4:2c:3d:02:10:7a:ac:0f:f3:09:2c:
1b:6c:41:0e:7b:47:69:f1:66:d5:4a:66:a8:76:0a:4a:cc:05:
a7:69:da:01:b3:4b:f7:f3:2d:49:c8:37:7a:5e:bb:ab:a9:4c:
be:35:38:72:ec:16:81:17:f2:72:06:69:83:8c:2d:46:4a:dd:
0e:e4:8f:6b:47:e9:5a:ea:c2:7a:59:8f:54:f0:97:1b:34:60:
43:b4:dc:96:74:2a:aa:b0:15:e4:5f:0f:0e:6b:45:fa:ce:c8:
fa:3f:33:7f:53:c9:70:3d:9f:d0:4c:35:62:aa:d2:41:8b:11:
6c:9b:75:87:96:c0:43:b3:c7:8c:cb:40:ab:ce:da:fb:e3:a5:
27:be:54:71:2e:67:60:17:33:6c:ed:33:54:60:39:56:81:21:
96:ab:8b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:20 2023 by rpki-client on console-fra.rpki-client.org