Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/iwlcggmO1L_nE1gI0ftgjRqA50A.roa
File: iwlcggmO1L_nE1gI0ftgjRqA50A.roa (raw, json)
Hash identifier: S5rB2lpLnLqRWz1STKxC7zkmHYkYcgtVJjSIz3QIwaM=
Subject key identifier: 8B:09:5C:82:09:8E:D4:BF:E7:13:58:08:D1:FB:60:8D:1A:80:E7:40
Certificate issuer: /CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Certificate serial: 6038E3
Authority key identifier: 83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/iwlcggmO1L_nE1gI0ftgjRqA50A.roa
Signing time: Mon 09 May 2022 18:49:47 +0000
ROA not before: Mon 09 May 2022 18:49:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49544
IP address blocks: 66.22.244.0/24 maxlen: 24
66.22.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6306019 (0x6038e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c103d65a54d6af1efba6ac3e63722028af2bb1
Validity
Not Before: May 9 18:49:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b095c82098ed4bfe7135808d1fb608d1a80e740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:15:1e:6e:95:50:90:2a:03:8b:ff:e8:84:f4:
45:39:77:b0:0d:b6:32:04:32:ac:25:7d:99:54:45:
45:5a:42:ac:bb:bf:7d:b4:60:8e:05:61:f9:bd:0d:
16:a6:e6:3d:8c:32:37:f5:74:fc:6b:25:9a:c9:98:
02:d0:45:00:1f:52:90:ac:15:1e:84:83:59:3d:ae:
0a:1a:a2:17:8f:5c:6a:8d:75:cf:33:78:ef:04:70:
2e:39:75:d2:70:76:f8:47:b6:33:a5:a0:c0:39:f2:
2d:d0:82:e5:ba:ac:43:a7:20:8d:68:cc:2b:cf:9e:
16:09:c9:a7:22:24:2b:6d:2b:a1:6f:ad:78:40:ff:
60:ce:e4:44:d5:98:f6:8c:6d:be:b1:7f:86:54:46:
5f:b7:a9:4b:ef:63:98:50:16:b3:a4:57:68:2b:ef:
d0:1e:1e:de:2f:b2:27:51:82:48:e4:fa:cb:63:54:
1a:99:b8:83:dc:91:4b:2b:c9:76:25:61:b7:06:32:
c1:c6:20:65:3e:65:4e:33:69:41:67:39:90:3c:35:
d8:7b:20:75:82:44:16:85:8f:d6:09:2c:3b:5e:a1:
fb:60:f3:a9:38:18:35:72:2c:dd:7b:09:87:3c:48:
e9:e5:aa:20:b6:c0:26:30:3f:f7:f4:a7:58:b0:f0:
c0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:09:5C:82:09:8E:D4:BF:E7:13:58:08:D1:FB:60:8D:1A:80:E7:40
X509v3 Authority Key Identifier:
keyid:83:C1:03:D6:5A:54:D6:AF:1E:FB:A6:AC:3E:63:72:20:28:AF:2B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8ED1lpU1q8e-6asPmNyICivK7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/iwlcggmO1L_nE1gI0ftgjRqA50A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/081bd4-1210-4021-a864-b50cf5f2aa22/1/g8ED1lpU1q8e-6asPmNyICivK7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.22.220.0/23
66.22.244.0/24
Signature Algorithm: sha256WithRSAEncryption
78:89:3c:a6:b2:d3:17:fc:d0:df:e5:20:02:89:b6:06:23:66:
3a:97:1d:76:ad:6f:40:5b:f5:67:90:19:21:23:35:7f:a7:d2:
13:b0:09:ea:c8:4b:60:84:af:b6:5e:92:be:54:06:68:5c:10:
cc:52:63:71:86:fc:d7:1f:93:83:8a:53:b6:fb:62:e2:0c:7f:
2a:e5:e7:70:dd:47:d5:2a:59:d3:d3:7c:5e:e6:d6:fd:21:09:
61:44:6c:74:af:4c:7f:df:55:80:0a:cd:8c:64:ff:97:44:37:
6d:06:90:de:85:77:fe:34:72:96:78:92:48:bc:7a:f7:e5:cb:
ab:0c:f5:4a:25:0a:6d:89:44:37:1e:36:a4:ed:02:cd:87:69:
46:2b:bd:c8:ff:59:0b:62:f9:e1:33:9b:f4:76:d6:a6:22:b5:
ab:a1:72:9c:c8:9b:dc:d0:d2:c9:fb:55:b8:50:2d:e7:0c:03:
67:cd:a3:cf:20:26:be:c5:46:5d:7d:93:d9:98:38:68:c0:30:
67:d5:78:92:95:c0:f2:7c:25:70:22:47:c7:99:8b:1a:a9:2a:
3e:c6:53:a6:59:a5:bf:d7:92:6a:4d:a1:d2:e9:5f:55:19:39:
b8:64:2c:2d:5f:3b:c0:76:de:4b:92:aa:63:c1:f6:01:f0:f7:
2c:76:ae:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:05 2024 by rpki-client on console-ams.rpki-client.org