Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/io22hkZ2mQXo2ufYcorqAxxcOrA.roa
File: io22hkZ2mQXo2ufYcorqAxxcOrA.roa (raw, json)
Hash identifier: ySGACCRzHefJmo3REN3SmygcBIFlMeO1TXiOgmr8Mms=
Subject key identifier: 8A:8D:B6:86:46:76:99:05:E8:DA:E7:D8:72:8A:EA:03:1C:5C:3A:B0
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 0184010B5967A813B33999CDB3A80DC4C4E7
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/io22hkZ2mQXo2ufYcorqAxxcOrA.roa
Signing time: Sat 22 Oct 2022 18:53:51 +0000
ROA not before: Sat 22 Oct 2022 18:53:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202754
IP address blocks: 185.153.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:01:0b:59:67:a8:13:b3:39:99:cd:b3:a8:0d:c4:c4:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Oct 22 18:53:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a8db68646769905e8dae7d8728aea031c5c3ab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:30:1f:d2:12:f7:fd:61:e2:b9:ad:fd:95:25:
bb:66:cf:5d:da:0c:df:14:0f:45:35:ab:67:73:55:
09:3c:43:40:dc:e3:82:87:7b:0d:55:8a:dd:92:6c:
57:89:f2:cf:10:e0:54:98:9a:c5:2e:9f:58:95:97:
ad:34:eb:f8:34:21:87:d8:bd:32:dd:3e:6f:56:37:
99:8a:69:5e:89:56:d8:65:5c:d7:fc:00:d4:be:2c:
1f:bc:72:0d:76:0b:bc:2a:a5:8e:c3:c5:5e:99:b4:
82:0b:a1:5b:40:a8:10:4e:20:e7:6a:05:23:2b:aa:
9f:a0:64:b2:56:98:1e:1f:d5:25:c0:7b:2c:3c:3f:
ec:41:8b:77:c0:aa:fe:9b:7c:83:c3:04:62:55:d0:
6b:2a:81:80:c2:38:a5:45:76:65:98:98:e4:80:8f:
45:61:06:75:3a:2d:4a:f6:07:f1:b6:ae:2c:81:18:
3a:74:cf:40:95:ab:77:7a:63:68:f0:c8:b5:10:f5:
15:52:6b:ee:66:41:d5:5b:c8:a0:e3:ba:51:f7:f1:
a0:63:c7:ee:ce:2a:81:ca:ed:85:ad:3e:2f:74:0e:
d7:b2:bd:8e:90:94:c7:85:61:48:ca:e4:5f:91:2f:
c4:38:88:8a:ff:0c:51:88:98:4b:33:1d:c5:98:a9:
84:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8D:B6:86:46:76:99:05:E8:DA:E7:D8:72:8A:EA:03:1C:5C:3A:B0
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/io22hkZ2mQXo2ufYcorqAxxcOrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.16.0/22
Signature Algorithm: sha256WithRSAEncryption
42:ca:93:65:8a:9f:ab:05:be:6c:0f:4f:05:00:e2:97:4b:43:
2f:c1:0a:18:43:2e:ff:7f:a2:d2:5c:4d:83:f3:e4:88:bb:b8:
6b:9e:aa:d0:1b:03:28:51:f8:ff:5a:a7:be:51:49:92:e4:1d:
e0:4b:1e:fd:16:97:1c:c5:c9:41:78:0f:9c:c6:28:5e:6e:d9:
c5:82:d0:fe:ba:5f:ac:1a:5d:1c:25:da:5b:6a:4f:74:ae:72:
1e:8f:58:53:99:84:b0:c3:96:da:23:13:63:45:a3:d5:12:e7:
a8:59:62:16:b4:8c:88:2f:bd:c3:ee:0d:e0:36:50:36:e1:1c:
21:9c:7a:e2:57:cc:94:3a:f3:ba:9d:fd:6d:7a:bc:aa:5c:54:
23:ed:6d:36:c2:29:32:7e:8a:5f:af:be:36:ee:16:a8:ed:e3:
f6:68:03:a8:00:12:3b:f6:1d:ce:58:1c:82:35:f6:4c:43:f7:
91:7c:94:8c:1c:f6:42:52:bf:31:f1:b3:c6:96:8b:a8:6b:51:
e0:c6:75:c2:2d:5f:b5:e0:f2:0e:dd:b7:f1:9b:ec:61:b7:4f:
ac:c3:04:c5:ed:4a:04:a0:aa:63:f3:c9:e7:7c:74:4b:23:df:
1b:96:31:ce:12:d4:b2:f8:a9:38:d8:4c:b4:2a:1f:47:12:2e:
10:dc:6d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:47 2024 by rpki-client on console-ams.rpki-client.org