Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/1ba419-acbe-4d71-8c0e-6a1a368aa62f/1/D2yP0o6Rv1wgTmPyWmXRVBrwFjA.roa
File: D2yP0o6Rv1wgTmPyWmXRVBrwFjA.roa (raw, json)
Hash identifier: QzoDZiK9wKlP1Dm/9FzUPySh3Tefqf3Cii5VLA8S4po=
Subject key identifier: 0F:6C:8F:D2:8E:91:BF:5C:20:4E:63:F2:5A:65:D1:54:1A:F0:16:30
Certificate issuer: /CN=dca102b5a4a86bf47ff04e8ea6b20ecd0be23826
Certificate serial: 018384FD7C92A63E4757B62FF0E646500F52
Authority key identifier: DC:A1:02:B5:A4:A8:6B:F4:7F:F0:4E:8E:A6:B2:0E:CD:0B:E2:38:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3KECtaSoa_R_8E6OprIOzQviOCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/1ba419-acbe-4d71-8c0e-6a1a368aa62f/1/D2yP0o6Rv1wgTmPyWmXRVBrwFjA.roa
Signing time: Wed 28 Sep 2022 16:45:48 +0000
ROA not before: Wed 28 Sep 2022 16:45:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48551
IP address blocks: 185.63.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:84:fd:7c:92:a6:3e:47:57:b6:2f:f0:e6:46:50:0f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dca102b5a4a86bf47ff04e8ea6b20ecd0be23826
Validity
Not Before: Sep 28 16:45:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f6c8fd28e91bf5c204e63f25a65d1541af01630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:f2:ee:01:5a:be:1c:fe:d9:1e:da:a0:cd:7d:
4f:96:cb:e1:4c:0d:df:2d:13:d5:a3:fd:9a:a7:ac:
c0:df:0b:7c:ad:01:ef:bf:87:5a:f4:e5:e5:55:a4:
ad:7c:20:86:2b:ea:0e:3f:18:a0:f6:bb:92:08:dc:
68:af:ab:4c:e0:62:6c:23:01:22:48:e9:d0:13:58:
a4:e7:5b:0e:d6:0e:47:65:c8:cd:d5:23:21:13:9f:
09:ee:42:18:88:80:d1:24:15:4e:7b:a5:c2:0d:34:
77:b7:f1:b6:58:16:ba:26:49:0b:7a:a5:4d:28:6e:
63:80:ce:d2:6d:78:1f:07:2f:c9:ea:64:1b:08:75:
1c:ff:3b:ea:90:58:09:5e:65:f3:42:ed:a2:b0:b1:
d9:6c:3c:be:c1:6b:9f:d2:79:d9:99:21:57:5b:8e:
ff:0a:70:96:9b:9f:42:23:d7:82:5e:a6:98:2d:89:
bd:77:88:74:ef:3c:e1:eb:30:9d:30:5a:57:e5:e1:
8a:fa:0a:6e:be:94:52:31:73:7b:38:b5:92:1d:91:
8a:b6:99:6e:73:42:42:76:a3:59:80:02:12:24:ab:
0e:ed:ec:cb:03:d1:9f:c9:d9:13:cd:c5:f8:f8:b4:
d0:a6:fb:b0:1b:44:69:0f:fd:3b:f9:7c:c0:9a:8b:
5e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:6C:8F:D2:8E:91:BF:5C:20:4E:63:F2:5A:65:D1:54:1A:F0:16:30
X509v3 Authority Key Identifier:
keyid:DC:A1:02:B5:A4:A8:6B:F4:7F:F0:4E:8E:A6:B2:0E:CD:0B:E2:38:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3KECtaSoa_R_8E6OprIOzQviOCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/1ba419-acbe-4d71-8c0e-6a1a368aa62f/1/D2yP0o6Rv1wgTmPyWmXRVBrwFjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/1ba419-acbe-4d71-8c0e-6a1a368aa62f/1/3KECtaSoa_R_8E6OprIOzQviOCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.114.0/24
Signature Algorithm: sha256WithRSAEncryption
00:c9:96:0b:34:b4:54:de:86:20:ab:3e:61:e6:73:18:1d:d1:
c3:96:6a:77:34:fc:02:a7:1a:8e:16:3b:84:15:07:6a:38:21:
af:83:17:f5:08:52:0e:c9:94:1f:2b:dd:cc:04:c9:db:62:50:
64:60:ea:21:a2:46:5b:6e:79:2e:86:92:aa:25:67:d0:5e:9a:
da:6a:14:c9:35:0b:ad:1c:43:26:29:07:5a:d7:9b:8b:9c:c8:
47:2a:97:a2:fe:33:37:7b:47:16:d9:ff:39:08:01:81:9a:87:
72:27:4a:fb:d1:d5:29:91:08:34:0e:f0:58:f3:43:48:94:4b:
e4:a6:8b:36:b0:3b:df:4a:37:c8:5e:5a:cc:77:c1:9c:23:75:
c4:d2:8b:8c:e7:a5:72:8c:bf:a8:16:19:6b:e0:59:26:79:74:
5e:1b:0d:a0:09:a0:f6:d5:0e:1f:96:ab:f5:6a:ec:12:11:35:
83:30:93:7c:49:d5:bb:b9:3b:7b:6b:6c:30:c6:6c:1f:a2:59:
fc:13:9c:12:3a:10:79:12:63:31:c0:e8:cd:18:af:82:d4:81:
68:31:bb:8b:73:c8:b0:fb:56:4d:d5:84:31:72:7c:ec:76:e9:
7c:28:53:e8:1b:25:89:8e:5b:31:ff:65:1c:f7:e7:7d:0c:30:
38:1a:a1:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:16 2023 by rpki-client on console-ams.rpki-client.org