Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/iVKl1CUUmFC3QJzOzFILANc448Q.roa
File: iVKl1CUUmFC3QJzOzFILANc448Q.roa (raw, json)
Hash identifier: OhUdn5faZFWHs1OQ7DY/AqcHVqI8h9uUcCboDX+lgWI=
Subject key identifier: 89:52:A5:D4:25:14:98:50:B7:40:9C:CE:CC:52:0B:00:D7:38:E3:C4
Certificate issuer: /CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Certificate serial: 0E85970B
Authority key identifier: D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/iVKl1CUUmFC3QJzOzFILANc448Q.roa
Signing time: Fri 20 May 2022 10:09:29 +0000
ROA not before: Fri 20 May 2022 10:09:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62303
IP address blocks: 185.235.81.0/24 maxlen: 24
185.235.83.0/24 maxlen: 24
185.235.82.0/24 maxlen: 24
2a0d:4d00:81::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 243635979 (0xe85970b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Validity
Not Before: May 20 10:09:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8952a5d425149850b7409ccecc520b00d738e3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1f:de:c8:5e:e0:ad:ef:01:23:cb:ed:11:1b:
80:a8:eb:d6:66:9d:33:02:16:e3:3b:d8:05:cf:8d:
37:4e:c2:8a:33:88:df:d8:d9:b1:d8:e8:e6:75:d8:
63:36:c5:d0:92:22:cb:35:c9:a9:8a:a3:bc:f5:23:
ae:d4:cb:bb:0e:39:fa:54:44:f2:41:c8:7d:ac:0d:
f9:37:c6:a0:2e:1d:4d:54:c0:d4:5d:74:e9:d5:a9:
cc:6c:05:6d:8c:48:47:68:07:0d:a4:4c:19:03:e9:
b7:4b:48:ec:1a:39:d1:2d:42:f9:e8:d3:5a:21:81:
35:f9:86:14:1c:cf:da:a4:b2:b7:fd:75:f9:ce:6d:
81:6f:1d:a0:76:34:76:7b:f6:0d:b6:82:98:dd:c9:
ab:23:6d:fd:df:5e:da:bd:15:03:bb:47:1c:a1:cd:
fe:52:9f:52:f1:e8:be:99:80:f3:ee:46:8c:42:68:
1a:e1:a4:77:1e:cf:93:d7:f1:55:62:80:20:eb:6f:
63:9f:41:78:52:42:5b:21:a2:83:54:d5:8b:58:36:
0f:23:ed:45:b1:d2:80:5e:73:55:c1:3c:03:8b:9d:
6e:2d:f1:9c:50:03:27:2b:27:65:79:e8:bc:03:51:
33:1a:7d:61:74:16:b0:5e:62:cc:f6:cf:5b:cf:06:
df:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:52:A5:D4:25:14:98:50:B7:40:9C:CE:CC:52:0B:00:D7:38:E3:C4
X509v3 Authority Key Identifier:
keyid:D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/iVKl1CUUmFC3QJzOzFILANc448Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/04YKmzZYX7iqBR_Df8xqB3OZDL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.81.0-185.235.83.255
IPv6:
2a0d:4d00:81::/48
Signature Algorithm: sha256WithRSAEncryption
85:be:45:79:34:64:bf:15:bc:5a:d2:fc:b5:cf:45:04:c4:32:
1e:b5:59:bb:6c:62:eb:a8:0c:80:5b:32:75:bb:ec:a7:bc:e8:
91:62:20:87:45:01:25:6c:56:c9:c7:16:45:af:1f:5d:58:8c:
36:ff:e1:95:79:9a:ad:e8:94:38:e9:34:c0:35:db:92:69:06:
f2:c6:74:9a:af:b6:58:62:c2:1d:05:04:b5:38:2d:07:aa:94:
b7:95:6a:38:0f:56:06:68:1b:2b:51:39:e4:58:e2:9b:b1:0d:
55:15:33:e9:e3:bd:67:70:2b:f3:19:60:6a:51:cf:30:af:f1:
3d:3b:a1:41:9e:d7:7a:6d:80:b6:ae:bc:78:87:d9:d1:ec:d2:
f0:cf:93:d4:1f:b4:01:75:9c:fe:c8:dd:61:ab:4a:d2:0d:df:
80:66:93:ca:21:f0:bd:df:a3:0c:10:3a:c3:53:2f:10:84:47:
8d:4e:f6:94:22:82:4d:31:4f:2a:c0:d9:8e:38:e7:02:ae:90:
30:7c:0d:35:60:54:c2:4e:1d:cd:0e:9e:fe:f7:28:12:82:7b:
30:8e:91:37:42:38:eb:2d:ab:ed:9d:99:79:fd:eb:79:73:cb:
92:0f:a5:15:66:ea:0e:1f:bf:73:39:fe:5c:35:35:b3:d6:ef:
93:84:50:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:58 2024 by rpki-client on console-ams.rpki-client.org