Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/vv3k8NDGwyJIGRqCmeFX2rbj8wk.roa
File: vv3k8NDGwyJIGRqCmeFX2rbj8wk.roa (raw, json)
Hash identifier: kD39Oo3b1xCkgF+7oZZmc7H9uKbNhdXJXgfi8vFKYkc=
Subject key identifier: BE:FD:E4:F0:D0:C6:C3:22:48:19:1A:82:99:E1:57:DA:B6:E3:F3:09
Certificate issuer: /CN=e168e36ba577ed47e6928729691991e4e7f235da
Certificate serial: 018312E3851F37B8ACB36357B649D8A36F9B
Authority key identifier: E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/vv3k8NDGwyJIGRqCmeFX2rbj8wk.roa
Signing time: Tue 06 Sep 2022 13:00:44 +0000
ROA not before: Tue 06 Sep 2022 13:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206150
IP address blocks: 185.211.10.0/24 maxlen: 24
185.211.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:12:e3:85:1f:37:b8:ac:b3:63:57:b6:49:d8:a3:6f:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e168e36ba577ed47e6928729691991e4e7f235da
Validity
Not Before: Sep 6 13:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=befde4f0d0c6c32248191a8299e157dab6e3f309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:40:a0:1d:68:7f:21:50:0c:bf:e0:c1:e2:01:
81:c3:94:6e:8a:4e:88:53:50:f7:e0:91:fc:96:69:
c2:6b:d5:64:9c:76:97:00:20:d9:e1:a9:e4:e9:78:
38:de:15:88:60:08:47:c5:eb:76:d6:29:f8:e6:74:
61:82:32:41:01:3e:ba:ca:8d:fa:30:fb:a4:fd:ed:
77:a1:a2:c8:89:30:ef:d7:d5:f7:ab:69:78:5e:06:
bf:2b:e1:c0:e1:63:eb:e2:0f:ae:6f:58:46:70:01:
9b:3d:21:51:74:28:63:53:2d:18:d4:e2:a4:6a:98:
07:2e:d5:53:64:db:7c:2a:16:ac:02:d9:9e:36:10:
56:9a:85:c5:30:a1:f3:8c:0e:8f:5d:75:04:a2:9b:
20:aa:78:5e:14:5c:f8:a7:5e:2e:2f:fb:33:cb:52:
15:12:84:30:c8:1d:91:36:89:7b:28:37:bf:20:bc:
94:c0:0b:dc:6d:c5:0f:18:73:e5:51:14:31:62:f9:
47:43:bf:73:a2:09:3a:6b:ce:64:e4:ff:98:90:cd:
f7:7d:0d:7b:be:12:90:97:b5:c3:27:0d:1e:dc:cf:
c0:95:2b:13:50:1c:ce:1d:7f:ab:c9:db:27:ae:c5:
ec:51:08:9c:3a:18:57:de:33:ea:7d:af:f3:1b:38:
8e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:FD:E4:F0:D0:C6:C3:22:48:19:1A:82:99:E1:57:DA:B6:E3:F3:09
X509v3 Authority Key Identifier:
keyid:E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/vv3k8NDGwyJIGRqCmeFX2rbj8wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/4Wjja6V37UfmkocpaRmR5OfyNdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.8.0/24
185.211.10.0/24
Signature Algorithm: sha256WithRSAEncryption
63:e7:99:f2:7a:c7:4d:72:01:c0:07:99:57:66:56:f6:5f:60:
da:d1:fb:17:f2:b9:43:07:1d:5a:43:c1:bc:0f:02:61:4f:ed:
ef:ea:2d:91:f1:4c:46:ed:48:ee:61:27:39:b6:72:85:06:d1:
23:5b:21:18:e2:10:18:c9:2d:83:66:90:fc:7e:f8:79:f7:e2:
fb:3b:cf:b6:83:86:4b:c0:34:29:41:8e:2e:c1:d3:f5:b4:b5:
1a:5f:dc:f5:3a:e0:04:af:fb:54:f5:b9:bf:d4:7c:c9:ca:19:
6a:2e:a6:32:5f:7d:3a:c7:29:70:15:9a:aa:87:b3:70:d0:46:
fd:a9:15:b7:ed:1e:f3:ba:82:22:11:bd:03:cf:34:ac:8a:24:
06:bc:e1:18:6d:10:3f:95:3f:6d:b2:e9:1a:2f:35:94:11:22:
da:22:85:7c:99:e4:45:d0:3e:99:8a:25:65:09:34:b1:e5:fe:
dc:86:6a:bb:03:77:87:fc:37:47:2a:f7:b6:f4:bd:ca:34:e7:
a8:42:45:c1:aa:c8:2e:84:f6:dd:6a:ac:f8:8e:88:5b:0e:a0:
6a:a3:ff:f7:11:05:80:ad:58:f5:dc:90:dd:9b:43:16:48:b4:
c0:1f:5b:0d:e4:cf:92:f5:19:00:fa:ff:95:89:60:d5:87:44:
92:cd:97:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:17 2023 by rpki-client on console-fra.rpki-client.org