Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8dK6zQGFaAQk7IiQj3HwzxbNFtw.roa
File: 8dK6zQGFaAQk7IiQj3HwzxbNFtw.roa (raw, json)
Hash identifier: qqfoHuUI+g2b1pwUcrx7rNydLqZ7NnPJmF6xF+G+Xdg=
Subject key identifier: F1:D2:BA:CD:01:85:68:04:24:EC:88:90:8F:71:F0:CF:16:CD:16:DC
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 13212E49
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8dK6zQGFaAQk7IiQj3HwzxbNFtw.roa
Signing time: Sat 01 Jan 2022 04:02:52 +0000
ROA not before: Sat 01 Jan 2022 04:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 82.115.24.0/23 maxlen: 23
82.115.26.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 320941641 (0x13212e49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 1 04:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1d2bacd0185680424ec88908f71f0cf16cd16dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:29:75:e5:fd:ea:67:96:3d:ff:ad:e9:64:a3:
45:bf:4d:6a:f8:68:70:22:63:7b:fb:e9:e2:2a:ca:
fd:5e:6a:e9:5d:a5:41:05:02:50:c2:32:a8:bc:87:
c7:ff:9a:bf:ad:19:1d:8d:ee:41:57:4e:c1:1a:fb:
7f:47:27:7e:34:51:f8:56:5b:7e:2d:35:f0:67:4b:
b4:d9:4a:0c:7a:c7:d9:d6:97:a9:1d:4f:28:38:33:
9b:a0:a1:9d:7b:9e:03:2e:55:6b:cf:f4:91:64:0b:
7d:d4:0e:76:ab:6b:b2:40:59:32:1c:5a:41:5d:eb:
32:2c:29:f6:21:a1:6d:e4:c8:f1:10:81:af:18:18:
8b:d0:d1:e0:85:66:d2:ac:50:bb:93:8f:c8:f6:39:
7a:e3:37:70:42:3d:68:48:ff:58:16:53:8d:a2:3e:
09:44:d3:48:20:d4:f0:88:ae:2b:03:0c:f9:b5:65:
42:f9:f5:bf:e7:2b:c7:32:df:7c:1a:b3:e1:68:f3:
ac:4d:00:83:c3:70:bf:fa:c6:03:3d:13:cc:28:30:
a5:f5:a6:13:59:1a:0a:3e:57:62:82:39:2b:3e:01:
f5:af:4d:9c:fa:1a:59:6f:30:8d:16:b0:1c:58:07:
32:48:62:78:cd:df:c0:dd:1a:86:25:8c:c3:ca:bb:
fb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D2:BA:CD:01:85:68:04:24:EC:88:90:8F:71:F0:CF:16:CD:16:DC
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/8dK6zQGFaAQk7IiQj3HwzxbNFtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.24.0/22
Signature Algorithm: sha256WithRSAEncryption
47:51:9b:64:18:ad:12:4b:8f:94:ba:dc:ca:29:6b:14:01:30:
b1:b1:79:eb:e7:41:f1:f6:97:e3:f8:95:d9:11:3b:f0:80:f9:
49:53:f0:7a:00:1a:3a:af:48:26:75:83:63:ab:b8:49:bc:1d:
1e:2b:7d:20:ef:0b:eb:e6:6f:d4:13:6f:d4:0e:c5:1b:41:c5:
3c:bb:cc:a7:e5:f0:15:f0:e3:e8:89:ea:07:fa:b2:bf:b0:d4:
ce:5c:82:71:27:0c:de:9d:8b:e8:67:27:f4:1d:5a:21:f1:99:
d9:70:67:71:af:2e:0a:c4:d2:a4:dc:ff:0e:34:81:b9:93:b9:
2b:cc:5d:8d:e7:e9:0a:1f:a9:d3:60:5f:a4:a7:7b:fc:ce:89:
37:19:99:67:d3:0f:86:93:15:1c:d1:f4:65:a1:5c:5c:f5:9d:
fc:9e:75:c7:93:a2:31:19:22:f6:33:fb:d4:c2:29:ac:09:f9:
36:1a:a1:fd:0d:e9:85:d5:c6:32:23:3f:4b:77:a0:25:08:fd:
d7:0b:b6:d3:7a:6c:49:83:ca:36:e3:3c:d6:ec:5a:d7:e3:fd:
9d:70:44:08:e0:74:b7:13:20:f8:fe:7b:c7:79:2c:70:cd:e5:
6f:23:38:8d:42:63:68:19:25:d4:8d:c6:fb:ed:70:3e:96:30:
a7:a2:f5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org