Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/Sv8s2MP2EILiOkqk3GJDCmyEIrY.roa
File: Sv8s2MP2EILiOkqk3GJDCmyEIrY.roa (raw, json)
Hash identifier: XBeiQtQ3RaIJu5qtMlv1CcbRiZhxj+W3VUCtwhbW3bk=
Subject key identifier: 4A:FF:2C:D8:C3:F6:10:82:E2:3A:4A:A4:DC:62:43:0A:6C:84:22:B6
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01821B99F8CE2B8B9C6665C5BFD419DEA8C5
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/Sv8s2MP2EILiOkqk3GJDCmyEIrY.roa
Signing time: Wed 20 Jul 2022 12:34:11 +0000
ROA not before: Wed 20 Jul 2022 12:34:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 185.36.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1b:99:f8:ce:2b:8b:9c:66:65:c5:bf:d4:19:de:a8:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jul 20 12:34:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4aff2cd8c3f61082e23a4aa4dc62430a6c8422b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b9:2d:ff:dc:0d:8e:29:68:2d:e3:6a:09:9d:
cc:2a:dc:b6:14:10:99:53:ea:48:ae:3f:2b:85:8b:
3f:88:78:86:cd:4e:f1:54:1f:7f:48:8c:fe:7a:98:
e7:bc:be:f9:2e:c1:4a:cc:e5:2f:a4:a0:70:43:e9:
91:88:69:68:4a:1a:26:88:0a:ca:63:db:4e:72:e8:
e0:8e:10:26:4c:0b:39:02:d1:dd:52:bf:bf:99:df:
77:23:f0:bc:92:bc:d1:fe:2e:81:a8:b4:12:0f:ee:
55:19:a9:3f:91:47:2c:0d:89:88:5d:78:f9:ab:be:
40:90:55:b4:20:b3:ba:3b:9f:8e:6b:77:59:db:73:
f9:c9:60:49:d5:fd:c0:ce:22:5e:05:de:ac:75:87:
92:bc:da:43:68:b6:75:ea:52:2b:84:12:2e:63:5a:
48:d5:2d:5c:3f:85:de:c9:d3:36:45:74:36:d6:b7:
df:6d:14:26:53:d3:d2:cb:d1:eb:4a:05:65:fa:ae:
26:a6:13:01:cd:0b:17:31:55:0f:0b:3d:98:25:ae:
77:d9:2e:a3:80:22:7c:23:39:01:74:bd:3d:a0:5a:
b2:f9:f4:a4:6c:a7:16:f0:f1:5c:5b:6e:83:1d:68:
a1:08:42:78:e9:e2:51:dd:23:82:f4:0c:e7:c9:8d:
0a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:FF:2C:D8:C3:F6:10:82:E2:3A:4A:A4:DC:62:43:0A:6C:84:22:B6
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/Sv8s2MP2EILiOkqk3GJDCmyEIrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.192.0/22
Signature Algorithm: sha256WithRSAEncryption
63:84:28:e8:58:67:a9:d6:3e:14:0c:f7:89:26:99:be:e5:58:
41:ee:f6:2a:b7:ab:54:a0:86:37:9c:59:e4:20:6d:2c:38:03:
2d:eb:56:3c:a2:69:31:42:ff:f1:6a:21:44:7d:18:12:dd:0b:
02:fb:41:53:fd:16:ed:6b:b8:ff:8a:84:ee:d1:01:a0:48:a4:
0f:60:8f:e2:1c:c9:3b:d7:6d:de:ee:89:bc:5a:09:f2:a1:c8:
37:9a:a3:f9:e9:fd:b8:8c:ce:f3:ff:1b:c6:95:f0:cb:f1:a6:
81:05:8f:2f:6e:2c:b9:57:26:2d:2a:10:7d:13:da:22:98:e8:
9d:bf:34:61:fc:17:e0:f5:67:13:81:d7:26:c1:5d:62:64:b4:
b0:5e:58:b0:ec:71:35:9f:89:8c:60:59:94:fe:5b:02:39:09:
22:c1:1b:01:e6:ff:96:64:11:eb:04:64:6e:86:de:ac:28:b8:
82:fa:45:03:86:ec:7d:c9:0f:dd:4b:65:b6:04:30:b6:d8:25:
2c:d6:6e:e7:bf:e7:5e:65:09:43:be:db:dd:79:29:ef:b1:d1:
81:97:c9:eb:dd:27:c0:d2:90:ad:fe:e9:ca:5c:12:f7:51:5d:
cb:e0:bb:b7:62:2c:8b:2e:ea:88:99:ea:ae:4d:2e:f5:0f:37:
f9:45:71:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org