Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Au-APpWEQSyMP2aMfmIF3MNgAFU.roa
File: Au-APpWEQSyMP2aMfmIF3MNgAFU.roa (raw, json)
Hash identifier: dnjQT3NHoEXlxt/03sX+N/PoNkh7N/AaxO+4CJNeILU=
Subject key identifier: 02:EF:80:3E:95:84:41:2C:8C:3F:66:8C:7E:62:05:DC:C3:60:00:55
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018418EDD0BE2970A11C8DF2FDD8CF63E871
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Au-APpWEQSyMP2aMfmIF3MNgAFU.roa
Signing time: Thu 27 Oct 2022 10:12:29 +0000
ROA not before: Thu 27 Oct 2022 10:12:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 82.163.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:18:ed:d0:be:29:70:a1:1c:8d:f2:fd:d8:cf:63:e8:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Oct 27 10:12:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02ef803e9584412c8c3f668c7e6205dcc3600055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:28:c3:ea:6d:45:20:f9:7d:2d:c6:77:86:8d:
8c:2b:d4:51:ee:8f:1f:4f:4a:e5:ee:6e:86:d7:80:
77:50:0e:07:8b:de:3e:be:fa:f2:a4:b7:de:ee:c1:
b2:5c:63:35:24:e7:83:86:81:9e:a8:f1:dc:16:66:
78:cc:2b:d4:a6:4f:73:e4:c2:c3:38:f0:02:91:62:
b1:59:59:48:f7:29:9b:af:fe:2c:46:3a:db:5d:39:
ac:d9:0c:93:30:2b:25:d6:77:dc:c1:83:d6:44:19:
64:5d:6e:0a:62:39:46:37:23:c7:6a:89:df:47:77:
92:7d:a5:41:f1:ce:c4:6e:45:3d:d4:57:9e:5e:89:
71:40:ad:85:06:2c:f1:5d:01:c0:86:09:36:1b:6a:
39:ee:fa:9d:45:5b:56:34:92:7b:59:06:84:b5:75:
f7:42:96:65:3a:f5:a8:7b:cd:0c:46:4b:63:ab:59:
8b:92:c8:ce:f4:a0:b3:d9:c7:df:4b:d6:7e:c1:45:
67:85:24:f1:43:7b:70:4a:14:20:b1:84:e2:91:fd:
1e:ab:1c:fc:d6:d9:b5:93:39:de:2a:6d:d4:78:0c:
17:4a:97:9b:32:8a:c4:a1:e9:c1:a8:75:2e:30:27:
38:c8:19:f0:b9:9c:9a:a8:56:e4:79:b7:0a:35:4c:
56:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:EF:80:3E:95:84:41:2C:8C:3F:66:8C:7E:62:05:DC:C3:60:00:55
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/Au-APpWEQSyMP2aMfmIF3MNgAFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.224.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:86:17:5c:50:c8:8d:33:a0:9f:2e:a5:a8:9f:e5:c0:29:ba:
59:54:c1:9e:c4:34:c3:ef:c1:90:b7:48:7b:bd:23:d8:c1:14:
f5:e3:cf:fc:fa:d2:da:dd:3b:a3:28:77:bb:bd:20:ef:f3:5d:
33:d0:64:59:7b:08:89:c5:ca:97:6b:d0:d9:4f:4c:5b:af:85:
72:0f:22:09:af:8e:bf:3a:85:5d:57:3b:f9:4d:7e:72:71:76:
86:a0:c9:9c:c9:24:1b:24:72:13:6c:22:f8:30:42:5e:04:aa:
14:ce:aa:01:e0:29:36:5d:da:10:a7:18:3f:72:c6:cd:d7:ab:
78:ed:38:5f:14:cd:33:30:47:fd:33:05:f2:30:0e:e5:75:cb:
52:15:06:31:7f:01:53:6c:5b:fc:50:ca:23:b1:bc:f1:b4:cf:
de:28:31:fd:c2:53:a3:c1:2d:a5:4c:57:8a:08:1f:3e:1a:41:
20:12:49:f3:76:e8:48:94:f2:31:7b:12:1c:28:00:31:1d:e5:
6f:a5:37:ec:91:00:43:63:fd:ef:5c:18:df:a7:ca:15:79:b7:
d7:65:68:99:f3:9f:60:79:ba:e0:ef:b2:9a:e6:69:ac:0b:5b:
22:84:2d:b7:6b:42:e5:d7:6c:51:d1:12:d0:b7:21:ef:b2:41:
e7:06:16:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:35 2024 by rpki-client on console-fra.rpki-client.org