Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/dG2ydn7zge1wMtxZdrJczCYIfSQ.roa
File: dG2ydn7zge1wMtxZdrJczCYIfSQ.roa (raw, json)
Hash identifier: LWp0kDPUQ8S+ZGmWLxZPDTFruxrYVz1l5f0CBBlYl7c=
Subject key identifier: 74:6D:B2:76:7E:F3:81:ED:70:32:DC:59:76:B2:5C:CC:26:08:7D:24
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 018505012ACB5EB92236F746A826021E1745
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/dG2ydn7zge1wMtxZdrJczCYIfSQ.roa
Signing time: Mon 12 Dec 2022 06:24:00 +0000
ROA not before: Mon 12 Dec 2022 06:24:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206119
IP address blocks: 82.163.104.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:05:01:2a:cb:5e:b9:22:36:f7:46:a8:26:02:1e:17:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Dec 12 06:24:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=746db2767ef381ed7032dc5976b25ccc26087d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:30:af:c7:e1:7d:6f:45:46:3f:7a:cb:1c:4f:
97:00:17:b1:2d:72:fc:07:f9:f2:0d:5a:d0:66:c1:
6d:8b:09:1a:db:a6:26:d7:34:79:4b:c4:39:33:60:
1b:46:2d:7b:5f:eb:43:b4:53:9f:b9:03:fd:4c:e3:
4a:92:93:7f:43:1f:70:db:d0:08:e2:1f:1e:b6:c5:
df:72:8c:fd:8b:cd:b4:02:e8:34:27:9a:11:52:43:
d1:a2:54:29:f4:2a:e0:33:35:32:ec:48:0f:54:5f:
f4:17:14:6e:c0:ed:8d:5c:01:85:3f:cd:1e:a1:a9:
17:c7:9e:30:b5:ec:5a:0b:2d:e6:c7:20:33:e3:e9:
e5:e2:9c:b3:f9:bf:23:48:2d:1a:ee:4e:be:64:d2:
e4:82:1d:b0:0b:36:0a:8e:cc:c2:03:ee:90:c0:51:
d5:a4:3a:19:d1:8e:19:0b:a6:34:f8:3a:45:e6:a3:
ce:d5:4a:e0:eb:1c:48:f9:34:67:4f:e7:37:70:39:
e7:bf:d5:70:61:a8:59:4c:7d:70:58:4b:04:fb:fc:
a8:3d:3f:d9:65:c3:f9:4f:2f:6a:ff:fd:74:ab:bf:
5b:23:21:88:ef:70:7d:e8:38:bc:50:18:cf:c7:6e:
c6:f2:6b:b7:9f:7a:3e:31:2e:13:91:54:d0:be:20:
fa:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:6D:B2:76:7E:F3:81:ED:70:32:DC:59:76:B2:5C:CC:26:08:7D:24
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/dG2ydn7zge1wMtxZdrJczCYIfSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.163.104.0/21
Signature Algorithm: sha256WithRSAEncryption
59:57:39:d4:ab:6f:f0:cf:a5:7e:7e:f8:c4:95:60:64:6b:7a:
1f:04:fe:0c:54:a3:64:d4:f2:c2:55:24:d8:23:bb:ed:f9:7e:
bf:31:f4:6e:51:fb:e4:7a:2d:15:78:07:34:87:3f:69:e4:ce:
b4:b2:42:4e:61:72:a8:ba:7b:40:c4:ef:e7:72:6f:5f:be:ec:
84:0b:71:85:f8:33:82:c4:11:10:58:c1:b5:93:b6:cb:9b:69:
cc:fa:ba:57:54:32:9c:75:57:b3:19:fd:d8:33:df:83:f4:08:
e3:4b:fc:e4:14:80:6c:62:14:e9:81:d1:90:f0:dd:a6:79:51:
11:06:fd:2d:58:1b:7d:a4:25:17:5f:58:0a:d2:fc:1e:64:ab:
06:c0:f2:b6:a1:3e:b3:84:26:b1:41:1b:dd:73:7b:3c:a9:cd:
08:ba:ca:06:e4:96:64:23:ba:09:6c:0a:94:60:b9:bd:24:f6:
b4:82:34:4e:f1:5b:77:ac:78:2f:4f:71:5f:93:6d:5b:f8:f2:
cb:ac:dd:f6:e1:a7:45:ec:01:5d:5c:13:f6:32:43:e4:a1:a1:
4a:54:64:79:13:1b:4a:8a:4a:2e:c0:6f:6b:87:6e:a6:3d:b5:
36:23:23:e3:87:b2:6a:02:85:ab:3d:fc:81:87:fe:8f:d5:74:
54:65:c3:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org