Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/p1IdqKYsoF850sgc7Sbg8UUuF5U.roa
File: p1IdqKYsoF850sgc7Sbg8UUuF5U.roa (raw, json)
Hash identifier: h9zXkINsx2+0bgXrUHofQA6CE0HWw7NmLZl1Oco6Ays=
Subject key identifier: A7:52:1D:A8:A6:2C:A0:5F:39:D2:C8:1C:ED:26:E0:F1:45:2E:17:95
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0184EB3CCD171B1246028183504FF522362C
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/p1IdqKYsoF850sgc7Sbg8UUuF5U.roa
Signing time: Wed 07 Dec 2022 06:19:01 +0000
ROA not before: Wed 07 Dec 2022 06:19:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209737
IP address blocks: 82.163.172.0/22 maxlen: 24
149.126.92.0/22 maxlen: 24
31.186.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:eb:3c:cd:17:1b:12:46:02:81:83:50:4f:f5:22:36:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Dec 7 06:19:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7521da8a62ca05f39d2c81ced26e0f1452e1795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:dd:17:a4:f6:b2:d0:13:a1:00:42:dc:8b:59:
5f:ec:f4:7a:4f:f3:73:e7:0d:b2:df:81:f7:34:d4:
25:fb:b0:ef:f0:10:5a:4e:3e:8e:7e:0b:38:c0:95:
bc:6d:51:5a:cd:99:bd:1f:56:ee:4c:e8:40:43:03:
94:80:b6:db:5b:de:a3:31:18:04:17:16:52:40:af:
e8:7b:5d:83:70:83:e2:d0:fa:a2:7b:84:6b:10:c3:
81:5d:db:f8:0d:09:e8:2c:35:4b:06:58:e7:a9:33:
c4:bf:ed:6f:a3:cc:84:64:4e:81:91:5b:03:b5:58:
93:ff:58:ee:78:d4:66:a7:1c:28:a3:64:bf:72:aa:
e7:7c:29:43:f6:b6:6d:8b:fa:09:1e:f7:f3:cd:29:
a8:8f:5d:ef:56:d7:51:fa:5f:5f:ad:fa:e0:60:d0:
19:21:14:33:a5:05:2e:b8:38:06:b1:2b:39:02:18:
7d:15:38:98:68:06:7a:90:16:9e:06:ad:7a:4a:9b:
e8:de:23:57:00:b8:ec:ec:05:87:30:d1:fd:e0:22:
cf:4e:61:35:29:ed:e3:a8:d4:19:b9:5b:b6:ad:f7:
26:3c:66:9c:42:65:13:2f:b7:63:a5:8b:d4:84:71:
69:31:cb:a3:e6:70:2b:a8:96:e9:62:bf:fc:34:d5:
12:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:52:1D:A8:A6:2C:A0:5F:39:D2:C8:1C:ED:26:E0:F1:45:2E:17:95
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/p1IdqKYsoF850sgc7Sbg8UUuF5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
82.163.172.0/22
149.126.92.0/22
Signature Algorithm: sha256WithRSAEncryption
04:ac:9f:3f:8a:1c:59:38:a6:c1:90:72:2a:34:2b:74:47:34:
a9:91:2b:75:5e:5d:5a:90:c7:49:38:8c:9f:a5:77:52:b1:cf:
06:96:81:2a:3a:33:50:6e:16:01:b4:e6:ad:df:bc:22:5c:55:
03:0f:e6:0c:0d:c7:4c:fd:56:37:46:fb:5f:72:ce:86:fc:07:
9b:4f:b7:27:cb:18:1f:4e:92:5b:bb:77:c4:64:d4:88:b0:57:
e8:0b:32:33:a8:44:f8:83:5a:ff:f8:c9:0d:26:ce:58:64:fc:
cb:8f:04:84:b7:88:b4:16:e2:24:9c:40:fe:91:92:63:db:19:
3a:04:2f:a7:30:05:2a:7d:f6:75:75:41:8b:c9:7c:ba:e9:8d:
d4:69:84:30:d1:7a:9b:ce:6d:d3:ee:cb:ff:9d:26:f7:a1:ab:
0c:70:ed:d2:28:6d:d7:01:4f:ed:6c:7d:a2:37:3b:db:15:53:
67:01:01:28:32:3a:49:81:df:9d:26:11:20:de:52:2d:54:ef:
dc:c5:88:0f:b1:a6:a6:64:b6:d0:4c:70:3b:e2:98:8f:fe:1b:
0a:11:cc:5a:17:dd:6b:86:8c:41:70:52:5b:bc:9c:d3:79:d5:
c5:3a:af:74:09:30:f7:48:90:d1:b5:e9:88:f4:d7:96:37:58:
54:78:7a:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org