Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/IsR3XtGsycbHxFFCHuIyBjDngZk.roa
File: IsR3XtGsycbHxFFCHuIyBjDngZk.roa (raw, json)
Hash identifier: FWiBRc64hyYglKal4Ri+XencAW8aAybSkMLmH66xghY=
Subject key identifier: 22:C4:77:5E:D1:AC:C9:C6:C7:C4:51:42:1E:E2:32:06:30:E7:81:99
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018440F02372540B901F85ACA824236ED861
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/IsR3XtGsycbHxFFCHuIyBjDngZk.roa
Signing time: Fri 04 Nov 2022 04:39:50 +0000
ROA not before: Fri 04 Nov 2022 04:39:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49948
IP address blocks: 86.104.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:40:f0:23:72:54:0b:90:1f:85:ac:a8:24:23:6e:d8:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Nov 4 04:39:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22c4775ed1acc9c6c7c451421ee2320630e78199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:10:6f:fd:c2:a9:68:26:f3:dc:99:de:44:e1:
63:c2:fc:d8:50:40:34:15:14:be:e5:71:fd:a6:48:
b7:31:92:53:79:d2:93:69:8b:c7:ca:9e:75:ba:61:
69:60:9f:38:b5:8e:ad:f2:29:9c:00:75:3a:ca:08:
38:29:9c:b4:f6:c3:73:f7:d7:33:53:29:22:23:02:
67:f7:dd:56:ed:64:6f:a7:53:c7:62:ca:cc:9d:4d:
1b:77:e6:f3:3f:c7:15:14:c2:01:6f:fc:e5:48:d2:
ef:33:ac:b3:20:ae:f4:89:69:93:2b:02:8f:f0:f0:
9d:74:e9:f4:81:1f:26:0c:37:fe:3f:3b:16:00:c0:
d6:28:12:9b:13:d2:42:b8:2c:8b:76:2e:7d:a0:d3:
42:4b:0d:b7:ec:7a:45:70:87:46:ee:94:f0:10:dc:
73:82:10:2d:af:00:81:20:f1:33:07:19:65:4c:01:
1b:b2:ac:c3:1f:3a:18:33:bb:9a:44:d0:8a:3f:88:
87:dd:b6:e1:9b:ed:52:8f:b7:61:34:65:ea:39:ff:
c9:7e:54:f0:91:43:e5:c9:72:40:39:c0:84:63:80:
5e:04:0b:86:08:fc:2a:88:fd:67:d5:70:84:fe:28:
8a:6f:d1:6f:6d:85:76:1b:40:9c:d2:72:87:1d:64:
f9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C4:77:5E:D1:AC:C9:C6:C7:C4:51:42:1E:E2:32:06:30:E7:81:99
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/IsR3XtGsycbHxFFCHuIyBjDngZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.230.0/24
Signature Algorithm: sha256WithRSAEncryption
82:b2:7a:dd:05:17:33:f8:3a:a5:ef:b3:30:b0:94:44:83:2f:
b1:a7:0c:96:fe:94:9e:59:dd:13:eb:25:e2:0a:97:67:f8:2e:
a9:fb:d9:66:ee:62:9c:21:e3:65:56:ea:6a:64:85:36:5d:64:
3e:7f:b7:3f:26:55:d4:3c:b2:aa:f4:d8:e0:1d:0a:0a:9c:c5:
e4:1a:2a:19:32:4f:a2:e9:ae:3b:55:2d:e2:4e:f8:f8:c1:65:
96:c0:ab:7d:c3:b9:d8:b0:87:fc:fc:73:2a:cb:dd:e5:06:90:
8c:5b:cb:3d:a0:e9:55:6d:1a:a7:ae:3a:ce:0d:e3:15:e9:db:
40:0d:db:37:74:4a:a2:bb:3c:c9:07:29:e0:f2:0b:73:92:b7:
bd:fa:5e:28:71:fa:2f:5c:9c:31:20:bd:e7:77:29:db:b4:e4:
c0:f4:db:09:0c:9b:88:36:9a:5c:35:50:a9:88:3b:74:c6:28:
e2:3a:5f:6b:e0:88:db:01:8b:7c:1f:e8:44:59:81:9b:64:ab:
03:9e:7f:2b:75:c0:ae:5a:8b:c1:08:75:a5:6f:88:dc:57:0c:
d2:fb:48:8d:c6:85:fe:ae:e7:5c:4c:f8:cb:d6:cb:34:4e:63:
ba:f1:ea:c8:36:82:2e:6c:3d:cf:cb:1a:eb:48:9f:61:cf:f1:
03:11:f5:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:12 2023 by rpki-client on console-fra.rpki-client.org