Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/e5dfe2-a967-4712-bee6-32187e24889f/1/9CN3FYWu86kc5bNlmxy3jNnGYpE.roa
File: 9CN3FYWu86kc5bNlmxy3jNnGYpE.roa (raw, json)
Hash identifier: P3jQr7LbLIGD8kqcszWZikq01W7H5X2kgUw0EHXpfwk=
Subject key identifier: F4:23:77:15:85:AE:F3:A9:1C:E5:B3:65:9B:1C:B7:8C:D9:C6:62:91
Certificate issuer: /CN=e8df3e9cb69cca58ac702a2d5e9135c3bcab7200
Certificate serial: 0181DD5AFEB8CAC5D1B9ACB8C57551D7CC24
Authority key identifier: E8:DF:3E:9C:B6:9C:CA:58:AC:70:2A:2D:5E:91:35:C3:BC:AB:72:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6N8-nLacyliscCotXpE1w7yrcgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/e5dfe2-a967-4712-bee6-32187e24889f/1/9CN3FYWu86kc5bNlmxy3jNnGYpE.roa
Signing time: Fri 08 Jul 2022 10:28:56 +0000
ROA not before: Fri 08 Jul 2022 10:28:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56466
IP address blocks: 185.162.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dd:5a:fe:b8:ca:c5:d1:b9:ac:b8:c5:75:51:d7:cc:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8df3e9cb69cca58ac702a2d5e9135c3bcab7200
Validity
Not Before: Jul 8 10:28:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f423771585aef3a91ce5b3659b1cb78cd9c66291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:33:68:66:60:fc:f8:6e:b3:fd:20:c8:9b:a3:
93:a0:c4:c9:fc:32:7f:14:e5:13:05:ec:5e:7a:6c:
91:9f:35:7e:db:51:20:87:1c:60:82:14:32:51:39:
e0:f2:f0:6b:66:e6:72:42:cb:6f:35:c8:d4:d8:74:
c4:8a:9a:88:b8:ac:e8:0c:16:2d:ee:b9:f2:59:ad:
f2:49:08:58:d7:a7:86:66:08:5a:d1:c8:4d:20:bc:
6b:67:cc:67:26:3f:66:7f:96:32:05:e7:08:38:14:
42:01:6b:74:e0:e3:45:56:6a:f2:43:16:b3:b9:7c:
bf:ae:91:b9:0d:cb:92:b1:c0:06:87:06:58:cf:8b:
18:8f:c5:f0:b3:46:fb:a8:fc:90:5c:ad:99:01:7d:
c4:ea:a6:de:d3:34:bd:2f:25:8b:f6:29:24:93:a3:
39:af:28:2f:30:1d:67:3e:16:67:81:7d:51:96:e1:
f0:77:ac:9c:23:49:52:42:73:9e:21:85:cf:99:37:
79:da:ef:a8:20:18:31:31:7d:bf:62:c8:d1:5f:61:
36:0e:49:28:ec:d9:0a:32:4c:41:fb:a4:28:96:2b:
8c:71:20:3d:45:a3:af:cb:4e:00:ab:49:f0:91:a6:
89:8a:06:a4:98:d4:62:fb:2c:89:3f:28:6b:87:3b:
df:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:23:77:15:85:AE:F3:A9:1C:E5:B3:65:9B:1C:B7:8C:D9:C6:62:91
X509v3 Authority Key Identifier:
keyid:E8:DF:3E:9C:B6:9C:CA:58:AC:70:2A:2D:5E:91:35:C3:BC:AB:72:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6N8-nLacyliscCotXpE1w7yrcgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/e5dfe2-a967-4712-bee6-32187e24889f/1/9CN3FYWu86kc5bNlmxy3jNnGYpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/e5dfe2-a967-4712-bee6-32187e24889f/1/6N8-nLacyliscCotXpE1w7yrcgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.162.216.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:27:cc:96:90:06:06:8e:c2:9f:a0:8c:07:bc:fe:6f:13:e9:
d3:9a:01:02:c3:36:5a:f7:bf:e7:32:95:07:9c:01:51:bc:e0:
02:0f:05:75:f2:f4:63:46:c3:e1:d5:b8:dd:19:c5:19:39:dc:
a3:8a:42:f9:1b:19:a3:3f:53:d0:03:fa:a3:28:d4:69:77:ba:
2d:87:35:fa:16:60:50:c8:16:86:58:d7:0d:f5:82:55:80:39:
03:4a:eb:0f:72:1e:c8:30:46:fa:90:88:cc:f3:79:d0:99:92:
aa:bf:e1:05:d5:16:95:9a:57:60:05:1a:3b:7c:fb:97:28:10:
05:8e:85:42:83:37:fc:e5:6e:ca:2f:75:41:3e:a8:68:16:35:
e9:f3:70:43:1c:e3:cc:61:08:d2:70:d2:ba:3a:13:de:c8:fc:
6f:0a:5e:a9:66:d0:36:fa:a7:dd:6a:f3:b8:f6:65:27:06:43:
78:cb:8e:84:3b:a8:ad:47:ec:c9:17:eb:90:00:32:a7:21:c9:
75:6a:8e:8a:83:e6:6a:0f:07:a6:93:d7:26:7a:00:e2:98:cf:
8f:21:29:85:d8:61:28:26:52:b4:00:ef:76:30:68:09:af:c4:
5c:75:d7:1d:71:e1:ea:b0:c4:64:8a:12:0b:52:52:24:1a:4d:
de:b0:00:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-ams.rpki-client.org