Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/3cLTj98uBZ7LPh-kSs5KX-E08Cw.roa
File: 3cLTj98uBZ7LPh-kSs5KX-E08Cw.roa (raw, json)
Hash identifier: 4g0kE8sOYZlRT3+tub3f4RCBudLlmKpQHS9CNq/Cz7I=
Subject key identifier: DD:C2:D3:8F:DF:2E:05:9E:CB:3E:1F:A4:4A:CE:4A:5F:E1:34:F0:2C
Certificate issuer: /CN=dfc0b1df0e7bd00045ebe10302c320ffbdba0716
Certificate serial: 16B40AB8
Authority key identifier: DF:C0:B1:DF:0E:7B:D0:00:45:EB:E1:03:02:C3:20:FF:BD:BA:07:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/38Cx3w570ABF6-EDAsMg_726BxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/3cLTj98uBZ7LPh-kSs5KX-E08Cw.roa
Signing time: Sat 01 Jan 2022 05:52:50 +0000
ROA not before: Sat 01 Jan 2022 05:52:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200043
IP address blocks: 185.173.212.0/22 maxlen: 22
185.24.118.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 380897976 (0x16b40ab8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfc0b1df0e7bd00045ebe10302c320ffbdba0716
Validity
Not Before: Jan 1 05:52:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddc2d38fdf2e059ecb3e1fa44ace4a5fe134f02c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5e:a2:10:e5:4e:de:4f:22:56:90:03:b9:ef:
dd:70:44:67:de:9e:79:d0:2f:18:c6:3e:71:56:8c:
d3:39:75:b6:53:71:44:fa:9b:70:08:0f:e9:2d:bf:
a7:11:9a:eb:ff:7a:7c:3e:92:2d:87:94:f1:55:98:
0f:54:7c:36:0d:bd:45:fa:b0:03:82:07:67:6a:ac:
cc:df:ac:0a:d3:c3:be:cc:ef:09:e3:e7:b4:c1:00:
58:f9:6e:05:ae:a1:c7:ae:c2:17:47:d1:bf:98:44:
8c:b0:87:be:b1:e9:85:82:fd:c7:14:38:f2:0c:b1:
6e:3b:26:93:92:99:d9:7b:62:0a:71:23:42:f4:26:
86:e3:6e:12:ac:48:cd:b4:5a:68:f2:cd:8e:06:87:
9d:59:d4:46:40:00:e8:87:b5:e3:fe:23:e6:9d:6f:
4d:d9:67:ad:d0:e8:af:ac:bc:93:89:5b:26:db:13:
d1:f5:47:e8:b8:d3:eb:32:49:b1:b0:e3:b9:0f:52:
e3:de:ad:44:2d:cf:e2:46:36:95:b7:da:83:0f:18:
4f:5a:80:fc:e8:a0:82:8e:0f:4f:de:6c:6e:bb:ca:
ee:d4:58:d7:d5:aa:30:ad:1b:2a:e4:55:7f:62:42:
73:74:8f:cf:65:83:f3:aa:18:82:d8:96:bc:24:f9:
2d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C2:D3:8F:DF:2E:05:9E:CB:3E:1F:A4:4A:CE:4A:5F:E1:34:F0:2C
X509v3 Authority Key Identifier:
keyid:DF:C0:B1:DF:0E:7B:D0:00:45:EB:E1:03:02:C3:20:FF:BD:BA:07:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/38Cx3w570ABF6-EDAsMg_726BxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/3cLTj98uBZ7LPh-kSs5KX-E08Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/38Cx3w570ABF6-EDAsMg_726BxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.118.0/23
185.173.212.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:5c:65:8f:9a:0d:50:b7:58:f8:69:43:c9:55:a2:e7:54:1c:
5c:67:0e:6d:a6:33:11:43:9f:1c:d8:48:83:2b:74:1b:0c:40:
fb:43:36:6a:e8:14:27:93:9e:8d:f2:d2:eb:d4:19:00:1a:ac:
46:4f:12:09:d6:06:82:04:96:3e:c9:65:d1:c8:fa:55:be:dc:
a4:44:d6:88:e8:56:ea:eb:3c:f6:e7:9b:48:44:11:4c:bb:21:
99:2b:61:44:ec:5d:b3:e4:33:9c:e6:76:00:e9:1a:7b:d3:c0:
03:6b:f4:b5:7a:db:a5:ef:3b:86:61:2c:14:c7:2a:2d:7e:ae:
26:0a:c3:e2:bb:5d:09:aa:7b:29:e8:89:4b:3b:46:83:64:bb:
ff:f3:91:f7:32:ea:98:c9:d6:ee:cc:b3:85:a6:a7:cf:96:ae:
d1:96:e1:93:8c:96:d3:a7:28:15:f4:71:e9:30:bd:6e:3c:41:
de:3c:b6:53:5e:05:a3:69:de:b5:20:3c:ff:95:57:11:96:a0:
47:ef:0f:db:0c:a2:c9:75:91:35:b2:73:47:cd:09:d0:eb:75:
79:f4:5d:75:99:6f:79:09:a4:47:f8:e0:88:b9:84:31:69:19:
8a:37:38:40:22:c8:c6:a3:8a:67:62:0a:97:dc:ab:36:2c:09:
d4:6f:22:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:14 2023 by rpki-client on console-ams.rpki-client.org