Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/AILOz-tvHuTWI4-abh3C69GptWo.roa
File: AILOz-tvHuTWI4-abh3C69GptWo.roa (raw, json)
Hash identifier: A0Emku+SrvB/uZnSNLaAHheom6ZRBodYZt2Nk+1Tu8Y=
Subject key identifier: 00:82:CE:CF:EB:6F:1E:E4:D6:23:8F:9A:6E:1D:C2:EB:D1:A9:B5:6A
Certificate issuer: /CN=dfc0b1df0e7bd00045ebe10302c320ffbdba0716
Certificate serial: 18291B6D
Authority key identifier: DF:C0:B1:DF:0E:7B:D0:00:45:EB:E1:03:02:C3:20:FF:BD:BA:07:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/38Cx3w570ABF6-EDAsMg_726BxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/AILOz-tvHuTWI4-abh3C69GptWo.roa
Signing time: Fri 24 Jun 2022 23:22:58 +0000
ROA not before: Fri 24 Jun 2022 23:22:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200043
IP address blocks: 185.173.212.0/22 maxlen: 22
185.173.212.0/23 maxlen: 23
185.173.214.0/23 maxlen: 23
185.24.118.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405347181 (0x18291b6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfc0b1df0e7bd00045ebe10302c320ffbdba0716
Validity
Not Before: Jun 24 23:22:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0082cecfeb6f1ee4d6238f9a6e1dc2ebd1a9b56a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f0:df:cf:88:a3:36:b3:fe:d8:ac:b2:b7:0f:
63:75:3e:ba:b6:8a:8e:f2:69:5a:70:35:03:c3:71:
cc:a3:46:d5:58:27:0d:7c:62:59:b5:97:6b:0a:5f:
5a:0e:ea:fa:c1:3b:6e:39:80:57:8d:30:30:f8:c5:
2a:96:80:4e:34:b8:01:0a:6b:54:97:40:29:4a:37:
16:65:53:e1:46:d2:88:7d:eb:5e:d0:33:26:2f:ab:
b3:32:9f:6a:e4:9a:0a:32:20:08:c3:dd:98:e5:dc:
0e:e9:a7:e7:af:76:77:bf:bd:f1:d3:9c:67:dc:cb:
1c:4d:73:54:3a:04:25:df:00:ea:95:60:f8:56:cd:
3c:8d:74:74:ed:0f:e0:78:0b:13:76:2d:90:d0:4c:
eb:ac:fb:13:80:7e:05:ae:59:6b:c0:58:af:7a:fd:
06:c6:6f:76:b9:cb:ba:ea:35:3f:be:03:23:18:1d:
f0:32:b5:e8:5c:15:2f:df:c1:a4:13:9a:54:a4:1c:
a2:14:74:4b:04:47:dc:f7:25:f3:9a:0a:89:96:09:
9b:50:b7:02:02:56:b1:ad:0c:6d:9e:ef:43:51:c6:
1a:40:13:2e:89:3e:58:02:75:45:ea:9e:9e:df:9b:
70:13:7d:65:4f:f3:18:fd:95:63:09:80:ff:d4:a4:
ea:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:82:CE:CF:EB:6F:1E:E4:D6:23:8F:9A:6E:1D:C2:EB:D1:A9:B5:6A
X509v3 Authority Key Identifier:
keyid:DF:C0:B1:DF:0E:7B:D0:00:45:EB:E1:03:02:C3:20:FF:BD:BA:07:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/38Cx3w570ABF6-EDAsMg_726BxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/AILOz-tvHuTWI4-abh3C69GptWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/a3c775-39c5-4bbb-b33e-d929e2b76d68/1/38Cx3w570ABF6-EDAsMg_726BxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.118.0/23
185.173.212.0/22
Signature Algorithm: sha256WithRSAEncryption
89:07:db:81:86:05:12:89:d5:fc:40:2b:de:f4:6a:7e:03:42:
a0:0d:ac:23:9d:ad:24:f6:9c:6e:47:e5:10:0e:1b:da:57:75:
ff:1d:60:4e:54:62:1e:fb:b5:08:9f:e5:40:1e:8d:bb:49:99:
99:c5:57:cf:05:c5:47:86:cd:f4:2f:d1:93:eb:35:2b:dd:b6:
14:10:2c:ee:71:2d:18:89:bb:33:2b:5e:52:ca:27:84:b9:b0:
89:aa:41:2a:a6:cd:17:e1:1c:07:6b:66:d1:3b:36:15:1d:33:
40:5e:01:25:76:bb:af:d6:cb:31:be:88:cf:0c:ef:46:23:89:
a1:1f:c8:2c:e9:a9:c4:42:01:62:51:fd:1a:17:3b:96:6d:ce:
3e:7b:d1:d6:c3:73:1f:8c:55:60:a2:4f:bc:4d:6a:cb:d7:d2:
73:3c:48:c3:e8:83:74:22:c1:8d:e3:70:d4:72:25:16:3d:46:
ad:5d:96:28:fc:63:61:dc:ef:06:3c:a7:f8:a7:a3:55:96:da:
87:6f:88:a5:82:70:94:1f:9b:e2:9e:97:2a:d1:77:29:41:01:
17:64:d4:c7:df:2d:10:24:44:42:56:ab:77:23:ef:1d:b3:0d:
48:df:ad:01:94:17:aa:0e:4d:38:3c:f0:08:f9:57:ca:0a:cb:
1d:b5:f9:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:14 2023 by rpki-client on console-ams.rpki-client.org