Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/dlGZRAIKv5gQbVnm3M0uOZRVCLU.roa
File: dlGZRAIKv5gQbVnm3M0uOZRVCLU.roa (raw, json)
Hash identifier: NOMO6Munswj4Md9sYEjY7SquJU9LCBwfLrG2EusnKCM=
Subject key identifier: 76:51:99:44:02:0A:BF:98:10:6D:59:E6:DC:CD:2E:39:94:55:08:B5
Certificate issuer: /CN=11660f0a05fc4cf7332230852d9d78bd7ac2f24b
Certificate serial: 01E9565F
Authority key identifier: 11:66:0F:0A:05:FC:4C:F7:33:22:30:85:2D:9D:78:BD:7A:C2:F2:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EWYPCgX8TPczIjCFLZ14vXrC8ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/dlGZRAIKv5gQbVnm3M0uOZRVCLU.roa
Signing time: Sat 01 Jan 2022 11:55:48 +0000
ROA not before: Sat 01 Jan 2022 11:55:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211713
IP address blocks: 185.93.24.0/22 maxlen: 24
2a03:8e20::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32069215 (0x1e9565f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11660f0a05fc4cf7332230852d9d78bd7ac2f24b
Validity
Not Before: Jan 1 11:55:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76519944020abf98106d59e6dccd2e39945508b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:61:1d:88:ad:f3:ce:0e:32:9d:fa:b1:cb:ae:
ad:19:bb:a1:51:b0:15:a9:73:56:ef:8f:b0:69:e2:
64:8d:9b:fc:70:68:d9:bf:fd:4a:d8:a6:cc:9a:1b:
35:50:95:37:74:df:b3:2d:4c:bb:37:39:8b:e4:de:
d4:cd:f0:73:f7:d7:1f:6e:9f:4f:1c:59:37:5a:f2:
ff:12:2b:32:38:33:2c:f4:ee:0e:c4:60:53:c7:07:
58:d2:c4:37:ce:a2:5c:04:ce:51:dd:22:1f:43:cc:
9b:26:19:20:90:33:70:6c:be:91:22:80:7c:98:1c:
f0:37:a7:6a:ac:e3:41:e6:67:9b:a9:99:d4:6a:c8:
86:3f:71:86:eb:78:70:43:d9:af:30:49:98:03:3c:
4c:58:74:a2:e6:5b:2c:7b:d9:bc:05:3f:c3:aa:87:
40:4f:6e:f2:e7:13:84:e5:85:8f:1e:f1:dd:28:4c:
db:0e:2b:7b:35:85:a6:25:af:6f:3e:61:8f:5e:ef:
c4:2c:2e:a5:94:df:59:98:4a:5e:1e:f0:67:1d:37:
0a:23:d0:12:38:0b:89:dc:9f:f4:e2:75:01:0a:2a:
dc:e8:c1:e4:b6:7a:32:17:60:07:67:90:31:93:b5:
4d:67:5e:b0:a4:b1:70:2e:24:08:d3:32:ec:d4:ad:
c6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:51:99:44:02:0A:BF:98:10:6D:59:E6:DC:CD:2E:39:94:55:08:B5
X509v3 Authority Key Identifier:
keyid:11:66:0F:0A:05:FC:4C:F7:33:22:30:85:2D:9D:78:BD:7A:C2:F2:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EWYPCgX8TPczIjCFLZ14vXrC8ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/dlGZRAIKv5gQbVnm3M0uOZRVCLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/EWYPCgX8TPczIjCFLZ14vXrC8ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.24.0/22
IPv6:
2a03:8e20::/32
Signature Algorithm: sha256WithRSAEncryption
5a:a4:24:ed:96:17:4b:89:8f:44:f8:ba:2a:a8:e2:79:ff:78:
11:14:5d:2a:95:44:65:de:a4:f1:1c:d3:4e:f9:bd:10:da:9d:
11:fb:2a:8a:00:78:24:06:ff:ba:8a:0b:c8:08:ff:91:58:39:
de:84:e9:a7:38:a5:ea:00:d2:f9:e2:05:35:6c:3c:60:33:ac:
6a:4c:cc:cc:d1:44:6c:d6:07:53:27:f7:67:1b:62:8e:e0:c7:
9f:89:b8:e7:eb:e9:96:52:8c:0f:91:39:62:f6:dd:1f:4b:81:
55:71:c8:bd:ed:36:38:97:28:d1:ac:23:a5:2e:66:47:e6:a5:
68:93:08:cc:eb:35:9f:14:b3:90:71:de:d2:6a:4f:55:7e:91:
44:82:7e:67:6e:40:24:b8:41:82:90:d7:c6:aa:f1:6e:b0:a8:
77:21:2b:f6:44:a2:16:b2:40:25:61:72:8b:22:46:ad:36:70:
97:44:0d:b8:f9:00:3a:5e:94:bb:e8:3a:0a:ff:07:d9:42:c1:
86:f7:20:e3:11:ae:d3:9f:1a:24:f9:de:66:38:b9:fc:01:d1:
9c:2f:a2:68:26:25:ae:17:5a:ce:af:60:13:a4:f9:02:8a:65:
95:8a:be:a7:be:ff:04:e6:d0:12:fa:a0:e4:37:61:0c:2e:54:
d5:64:9a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-ams.rpki-client.org