Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/Sh588ty0SdhRLXk4Nyt59iyDTkc.roa
File: Sh588ty0SdhRLXk4Nyt59iyDTkc.roa (raw, json)
Hash identifier: ELkaZ/eD9k2tC4AeLHlCHoyVZMR5gJh4BhQ2MZhP6wU=
Subject key identifier: 4A:1E:7C:F2:DC:B4:49:D8:51:2D:79:38:37:2B:79:F6:2C:83:4E:47
Certificate issuer: /CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Certificate serial: 0182C53894C3F23D1B657CDCEE76060DF950
Authority key identifier: 10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/Sh588ty0SdhRLXk4Nyt59iyDTkc.roa
Signing time: Mon 22 Aug 2022 11:03:15 +0000
ROA not before: Mon 22 Aug 2022 11:03:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207846
IP address blocks: 185.194.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:38:94:c3:f2:3d:1b:65:7c:dc:ee:76:06:0d:f9:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10773f32d3cb4e13e43f10a3dc422f1f3271bfba
Validity
Not Before: Aug 22 11:03:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a1e7cf2dcb449d8512d7938372b79f62c834e47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:9e:8e:28:3a:ed:b5:75:7d:a6:a3:a5:ae:39:
2d:5f:34:fe:f6:91:72:2c:fe:b9:f0:8e:8c:2d:03:
47:f6:c2:8c:35:e2:8b:62:ad:d7:82:08:9d:e9:56:
f0:e9:5b:1c:45:4a:c4:a0:7d:e8:25:7b:e3:f1:4a:
22:0e:b1:cd:56:ef:57:96:28:af:f1:95:75:6b:32:
ac:11:a9:49:a1:8b:a4:84:44:2b:2a:54:80:9d:62:
d9:b7:c5:44:c4:e2:e6:90:f5:b9:f8:a2:98:17:9c:
2a:f5:ec:53:cd:3e:4a:b3:75:ca:49:e1:1f:45:97:
e8:17:cf:14:e1:95:b2:54:19:1f:3c:ae:2f:0e:43:
31:1f:ce:0d:71:8d:2f:87:51:82:9d:a1:eb:61:d1:
61:e0:13:45:44:09:ff:b2:e1:24:cc:e7:86:fb:29:
48:9d:cc:9f:3c:1e:04:1d:80:66:f1:90:96:a4:be:
6d:bf:cb:98:ff:65:1b:7b:53:8d:d6:d7:8f:9b:d6:
c2:d8:24:10:04:1e:d4:9a:5c:8b:0f:5e:ea:f6:2e:
69:8d:00:d0:f8:1a:f9:86:dd:42:2a:02:9f:76:71:
79:88:47:be:e5:7e:01:aa:fc:9a:5a:7a:fb:7b:3a:
56:69:be:a2:41:c8:69:c8:5d:62:74:7e:64:65:b7:
4a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:1E:7C:F2:DC:B4:49:D8:51:2D:79:38:37:2B:79:F6:2C:83:4E:47
X509v3 Authority Key Identifier:
keyid:10:77:3F:32:D3:CB:4E:13:E4:3F:10:A3:DC:42:2F:1F:32:71:BF:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHc_MtPLThPkPxCj3EIvHzJxv7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/Sh588ty0SdhRLXk4Nyt59iyDTkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/09cafd-68bc-41a2-8bab-80b84e4f20c9/1/EHc_MtPLThPkPxCj3EIvHzJxv7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.114.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:3a:ff:6c:ae:2d:8d:0d:2c:2c:d6:0a:f0:aa:52:6f:57:5d:
60:53:cf:79:28:ba:86:60:42:96:01:4e:47:9c:e2:7a:7b:ad:
5e:38:4e:d6:f0:84:89:dc:90:d1:86:53:2f:7e:7b:3c:4c:15:
34:c2:a8:0e:e0:1f:ac:01:fd:09:53:e3:6a:a0:6b:77:cc:d7:
65:35:7d:00:a8:17:89:49:2c:1a:22:1a:49:1d:3a:d7:ce:3f:
4f:22:7f:b0:0a:dd:bc:bc:e0:76:e3:5e:aa:23:b9:8d:b2:1c:
eb:0f:4c:8e:f7:4b:ac:31:03:d4:46:17:b4:45:49:52:c5:42:
8f:65:1f:ec:5a:2b:79:f1:d5:7c:55:05:56:88:d1:3c:8b:f4:
3a:c9:1e:e3:ed:35:5c:3b:05:02:0c:2a:0b:96:d7:84:75:71:
15:36:11:3e:9b:40:a8:49:c4:2d:af:5b:ed:e2:06:7a:40:e4:
10:21:97:7a:32:b5:0d:b9:64:0b:e4:da:5b:1a:f4:6a:b1:38:
f6:e7:60:71:36:9c:e0:46:9b:96:b5:cf:13:e9:8b:4b:71:20:
61:52:cf:95:32:09:83:25:44:36:b3:02:ba:88:ac:0f:d4:14:
4e:6f:c2:e5:b5:86:43:4f:33:80:5c:b5:95:89:91:c2:ba:24:
4a:f9:3f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:23 2023 by rpki-client on console-ams.rpki-client.org