Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/4923e9-4764-411c-8596-9f4429f3381e/1/Z8__Au98vDhfYTqOAJ4Nb2C2iq0.roa
File: Z8__Au98vDhfYTqOAJ4Nb2C2iq0.roa (raw, json)
Hash identifier: wrONaRC2sBztWvNuOtAHGnxdYGjSmJd4+JH2abYZjcA=
Subject key identifier: 67:CF:FF:02:EF:7C:BC:38:5F:61:3A:8E:00:9E:0D:6F:60:B6:8A:AD
Certificate issuer: /CN=39ce4c0abe2785d46a5571852170370423b5c59a
Certificate serial: 014E0F
Authority key identifier: 39:CE:4C:0A:BE:27:85:D4:6A:55:71:85:21:70:37:04:23:B5:C5:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oc5MCr4nhdRqVXGFIXA3BCO1xZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/4923e9-4764-411c-8596-9f4429f3381e/1/Z8__Au98vDhfYTqOAJ4Nb2C2iq0.roa
Signing time: Thu 06 Jan 2022 04:40:47 +0000
ROA not before: Thu 06 Jan 2022 04:40:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204062
IP address blocks: 185.115.232.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85519 (0x14e0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ce4c0abe2785d46a5571852170370423b5c59a
Validity
Not Before: Jan 6 04:40:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67cfff02ef7cbc385f613a8e009e0d6f60b68aad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:99:94:7e:f1:9e:74:27:c4:9b:ec:fb:77:80:
8b:5a:d5:49:50:a3:66:3c:08:6d:11:7f:4e:c8:49:
bb:17:df:89:ef:82:04:44:6b:37:f2:c9:27:31:5d:
7d:a4:be:40:df:7b:b3:60:e5:a7:35:fa:22:24:18:
7b:bd:51:b2:1f:4c:df:ff:74:31:db:ce:25:73:9e:
45:32:58:76:a7:d9:f9:3e:75:b7:cd:d5:61:ec:1d:
7f:77:f4:97:c4:1c:bc:1f:a9:b1:54:70:8b:70:23:
21:b3:27:1d:3b:ac:f1:9f:8b:f6:9f:71:76:d8:f4:
62:3b:d7:49:2b:3f:bf:a8:2a:b5:e9:c5:c1:36:e7:
4a:72:b4:d6:08:65:87:d4:62:a5:1a:53:d0:29:7c:
ca:aa:9b:8e:e9:c7:a7:6b:ea:40:d2:73:da:e4:01:
4a:bf:0d:77:38:26:fb:47:a5:50:e0:63:15:72:4a:
37:65:9b:87:f4:a3:57:ca:89:27:56:02:6c:e6:a3:
c1:30:3d:9f:55:0b:db:ff:5f:f4:00:2e:99:93:98:
52:04:27:1e:59:9d:e9:1b:3b:15:92:5b:0e:ee:fc:
4f:f1:f4:8f:39:9c:bf:d5:a2:34:9e:63:3f:ba:50:
90:23:d8:19:04:4f:c6:ae:bd:ea:a8:b6:97:23:50:
79:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:CF:FF:02:EF:7C:BC:38:5F:61:3A:8E:00:9E:0D:6F:60:B6:8A:AD
X509v3 Authority Key Identifier:
keyid:39:CE:4C:0A:BE:27:85:D4:6A:55:71:85:21:70:37:04:23:B5:C5:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oc5MCr4nhdRqVXGFIXA3BCO1xZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/4923e9-4764-411c-8596-9f4429f3381e/1/Z8__Au98vDhfYTqOAJ4Nb2C2iq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/4923e9-4764-411c-8596-9f4429f3381e/1/Oc5MCr4nhdRqVXGFIXA3BCO1xZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.232.0/22
Signature Algorithm: sha256WithRSAEncryption
56:c9:bd:56:1c:75:e1:3e:35:7d:aa:3f:1b:09:81:64:91:df:
40:01:5f:4c:47:26:4b:6c:04:6c:0c:d0:ab:ac:86:a1:51:0f:
33:f9:15:fc:e0:4e:27:5b:ad:2a:ee:2e:6e:da:35:ba:5f:32:
e7:35:55:0e:5e:6f:e9:34:54:ab:cd:a0:d3:36:9e:ae:a2:a9:
73:4a:d3:88:70:f9:9e:e1:f5:78:3d:f6:94:7f:e6:7d:cc:2b:
58:04:12:4e:06:ff:bd:58:e6:36:a6:30:9d:88:6a:d1:de:15:
3a:7d:5d:1e:39:ec:97:cf:99:cd:c5:4d:a5:5b:42:81:da:76:
ae:3d:b6:e2:9d:39:61:d8:39:98:a8:df:a9:4f:4e:e0:38:f5:
c0:9c:85:ad:4f:83:84:f7:29:9b:05:f3:5a:88:67:6f:eb:e9:
50:ef:04:aa:c9:43:d0:aa:e0:10:3b:fd:d0:8c:c5:45:4c:57:
ea:6f:de:7f:6b:16:eb:5c:5e:c0:71:4e:9a:32:9e:05:6a:7f:
0e:8f:cb:49:54:fa:53:e2:24:60:43:a1:f5:f1:59:3f:b3:b4:
3c:a2:37:ce:c8:7c:49:ed:2f:c0:93:56:cb:c9:31:9c:bd:28:
5e:cc:af:0e:97:48:bc:7e:c2:c9:90:9d:b9:a4:4a:c4:58:4d:
4a:28:7b:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:33 2023 by rpki-client on console-ams.rpki-client.org