Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/IEt8YxXnXJB1PcQI7tzRbTBY9lU.roa
File: IEt8YxXnXJB1PcQI7tzRbTBY9lU.roa (raw, json)
Hash identifier: 3aB+wv2w9c1G/G3rCZMlV9usbdWP/drBwRia5C4x59c=
Subject key identifier: 20:4B:7C:63:15:E7:5C:90:75:3D:C4:08:EE:DC:D1:6D:30:58:F6:55
Certificate issuer: /CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Certificate serial: 018389CEB43D96E8C02EF9ACDC1E73E7F870
Authority key identifier: 3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/IEt8YxXnXJB1PcQI7tzRbTBY9lU.roa
Signing time: Thu 29 Sep 2022 15:12:48 +0000
ROA not before: Thu 29 Sep 2022 15:12:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51048
IP address blocks: 185.83.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:89:ce:b4:3d:96:e8:c0:2e:f9:ac:dc:1e:73:e7:f8:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d94df65a3bdddfb55609f1850e149f82bea78f7
Validity
Not Before: Sep 29 15:12:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=204b7c6315e75c90753dc408eedcd16d3058f655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:68:0b:ff:1d:1a:82:a7:f5:2c:8f:d9:36:35:
1b:54:90:2f:b7:08:f3:4b:fe:96:51:2f:50:74:44:
db:3d:08:98:f4:e8:40:9d:94:ac:34:bb:a1:04:74:
60:33:d1:83:15:b0:bf:b3:1e:eb:3f:65:a8:df:f9:
40:1c:03:41:f6:0b:f8:25:b7:8b:c0:ac:e1:5e:1b:
8a:47:9a:55:d5:33:8f:12:aa:35:fe:fc:92:cc:e5:
3a:96:3b:01:5a:02:0c:5f:3b:5a:49:a1:e4:58:80:
df:26:43:46:9b:84:73:08:50:18:40:47:19:04:41:
6b:11:39:69:b6:9b:0f:61:66:72:61:55:53:d7:1a:
59:f7:fc:86:0e:97:7d:1d:ef:a1:70:19:24:53:c9:
48:20:e4:af:22:86:3a:f8:d7:ef:1e:b8:9f:2d:50:
97:6e:e4:99:e4:72:e7:bd:61:7e:95:37:b7:e2:d7:
01:18:c7:58:b5:82:64:e8:55:3b:8d:c7:6f:b3:81:
b0:6e:59:47:52:f6:2c:a4:cd:63:79:5a:2e:82:43:
d5:e8:e2:e5:d7:d7:d2:1f:d1:35:81:2f:fd:5f:20:
16:9e:b1:f9:f6:34:b8:ff:a2:3d:fe:9d:2c:4e:db:
c1:fd:b1:e1:0d:b3:9c:9e:92:56:44:e6:01:f3:70:
0b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4B:7C:63:15:E7:5C:90:75:3D:C4:08:EE:DC:D1:6D:30:58:F6:55
X509v3 Authority Key Identifier:
keyid:3D:94:DF:65:A3:BD:DD:FB:55:60:9F:18:50:E1:49:F8:2B:EA:78:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZTfZaO93ftVYJ8YUOFJ-CvqePc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/IEt8YxXnXJB1PcQI7tzRbTBY9lU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/da9c62-8e16-46df-be2b-06b9ed99f16c/1/PZTfZaO93ftVYJ8YUOFJ-CvqePc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.168.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:dc:60:82:76:ec:d4:25:f3:8d:5b:87:0c:76:c5:89:f7:30:
c5:12:d5:8a:37:4c:af:87:dd:d6:e8:70:d8:45:22:c5:7f:19:
81:7a:44:c8:d8:e4:09:30:f0:60:9f:9d:62:c5:c2:89:1e:aa:
be:08:e1:b9:44:92:1a:4f:b7:75:5c:80:b9:bb:71:3e:e2:07:
1a:8f:81:9e:68:8f:4c:c4:d3:9a:6b:c4:19:bd:f4:e1:4f:90:
2a:21:95:d8:8f:91:10:48:9b:5d:0f:6b:c5:cb:90:d9:bc:1f:
33:e7:4d:63:46:b0:ee:e9:da:4c:65:f1:fe:f8:ff:81:68:f4:
cf:2f:21:7a:25:eb:87:68:1f:52:3a:97:ca:80:5e:6f:ab:d2:
52:56:ab:0d:95:3b:2c:c0:ca:e9:6c:98:41:54:1d:8d:09:8f:
88:cc:7c:c8:46:77:d6:76:58:f5:45:bc:9b:8e:dc:97:22:52:
78:b7:16:10:ff:e1:90:78:f6:03:b8:ee:83:d6:f1:88:23:74:
2b:e3:a1:45:83:2a:ae:28:71:a9:e3:3d:38:5a:3f:df:60:0f:
f7:e2:1c:66:96:81:22:04:72:9e:ac:c7:b9:12:f5:59:ea:d5:
22:ec:dc:0d:07:02:49:d4:3e:59:74:70:6f:85:9a:d8:4f:7e:
35:26:29:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:11 2024 by rpki-client on console-ams.rpki-client.org