Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/iost_UH4oIuNVEtHOcf2_TJFKNQ.roa
File: iost_UH4oIuNVEtHOcf2_TJFKNQ.roa (raw, json)
Hash identifier: SbJC1PUV+4mwvSC4y5x8iv4yE3ravKJiZ9OfwjeZvhE=
Subject key identifier: 8A:8B:2D:FD:41:F8:A0:8B:8D:54:4B:47:39:C7:F6:FD:32:45:28:D4
Certificate issuer: /CN=579ade9feaedc406df5e11bcef0393cd5e9fd0dd
Certificate serial: 024E582D
Authority key identifier: 57:9A:DE:9F:EA:ED:C4:06:DF:5E:11:BC:EF:03:93:CD:5E:9F:D0:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5ren-rtxAbfXhG87wOTzV6f0N0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/iost_UH4oIuNVEtHOcf2_TJFKNQ.roa
Signing time: Sat 01 Jan 2022 15:58:09 +0000
ROA not before: Sat 01 Jan 2022 15:58:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208422
IP address blocks: 45.87.116.0/24 maxlen: 24
185.186.0.0/24 maxlen: 24
2a09:e201::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38688813 (0x24e582d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=579ade9feaedc406df5e11bcef0393cd5e9fd0dd
Validity
Not Before: Jan 1 15:58:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a8b2dfd41f8a08b8d544b4739c7f6fd324528d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:72:b5:2c:3b:7a:6e:69:78:c2:49:11:18:22:
69:66:21:4c:a9:f0:7f:02:bf:49:e6:cf:9c:51:d2:
b6:5a:50:e9:2d:a3:18:f4:21:76:ac:ad:d9:5d:c1:
55:10:a5:02:3c:e0:c0:d1:fc:50:3b:c0:43:1b:e0:
ba:f7:95:20:87:e0:7c:5f:fc:40:2d:8c:bc:1e:b2:
db:3d:8a:1d:6b:64:ee:29:99:e7:2e:be:9f:f4:c9:
24:97:c4:ff:ed:6c:cf:e9:2e:b6:96:a2:10:91:d5:
2f:25:9f:a6:89:99:f7:26:b8:2f:fd:31:14:56:b9:
fa:a6:13:12:b5:59:b8:76:a3:72:31:99:fd:f9:6c:
98:ef:7c:88:98:9d:ac:f8:22:10:cb:ff:39:af:70:
63:92:fa:2f:4e:53:a0:57:61:e9:a1:0c:d6:fe:7b:
98:83:a5:a9:46:16:74:7e:a0:eb:69:98:cd:a3:9e:
03:2c:96:d2:1f:90:a6:72:f3:2d:d6:60:4b:a1:c4:
6d:df:64:2a:59:45:2b:1d:77:60:54:e0:59:9c:e7:
94:5e:88:b2:c1:eb:b6:19:82:12:52:75:ed:81:cb:
1d:63:de:15:1d:f2:cf:40:3b:cd:33:6c:be:16:9d:
f7:90:78:de:72:dc:ba:6d:f1:ff:3c:dc:b0:ae:c1:
ce:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8B:2D:FD:41:F8:A0:8B:8D:54:4B:47:39:C7:F6:FD:32:45:28:D4
X509v3 Authority Key Identifier:
keyid:57:9A:DE:9F:EA:ED:C4:06:DF:5E:11:BC:EF:03:93:CD:5E:9F:D0:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5ren-rtxAbfXhG87wOTzV6f0N0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/iost_UH4oIuNVEtHOcf2_TJFKNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/220ed7-8dc2-4c01-92bb-208ef32c0202/1/V5ren-rtxAbfXhG87wOTzV6f0N0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.116.0/24
185.186.0.0/24
IPv6:
2a09:e201::/48
Signature Algorithm: sha256WithRSAEncryption
6f:bc:84:d9:5e:4a:18:fc:43:a0:79:3d:13:0a:ee:83:cb:71:
9f:05:02:98:b8:c8:98:de:7e:99:45:f9:9c:6a:41:94:0a:f4:
f6:85:25:19:4b:8d:32:b6:67:df:be:a3:b8:c8:f6:91:d3:4f:
3f:1c:16:40:c8:d7:c4:92:ef:83:d9:8d:9e:79:68:b8:be:2a:
ce:96:6a:b5:26:91:17:50:f6:e7:5a:ac:ae:4c:9f:3c:fd:cf:
1a:04:5e:d6:b2:53:75:04:d1:60:e3:bd:5b:b9:b1:b0:8d:31:
3e:41:5a:db:ff:53:b2:eb:79:55:0b:a1:6a:e5:c9:61:48:1a:
99:04:d9:28:24:05:6f:c6:1d:91:5f:d5:e3:75:79:5d:09:1f:
ea:75:89:29:8e:89:ea:0a:2c:6f:48:97:58:9e:7d:bf:b5:8f:
0a:af:d9:f3:dc:f5:b9:93:31:a7:84:25:ae:d4:37:29:96:ae:
df:9e:6a:a2:e7:28:ce:4d:5e:20:78:79:b2:24:60:dc:f2:84:
0b:4c:8d:61:98:c0:54:1e:de:00:80:d9:d8:3f:55:f2:7c:ae:
50:45:ae:be:41:aa:86:f3:8a:d9:1a:09:03:8b:cc:42:7e:5f:
ca:56:a0:64:8a:45:a8:34:04:08:2a:71:30:68:8f:c4:fe:13:
fc:e3:9c:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:49 2023 by rpki-client on console-fra.rpki-client.org