Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/rA5GEPpDhIkNZCgxT87lJRfbxzA.roa
File: rA5GEPpDhIkNZCgxT87lJRfbxzA.roa (raw, json)
Hash identifier: 3Q33vCLPTq9BHBOFXVcak0pL9YXwsE8x+dsfyBN4B8s=
Subject key identifier: AC:0E:46:10:FA:43:84:89:0D:64:28:31:4F:CE:E5:25:17:DB:C7:30
Certificate issuer: /CN=dcae4b0471a61872c404142e1f90f5074f0d6f15
Certificate serial: 0D81F6DE
Authority key identifier: DC:AE:4B:04:71:A6:18:72:C4:04:14:2E:1F:90:F5:07:4F:0D:6F:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3K5LBHGmGHLEBBQuH5D1B08NbxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/rA5GEPpDhIkNZCgxT87lJRfbxzA.roa
Signing time: Sat 01 Jan 2022 08:54:39 +0000
ROA not before: Sat 01 Jan 2022 08:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205197
IP address blocks: 185.223.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226621150 (0xd81f6de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcae4b0471a61872c404142e1f90f5074f0d6f15
Validity
Not Before: Jan 1 08:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac0e4610fa4384890d6428314fcee52517dbc730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:59:ef:d1:7f:18:63:de:c2:88:b9:96:0c:76:
e9:b6:32:ec:b5:fd:83:e7:55:72:81:49:df:d8:91:
f0:d8:86:63:9e:9a:4e:21:3e:33:d5:02:31:90:8c:
cf:e0:c8:f4:b9:96:a8:cb:69:73:63:07:ef:11:90:
e3:18:5b:27:63:a5:ad:2f:ea:a3:a6:06:c1:31:c8:
84:47:c4:e3:d2:5a:ee:27:ad:6f:6b:0f:44:f7:04:
12:17:69:da:c8:5f:d2:a2:38:67:b5:61:3c:32:5b:
4f:60:e2:1b:7a:2c:15:dc:11:40:0f:19:20:7a:87:
a7:ba:e9:3b:b4:e1:42:cc:29:42:92:ca:98:78:43:
23:e1:cc:51:32:b8:a0:a1:da:8f:60:61:95:2e:df:
e3:6a:c7:38:b1:00:71:81:86:e5:54:6b:6d:70:83:
32:eb:5e:21:62:ac:3b:8a:23:11:90:61:b6:db:a2:
3e:02:db:0e:0d:5f:36:0f:58:81:41:22:2b:a5:40:
d1:8b:07:3f:3e:01:c4:0d:3f:77:07:2d:56:87:cd:
c4:05:3e:1f:ac:e9:bb:7d:22:9e:62:e1:8b:0e:31:
bd:00:f2:41:1a:43:08:ff:66:12:0c:4d:9a:38:dc:
ae:14:51:5d:02:09:87:fa:02:90:05:e7:20:26:39:
a4:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:0E:46:10:FA:43:84:89:0D:64:28:31:4F:CE:E5:25:17:DB:C7:30
X509v3 Authority Key Identifier:
keyid:DC:AE:4B:04:71:A6:18:72:C4:04:14:2E:1F:90:F5:07:4F:0D:6F:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3K5LBHGmGHLEBBQuH5D1B08NbxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/rA5GEPpDhIkNZCgxT87lJRfbxzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/67f9a7-a6e8-426e-bac4-4b68b15d301a/1/3K5LBHGmGHLEBBQuH5D1B08NbxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.88.0/22
Signature Algorithm: sha256WithRSAEncryption
76:48:cc:2c:7b:b9:76:ea:1a:79:45:67:88:6c:9e:fb:94:06:
ff:ab:88:c6:38:18:09:b3:81:17:c6:45:5d:20:f6:ed:c9:ff:
f6:e0:c1:a4:fa:64:98:e9:d1:47:dd:f1:04:d0:15:fd:6d:d6:
fb:5f:82:ba:08:25:dd:c0:f2:b8:27:f1:c3:f0:6d:c3:96:fd:
9f:54:7a:0b:28:97:3c:dc:56:af:96:a3:83:52:ca:dc:78:76:
c0:85:0a:35:1a:94:f7:eb:d5:db:a4:9c:76:3d:13:69:93:d7:
0e:34:8c:45:f9:7b:7f:16:a6:d4:18:f0:03:57:6e:6d:22:98:
2a:d4:61:a2:fa:93:1e:3f:d9:f3:e0:39:6a:f1:9f:ba:6b:da:
31:ca:9d:92:e2:9b:0f:8f:87:7d:17:75:42:28:53:94:f6:d2:
1d:9c:36:0a:cb:77:79:ef:86:35:59:c4:99:e5:b3:bb:1b:47:
c1:a8:60:e8:f1:ba:e2:4a:42:6b:6d:b3:6d:61:06:7f:69:f3:
6d:3d:7d:b3:77:89:b8:77:59:d8:b3:4a:54:e0:8b:98:16:c8:
12:f1:31:70:5e:75:10:d3:25:06:30:c1:3c:35:1f:91:1a:96:
3c:d7:4e:5b:f0:36:c5:d4:00:2c:6b:14:ee:81:8b:bb:e7:ca:
58:dd:ea:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:03 2024 by rpki-client on console-fra.rpki-client.org