Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/b331cc-6b6d-4693-9267-b422779160bb/1/Ki3EGA-ZDdHAXKehf27-mwE6-No.roa
File: Ki3EGA-ZDdHAXKehf27-mwE6-No.roa (raw, json)
Hash identifier: fZYL87lYBqayQy7f93By7IELLzUiuan5L1kXBV7ufyU=
Subject key identifier: 2A:2D:C4:18:0F:99:0D:D1:C0:5C:A7:A1:7F:6E:FE:9B:01:3A:F8:DA
Certificate issuer: /CN=f8b18285f42ed67c11d8f83df488b10fc87f17bf
Certificate serial: 0182D02F9585054989DA34017C5CA482D60D
Authority key identifier: F8:B1:82:85:F4:2E:D6:7C:11:D8:F8:3D:F4:88:B1:0F:C8:7F:17:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-LGChfQu1nwR2Pg99IixD8h_F78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/b331cc-6b6d-4693-9267-b422779160bb/1/Ki3EGA-ZDdHAXKehf27-mwE6-No.roa
Signing time: Wed 24 Aug 2022 14:09:15 +0000
ROA not before: Wed 24 Aug 2022 14:09:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210238
IP address blocks: 185.132.228.0/22 maxlen: 22
81.22.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d0:2f:95:85:05:49:89:da:34:01:7c:5c:a4:82:d6:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8b18285f42ed67c11d8f83df488b10fc87f17bf
Validity
Not Before: Aug 24 14:09:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a2dc4180f990dd1c05ca7a17f6efe9b013af8da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f6:f5:2f:82:fb:af:c9:47:99:79:34:5f:70:
b8:47:87:55:cc:78:af:f2:2c:07:2b:26:e3:43:39:
2a:50:7f:0c:8c:0d:72:18:0e:a5:7c:ba:43:5d:ff:
47:80:fc:e3:d4:8c:50:0d:4e:c5:34:8b:41:75:5a:
58:71:3a:4c:79:f6:84:e7:85:2b:30:4a:6a:e7:c0:
a0:3f:e2:30:43:f2:33:49:1f:24:67:06:cf:e3:27:
62:64:d2:f2:85:20:2e:69:bf:8e:84:b6:9f:28:a1:
5b:00:59:13:f2:49:35:d0:94:f0:84:18:1e:5d:a0:
fd:b4:0c:78:51:74:60:8a:0f:bb:96:72:61:85:69:
51:a6:05:e3:d9:ef:0a:ca:f7:bf:1a:2f:1d:bb:4a:
a1:60:84:91:92:99:0c:7b:54:5c:e5:2b:0c:28:8c:
07:be:eb:0d:6f:ff:5e:f1:ea:86:42:aa:24:9b:da:
9d:99:84:fc:fa:5d:13:d3:71:55:b0:89:89:7d:cd:
99:64:63:b4:3e:54:0e:c5:92:4a:18:a1:ef:8e:45:
97:29:8b:4f:78:b8:47:fd:6b:53:6a:d9:b2:2d:73:
b3:fd:52:6d:26:8d:19:85:6b:78:4a:0c:7b:9a:33:
ca:87:94:73:d7:c1:e8:59:f1:21:21:cc:ab:c5:35:
a4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:2D:C4:18:0F:99:0D:D1:C0:5C:A7:A1:7F:6E:FE:9B:01:3A:F8:DA
X509v3 Authority Key Identifier:
keyid:F8:B1:82:85:F4:2E:D6:7C:11:D8:F8:3D:F4:88:B1:0F:C8:7F:17:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-LGChfQu1nwR2Pg99IixD8h_F78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b331cc-6b6d-4693-9267-b422779160bb/1/Ki3EGA-ZDdHAXKehf27-mwE6-No.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/b331cc-6b6d-4693-9267-b422779160bb/1/1-LGChfQu1nwR2Pg99IixD8h_F78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.224.0/22
185.132.228.0/22
Signature Algorithm: sha256WithRSAEncryption
ca:69:a2:d9:89:f4:a2:49:2e:89:b0:49:44:7c:e7:d0:c1:c0:
73:11:f8:55:50:36:90:75:ab:c2:f7:fa:f4:c6:9e:ab:aa:4a:
13:4b:eb:91:ec:01:05:44:82:3f:5d:46:28:0f:1d:63:2c:30:
19:ab:01:0e:5d:9f:90:bc:1f:8e:92:ae:7c:c2:f0:0f:8b:8b:
2d:86:fe:a1:04:29:5b:00:c0:15:bd:fe:2c:de:71:92:10:ce:
cb:0d:51:57:98:f9:ee:ab:52:81:0c:47:77:7f:bc:e3:15:1e:
f0:65:13:99:ec:3f:24:43:db:df:45:15:3a:57:bf:57:e6:05:
2d:65:c1:a4:54:6e:07:b1:a1:45:b4:df:4a:2d:c2:01:a9:8f:
03:47:33:81:94:0d:65:0a:99:1d:ee:ac:d8:38:d3:65:1b:46:
db:d3:86:13:41:ca:06:de:21:76:a8:ec:96:8a:0c:40:d0:d1:
4a:d6:ed:4f:8c:94:42:74:5d:3f:a8:fa:3b:93:49:b6:cc:45:
0f:69:b5:ca:ee:f4:43:09:0f:43:90:dd:67:15:38:37:ac:9d:
c4:6d:3d:9b:b2:e7:05:cd:73:31:26:33:67:a4:c4:8f:20:fe:
e0:60:3d:1b:6e:4a:e4:1b:70:d5:2c:16:f8:58:d0:96:62:f0:
65:82:d5:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:38 2023 by rpki-client on console-fra.rpki-client.org