Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/3dbd39-5f9f-48fb-9c01-bd6e3b026c37/1/IvkslGHeMkGHfMEL27NZzJB9Rik.roa
File: IvkslGHeMkGHfMEL27NZzJB9Rik.roa (raw, json)
Hash identifier: lanIHHjuFGeVxJMo0jN3RWAfYaTzV/zxpKy0CGfFmLI=
Subject key identifier: 22:F9:2C:94:61:DE:32:41:87:7C:C1:0B:DB:B3:59:CC:90:7D:46:29
Certificate issuer: /CN=31db847d1db1e0b2c2c25502210ff5a719967a19
Certificate serial: 010130F4
Authority key identifier: 31:DB:84:7D:1D:B1:E0:B2:C2:C2:55:02:21:0F:F5:A7:19:96:7A:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MduEfR2x4LLCwlUCIQ_1pxmWehk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/3dbd39-5f9f-48fb-9c01-bd6e3b026c37/1/IvkslGHeMkGHfMEL27NZzJB9Rik.roa
Signing time: Wed 30 Mar 2022 08:35:58 +0000
ROA not before: Wed 30 Mar 2022 08:35:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 185.238.212.0/23 maxlen: 24
185.238.214.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16855284 (0x10130f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31db847d1db1e0b2c2c25502210ff5a719967a19
Validity
Not Before: Mar 30 08:35:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22f92c9461de3241877cc10bdbb359cc907d4629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1f:f1:8a:18:65:e4:87:72:1f:b0:27:2b:a8:
45:39:ee:46:bf:6b:26:58:1a:69:8c:a0:a7:80:32:
9e:df:46:63:10:56:4d:02:ea:57:80:f3:9d:82:e0:
75:9a:a0:c7:05:32:5e:42:df:b2:cf:4f:f4:ba:ff:
c5:9b:60:21:37:0f:80:03:f7:34:44:8f:24:56:46:
22:88:b7:36:91:0a:66:d9:3e:88:1a:e9:b4:5b:66:
84:d0:b0:b5:b6:c0:71:a5:4d:48:a2:8c:23:66:01:
33:3c:c8:cb:24:1b:e2:43:4e:f0:df:43:8c:85:48:
ea:4c:7b:f4:e7:1d:f7:36:c7:d9:a3:69:73:24:fe:
82:6e:97:00:c1:06:76:d6:35:8f:2e:93:2e:71:9d:
97:7f:5f:e1:f9:1f:70:06:3c:34:29:73:d2:e9:2e:
25:a9:ed:d6:2e:ac:11:43:9d:4f:3f:5b:f2:48:8c:
38:d1:3a:f3:9e:0c:07:84:bb:0d:e6:38:9f:d4:95:
f3:f0:13:6b:b4:14:4f:47:5b:1b:0c:dd:27:29:49:
2f:ae:ee:42:66:c4:b6:17:71:6c:4a:e1:41:e2:e9:
0a:af:d4:7f:58:f5:65:0d:5a:e7:13:2b:d3:f0:4f:
07:5a:d1:46:08:9a:fd:61:a3:bc:24:75:72:ef:50:
f3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:F9:2C:94:61:DE:32:41:87:7C:C1:0B:DB:B3:59:CC:90:7D:46:29
X509v3 Authority Key Identifier:
keyid:31:DB:84:7D:1D:B1:E0:B2:C2:C2:55:02:21:0F:F5:A7:19:96:7A:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MduEfR2x4LLCwlUCIQ_1pxmWehk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/3dbd39-5f9f-48fb-9c01-bd6e3b026c37/1/IvkslGHeMkGHfMEL27NZzJB9Rik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/3dbd39-5f9f-48fb-9c01-bd6e3b026c37/1/MduEfR2x4LLCwlUCIQ_1pxmWehk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.212.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:1e:62:30:80:e5:da:44:9a:57:b7:21:4b:e4:12:ce:c8:65:
6c:5b:5e:52:58:f0:14:b6:47:85:20:4a:98:ac:d4:da:32:6c:
2e:6a:8b:42:8b:fd:a4:62:55:c9:19:81:d4:f4:f1:4c:bc:82:
b8:33:4b:c7:35:d9:ee:4c:54:94:2b:37:74:a0:57:ab:95:13:
bb:11:fb:af:3b:1f:bb:2e:c4:d1:d0:d0:7d:ea:a8:e2:b4:e8:
3b:fd:42:62:f3:14:63:b2:1f:2d:d7:de:f7:5d:a8:b5:c7:2c:
c6:3c:67:f3:c3:ef:61:2e:ec:37:33:c1:11:8c:54:8e:86:98:
e8:8a:9a:89:94:4a:65:6c:20:87:e4:62:c5:03:2f:2a:17:1d:
d9:69:e9:0d:cd:55:c5:60:f4:06:be:3f:fb:75:c8:75:a6:20:
eb:e2:06:1a:ad:e0:39:43:30:0d:10:10:61:54:ca:f8:59:c1:
b9:5a:9a:e9:64:d0:5e:a4:fb:f0:79:ea:cd:33:3c:5c:e7:7a:
b9:9c:c0:d0:31:c8:1a:ae:05:d6:d1:a4:a0:07:9c:72:7a:f3:
45:23:19:1e:44:02:9b:27:ba:fd:32:7e:42:2c:8a:89:26:6a:
74:b4:cb:43:27:81:f8:82:34:4c:01:1a:1b:15:7f:e9:d8:2f:
b8:eb:d3:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:02 2023 by rpki-client on console-fra.rpki-client.org