Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/iOTArgBy8D4rEMDZf9KX1xcC5aA.roa
File: iOTArgBy8D4rEMDZf9KX1xcC5aA.roa (raw, json)
Hash identifier: jRRcMQ/4cy2xu/46Tki+79f+OB9sYEEKeRZ072VkfBc=
Subject key identifier: 88:E4:C0:AE:00:72:F0:3E:2B:10:C0:D9:7F:D2:97:D7:17:02:E5:A0
Certificate issuer: /CN=88ff3ba6b60d39ad105ff85c269d626c8157655f
Certificate serial: 0182ED7C5A347B7E0AD2487197F7CE8FC8C1
Authority key identifier: 88:FF:3B:A6:B6:0D:39:AD:10:5F:F8:5C:26:9D:62:6C:81:57:65:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iP87prYNOa0QX_hcJp1ibIFXZV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/iOTArgBy8D4rEMDZf9KX1xcC5aA.roa
Signing time: Tue 30 Aug 2022 06:42:05 +0000
ROA not before: Tue 30 Aug 2022 06:42:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202803
IP address blocks: 185.154.44.0/22 maxlen: 24
2a0b:5ac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ed:7c:5a:34:7b:7e:0a:d2:48:71:97:f7:ce:8f:c8:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ff3ba6b60d39ad105ff85c269d626c8157655f
Validity
Not Before: Aug 30 06:42:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88e4c0ae0072f03e2b10c0d97fd297d71702e5a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d5:58:dc:fc:81:6e:42:8e:5a:2a:d5:13:e9:
59:84:d6:ff:ba:eb:b4:d4:a3:d9:5d:ee:fc:01:b5:
31:0e:6d:48:eb:b5:e5:f1:65:76:bd:a4:66:a1:16:
38:6e:8c:d4:99:2e:7a:6a:8c:4b:df:24:05:16:d3:
3c:31:4c:08:cf:0f:78:46:4e:c5:2e:63:81:ec:6d:
1a:ae:46:a8:ad:03:5e:ce:da:d7:80:e5:59:78:a7:
43:e7:52:82:86:9b:9b:2f:a9:1e:6e:0d:e2:80:60:
52:a7:9b:37:4f:3c:fc:8a:39:0d:5a:8a:76:20:19:
8a:27:5d:74:99:44:a7:46:d5:52:79:01:74:41:ed:
4c:5f:45:16:55:3a:71:48:02:15:20:f8:cc:a9:ba:
ff:61:02:0f:33:41:d0:c4:8d:f2:23:d2:bf:20:27:
bf:9c:dc:49:06:bd:b9:da:03:a6:14:6f:c0:23:23:
fd:8b:39:95:bd:18:a5:b7:bf:61:7a:a1:f2:a0:b0:
d9:14:06:91:ad:32:a2:0f:53:37:41:09:06:06:e9:
b7:aa:66:f8:a0:f6:73:83:49:dd:ed:a0:be:ce:df:
7e:db:65:b4:97:09:3f:f7:01:b3:b7:13:a6:b4:a6:
dd:a0:96:62:a4:ea:d4:d4:93:a9:fa:6b:6d:92:02:
82:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:E4:C0:AE:00:72:F0:3E:2B:10:C0:D9:7F:D2:97:D7:17:02:E5:A0
X509v3 Authority Key Identifier:
keyid:88:FF:3B:A6:B6:0D:39:AD:10:5F:F8:5C:26:9D:62:6C:81:57:65:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iP87prYNOa0QX_hcJp1ibIFXZV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/iOTArgBy8D4rEMDZf9KX1xcC5aA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d2c9db-3615-466e-a34a-b109ed9ea8c0/1/iP87prYNOa0QX_hcJp1ibIFXZV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.44.0/22
IPv6:
2a0b:5ac0::/29
Signature Algorithm: sha256WithRSAEncryption
6d:89:ab:4f:26:23:10:e8:e1:ef:96:8e:c9:63:33:fe:56:6a:
77:47:75:f4:f7:91:61:6c:47:87:5b:e1:5b:0c:a7:b2:c9:49:
8f:e5:d3:4a:83:46:c0:fd:25:27:d1:88:a3:d5:84:6a:21:2b:
c0:59:4b:25:9f:3b:49:b7:59:2d:69:82:e2:96:3b:df:a0:5c:
6d:46:de:ed:f3:6c:33:46:2e:97:c4:d2:a7:c9:ea:ef:1d:ba:
bb:c5:13:01:24:4e:87:30:8a:d1:fc:7f:31:53:c9:97:b4:2f:
f4:31:43:a4:16:72:d0:40:65:d6:13:de:d4:1c:d8:9b:db:0f:
60:90:17:81:52:9d:f4:8b:63:c9:e5:01:c8:0a:44:48:64:f6:
bf:93:42:70:d5:dd:e8:59:27:0d:13:17:10:23:88:d0:32:09:
f0:d3:9c:f9:9c:2e:f9:0b:fa:8a:37:cb:37:95:59:75:cf:c9:
ce:1c:4b:4c:c6:0e:7a:95:f7:d8:5f:c9:bd:15:ae:d7:18:2f:
f6:0d:9f:f6:15:0d:2a:66:e2:50:77:c3:71:fe:13:b7:91:22:
40:0d:1d:d5:70:e5:0a:09:e1:e0:48:03:88:0a:22:ea:95:77:
48:4c:9d:41:b1:44:5b:67:7a:87:1f:cb:d9:12:72:41:43:a1:
02:51:10:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:53 2024 by rpki-client on console-ams.rpki-client.org