Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/4kX9ZsTJCr1bT1Gd3RLb7rPkEX8.roa
File: 4kX9ZsTJCr1bT1Gd3RLb7rPkEX8.roa (raw, json)
Hash identifier: b9JXMz4oQQ8gaTl9sJSb8mkYUUibJGuUPcV86GnIIpM=
Subject key identifier: E2:45:FD:66:C4:C9:0A:BD:5B:4F:51:9D:DD:12:DB:EE:B3:E4:11:7F
Certificate issuer: /CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Certificate serial: 02399A36
Authority key identifier: 03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/4kX9ZsTJCr1bT1Gd3RLb7rPkEX8.roa
Signing time: Sat 01 Jan 2022 11:59:50 +0000
ROA not before: Sat 01 Jan 2022 11:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207645
IP address blocks: 185.86.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37329462 (0x2399a36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2
Validity
Not Before: Jan 1 11:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e245fd66c4c90abd5b4f519ddd12dbeeb3e4117f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0e:85:57:fc:de:1b:5e:58:e3:b1:44:5a:3b:
ef:e3:96:24:64:86:95:db:da:ff:9d:a1:8d:2f:d1:
dd:8a:9f:6f:04:cc:d0:65:f2:8f:87:bc:05:c2:79:
10:6a:4e:c5:44:32:f4:23:12:ea:fb:e4:f0:51:32:
a0:97:ee:71:3a:18:cc:53:97:32:bd:3e:7c:d7:b2:
5c:96:46:9a:d5:7e:7f:b1:45:42:7c:e3:0c:f8:c6:
ca:46:35:c1:f7:3e:be:a0:4c:4f:24:92:f3:de:3a:
be:05:69:b4:42:68:ee:cf:7f:91:9d:50:60:ef:a3:
0e:2d:c0:de:ff:fb:6b:78:d5:f1:14:d0:8c:44:bb:
9e:79:d7:37:b6:a8:4f:45:b6:b5:76:a5:9f:aa:ff:
1b:32:aa:4d:26:b7:19:d5:7a:f5:cd:11:d4:23:b7:
3d:b5:12:ca:74:59:ec:85:66:eb:a6:a8:db:41:05:
92:3e:d8:97:01:00:0c:b7:16:42:c9:ce:22:26:ff:
cd:52:8b:6e:61:94:bf:3b:3d:ab:a7:92:f3:37:66:
77:32:40:ec:ef:36:77:20:3a:9d:8c:df:d7:c0:77:
65:3a:d8:1d:40:ea:4c:3c:0a:42:33:a6:92:02:ed:
d1:8c:61:24:e6:8f:e2:b2:3b:92:0f:e2:f5:b3:16:
30:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:45:FD:66:C4:C9:0A:BD:5B:4F:51:9D:DD:12:DB:EE:B3:E4:11:7F
X509v3 Authority Key Identifier:
keyid:03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/4kX9ZsTJCr1bT1Gd3RLb7rPkEX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.10.0/24
Signature Algorithm: sha256WithRSAEncryption
94:11:0b:17:34:a8:14:88:7d:5d:33:1d:52:d6:82:80:2d:10:
b5:13:d5:46:50:c9:44:d5:61:a0:33:83:7e:e1:0f:77:6f:a6:
93:db:22:fc:45:db:95:67:76:1b:14:f8:00:5f:1d:77:85:b8:
0b:db:a0:5b:a4:e8:7d:72:29:31:e4:22:4f:d3:58:81:82:b8:
94:a8:e1:20:23:1b:8a:86:0b:1f:db:0b:d4:ca:ab:93:07:2d:
27:23:c3:88:64:64:c2:0a:d1:2f:9b:ca:75:fb:87:d3:18:91:
f5:0a:ee:02:3a:d4:2b:17:70:64:88:9c:2b:c7:91:87:8d:f5:
a3:13:f2:a9:3a:0f:1f:38:0b:ce:bc:42:85:fb:32:db:e3:7a:
c0:fb:ca:e7:c6:de:eb:45:15:ed:24:6e:ef:60:e0:6b:76:0d:
8d:10:de:9c:a1:21:a1:68:24:ff:ae:09:36:60:73:d4:28:9c:
03:17:af:12:34:63:87:a9:bb:95:7a:6a:e6:31:d0:7b:78:9b:
96:a9:b5:6c:97:c8:e0:ac:92:90:2c:96:67:88:8d:5a:e5:12:
7a:26:13:7c:c2:1b:c0:e6:fe:a9:70:16:28:49:e7:f4:f4:7d:
b9:d0:da:92:99:eb:63:b3:a7:c1:3c:9c:40:d6:9f:8a:b0:78:
9e:12:ae:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:43 2023 by rpki-client on console-ams.rpki-client.org