Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/3fea1a-57bc-493a-9a3e-8c25b5fb276f/1/wR1jprUdP7zqahftOdSvFb8WCdw.roa
File: wR1jprUdP7zqahftOdSvFb8WCdw.roa (raw, json)
Hash identifier: 4juTezRTY34cEdKTYRp9iUNksfa0/E1JQ5+E+0Xyg3I=
Subject key identifier: C1:1D:63:A6:B5:1D:3F:BC:EA:6A:17:ED:39:D4:AF:15:BF:16:09:DC
Certificate issuer: /CN=1c99cebe0cf09903903d19c1ca0ae62421764859
Certificate serial: 0481D91D
Authority key identifier: 1C:99:CE:BE:0C:F0:99:03:90:3D:19:C1:CA:0A:E6:24:21:76:48:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJnOvgzwmQOQPRnBygrmJCF2SFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/3fea1a-57bc-493a-9a3e-8c25b5fb276f/1/wR1jprUdP7zqahftOdSvFb8WCdw.roa
Signing time: Sat 01 Jan 2022 16:05:36 +0000
ROA not before: Sat 01 Jan 2022 16:05:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16186
IP address blocks: 185.116.4.0/22 maxlen: 22
2001:820::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75618589 (0x481d91d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c99cebe0cf09903903d19c1ca0ae62421764859
Validity
Not Before: Jan 1 16:05:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c11d63a6b51d3fbcea6a17ed39d4af15bf1609dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:6b:47:ab:b1:40:24:aa:46:b9:7c:ce:00:6d:
eb:9f:93:ab:37:59:0c:0b:70:aa:f7:5e:09:91:90:
fc:c7:a5:c2:51:b4:2d:6e:a2:ef:ae:d7:b3:5e:40:
18:6c:d2:69:75:30:4a:ac:e8:e2:26:33:62:fc:5c:
4d:b3:cb:77:46:f3:c8:ba:a8:ce:b7:db:77:75:e1:
df:5f:32:45:7b:1b:b1:50:8f:ea:39:12:e0:13:aa:
5a:2e:a1:d0:fc:79:8d:83:44:b5:99:cd:37:8f:80:
b8:7a:dc:15:4b:0e:8e:ff:0d:4f:38:74:64:d8:68:
e7:14:ad:20:1c:88:6a:56:2f:bf:63:3c:c8:fd:9e:
0e:ba:e9:df:97:7a:9e:3f:f9:86:6d:d3:0c:a7:9f:
c1:5e:9a:54:3b:40:9d:e0:6d:de:f2:27:8f:46:44:
8c:a4:ca:ec:07:b6:c3:a5:9e:12:d7:6a:45:3f:92:
83:40:eb:a5:52:d4:88:30:11:29:ea:00:21:38:b1:
19:47:54:0a:4a:73:f0:f3:80:02:3d:5a:f1:99:bc:
ac:66:92:2b:55:24:74:4d:99:1f:b7:06:05:f8:35:
63:94:9f:e7:3b:28:93:fd:e1:af:3e:6a:cc:b1:0a:
58:a8:fb:f1:68:48:37:b2:dd:5b:bd:ae:60:d7:e9:
b5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:1D:63:A6:B5:1D:3F:BC:EA:6A:17:ED:39:D4:AF:15:BF:16:09:DC
X509v3 Authority Key Identifier:
keyid:1C:99:CE:BE:0C:F0:99:03:90:3D:19:C1:CA:0A:E6:24:21:76:48:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJnOvgzwmQOQPRnBygrmJCF2SFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/3fea1a-57bc-493a-9a3e-8c25b5fb276f/1/wR1jprUdP7zqahftOdSvFb8WCdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/3fea1a-57bc-493a-9a3e-8c25b5fb276f/1/HJnOvgzwmQOQPRnBygrmJCF2SFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.116.4.0/22
IPv6:
2001:820::/32
Signature Algorithm: sha256WithRSAEncryption
1f:21:04:db:ec:43:b0:ef:04:57:e6:f2:7d:f9:cf:2f:ae:74:
09:73:15:07:a0:89:9e:85:df:01:62:e9:5a:00:f8:52:53:04:
55:64:36:72:39:e6:fa:2c:6b:95:c6:8c:07:07:81:d5:38:8e:
4a:2f:cd:4e:4a:12:dc:c6:41:ef:92:f8:77:f0:b1:3b:82:b3:
30:67:32:3d:c3:b5:e6:72:74:99:71:54:62:9c:5d:94:0e:bd:
38:0b:2c:e6:92:41:62:18:3c:01:f6:fb:9e:0e:94:4d:da:f9:
7d:2e:32:9d:b6:5a:c7:c2:90:56:19:21:6b:96:ed:70:e1:75:
15:01:0b:d6:6b:5d:cd:30:28:2f:01:7e:57:4f:bb:21:98:fb:
e0:35:fd:69:f4:0e:5a:4f:d0:1b:cc:d4:a1:75:95:ff:01:62:
3a:01:23:8b:26:c5:75:ed:3b:64:21:6b:92:13:d4:1b:6f:8d:
ff:82:ca:8f:36:56:58:9d:bb:0c:56:76:84:e3:9d:3c:62:7e:
a5:05:93:cd:6a:43:d4:e3:81:8a:91:84:cf:58:fa:5a:53:70:
22:e2:fb:64:7a:dd:6e:4c:e7:23:32:0f:fd:a1:a7:a1:b5:8c:
b2:f4:e9:db:3e:b1:fa:9a:11:a0:b5:53:86:3c:23:fb:0a:be:
c2:fd:37:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:29 2024 by rpki-client on console-ams.rpki-client.org