Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/ddd349-ac50-43e5-a88a-b28f07b2f45b/1/8nMQ2aZokxtCq7C7AeMTulsXImU.roa
File: 8nMQ2aZokxtCq7C7AeMTulsXImU.roa (raw, json)
Hash identifier: Aq6+xJn7GZBe+0AsvXBXM4RE5eNp5eeBiXULtgqGLiw=
Subject key identifier: F2:73:10:D9:A6:68:93:1B:42:AB:B0:BB:01:E3:13:BA:5B:17:22:65
Certificate issuer: /CN=1d0c7e7bb27c533a997d277cadd417ec7bd284f0
Certificate serial: 0182F2FF6F374C758C553D48AE24DB34BB7E
Authority key identifier: 1D:0C:7E:7B:B2:7C:53:3A:99:7D:27:7C:AD:D4:17:EC:7B:D2:84:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQx-e7J8UzqZfSd8rdQX7HvShPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/ddd349-ac50-43e5-a88a-b28f07b2f45b/1/8nMQ2aZokxtCq7C7AeMTulsXImU.roa
Signing time: Wed 31 Aug 2022 08:23:22 +0000
ROA not before: Wed 31 Aug 2022 08:23:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203324
IP address blocks: 185.238.84.0/23 maxlen: 23
185.238.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f2:ff:6f:37:4c:75:8c:55:3d:48:ae:24:db:34:bb:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0c7e7bb27c533a997d277cadd417ec7bd284f0
Validity
Not Before: Aug 31 08:23:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f27310d9a668931b42abb0bb01e313ba5b172265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:69:d2:a1:95:3d:e1:dd:65:8c:fc:26:26:d0:
21:cb:33:1a:2a:cd:81:1a:e8:de:fb:28:db:f5:ef:
4e:ba:3f:b8:24:50:b3:9a:28:20:ba:27:75:1b:0b:
50:ee:64:3f:6a:d0:2e:58:b9:4c:ad:7e:2a:d3:2b:
be:e8:8e:00:ab:fd:28:e1:ca:98:e5:a0:92:52:40:
ae:2b:23:4c:a7:20:80:89:a3:59:f6:0a:34:49:c7:
71:a0:6a:9f:3d:49:f4:89:8b:cd:ae:3f:ee:e5:b5:
bd:72:a0:fb:66:85:59:be:80:cd:3a:36:cd:dd:32:
81:e4:76:36:a0:d4:f4:68:76:42:0f:2e:01:9e:ee:
42:d0:31:29:e2:4a:03:07:05:61:85:12:2c:26:24:
56:15:4d:c9:28:df:f5:90:16:6d:42:95:45:28:46:
1a:77:fd:97:9e:e3:fa:73:28:91:c0:41:cf:48:2b:
2e:c8:49:05:4a:59:30:33:5b:5c:64:a8:86:f6:27:
f7:1f:9f:32:52:ba:c8:66:03:95:65:a1:66:0a:e2:
cc:e8:f8:2a:fd:fa:ce:a4:22:97:ec:45:79:2b:8f:
a1:cb:2e:38:74:1e:fe:d0:ac:75:58:74:2e:4b:a5:
83:7a:7f:58:08:a2:df:45:4d:54:92:83:94:bd:20:
41:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:73:10:D9:A6:68:93:1B:42:AB:B0:BB:01:E3:13:BA:5B:17:22:65
X509v3 Authority Key Identifier:
keyid:1D:0C:7E:7B:B2:7C:53:3A:99:7D:27:7C:AD:D4:17:EC:7B:D2:84:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQx-e7J8UzqZfSd8rdQX7HvShPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/ddd349-ac50-43e5-a88a-b28f07b2f45b/1/8nMQ2aZokxtCq7C7AeMTulsXImU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/ddd349-ac50-43e5-a88a-b28f07b2f45b/1/HQx-e7J8UzqZfSd8rdQX7HvShPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.84.0-185.238.86.255
Signature Algorithm: sha256WithRSAEncryption
87:07:54:40:9b:2a:ca:2c:de:46:07:cd:fa:f7:63:50:44:67:
34:7e:d7:4d:7b:8a:90:12:53:11:41:98:7d:f6:15:f0:58:4a:
d7:dc:0d:19:b8:b8:8b:8a:16:2c:bd:fd:e0:c3:b2:78:a1:64:
c9:d8:f0:ca:e2:fb:16:b5:27:a1:2c:37:d6:e5:48:2f:e1:6f:
27:1c:cc:b2:ef:8a:c7:c3:e4:57:1f:b0:5d:96:7e:7e:3e:e6:
b6:17:66:0e:78:f7:e6:24:43:90:8b:4a:e3:a3:97:6d:dc:61:
ae:1e:d3:08:6f:3a:80:19:20:3b:fb:33:98:05:73:88:14:75:
01:13:0d:0b:ae:b8:2b:16:86:16:11:bf:28:b8:cb:21:2f:03:
2b:64:5b:df:8e:32:bc:f9:8b:19:7f:af:6a:2a:24:96:6e:c1:
e4:7e:62:dd:03:aa:24:b7:8f:5f:ce:a9:97:65:3e:65:84:25:
7a:c6:8c:a4:35:93:92:e4:76:3d:59:5c:8d:bb:ab:cd:c0:41:
de:ce:d9:4c:bc:96:e0:d1:5f:2b:9c:5e:28:f8:be:6f:27:a1:
f9:49:0a:ff:a1:77:85:c7:f0:a3:9f:ff:a3:6a:12:97:f4:90:
73:e7:44:71:ea:e3:73:97:1c:4b:a4:17:66:22:80:1b:39:40:
4a:8c:be:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:14 2023 by rpki-client on console-ams.rpki-client.org