Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/wWO9UNdqgj0PHm84fihQakYI4G4.roa
File: wWO9UNdqgj0PHm84fihQakYI4G4.roa (raw, json)
Hash identifier: CYfOQnVgu2bt4ojWvQoe5Y+6PGl7zMkfdTOYVR+4ud4=
Subject key identifier: C1:63:BD:50:D7:6A:82:3D:0F:1E:6F:38:7E:28:50:6A:46:08:E0:6E
Certificate issuer: /CN=a316c7659af1d56bc718faf614f092758f5edc7f
Certificate serial: 0183A3E74701BAE4AA946BD7E75AEC6DA480
Authority key identifier: A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/wWO9UNdqgj0PHm84fihQakYI4G4.roa
Signing time: Tue 04 Oct 2022 16:49:46 +0000
ROA not before: Tue 04 Oct 2022 16:49:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54113
IP address blocks: 185.221.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a3:e7:47:01:ba:e4:aa:94:6b:d7:e7:5a:ec:6d:a4:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a316c7659af1d56bc718faf614f092758f5edc7f
Validity
Not Before: Oct 4 16:49:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c163bd50d76a823d0f1e6f387e28506a4608e06e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ba:08:a8:02:5c:3e:6d:f1:68:77:16:0c:f5:
b3:f6:2c:ae:a2:e9:a4:38:27:72:92:79:fa:8f:36:
62:41:72:13:b6:e9:5e:a5:60:0f:e9:9e:95:9f:24:
07:61:17:ce:de:46:ae:76:6b:ab:8d:12:e7:a1:19:
ed:c9:14:d6:18:67:d9:10:92:45:d0:87:5a:19:7a:
bf:af:3b:65:22:02:3b:59:81:9d:86:03:93:ea:ac:
53:d8:94:bf:0d:3c:99:1f:df:3d:47:9e:93:0a:e7:
8c:60:30:ef:0c:4e:5d:fa:d9:0c:fd:63:01:25:57:
0b:4b:8c:64:60:ae:7a:7d:73:96:44:5f:c5:68:ba:
3f:b6:85:f2:27:45:95:4e:ce:72:39:1b:f0:37:f8:
6e:21:11:73:9f:6e:df:f0:0f:1a:ba:12:4d:67:84:
e8:7e:c7:5f:4b:07:8e:4b:74:2e:39:ed:fd:dd:57:
87:31:f7:f0:b8:d2:84:67:84:7f:03:24:d5:58:93:
79:7e:7b:02:d6:8c:49:d7:b9:38:9d:37:f5:14:8e:
26:7a:c9:da:29:d8:7d:f2:a2:c0:b7:8d:64:a5:df:
2e:85:89:9d:83:3d:84:d0:b3:88:50:8a:53:f3:89:
d3:64:46:e8:73:5f:98:d4:c2:4d:31:fb:c4:84:fc:
8a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:63:BD:50:D7:6A:82:3D:0F:1E:6F:38:7E:28:50:6A:46:08:E0:6E
X509v3 Authority Key Identifier:
keyid:A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/wWO9UNdqgj0PHm84fihQakYI4G4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/oxbHZZrx1WvHGPr2FPCSdY9e3H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.87.0/24
Signature Algorithm: sha256WithRSAEncryption
94:39:04:87:f7:a2:64:71:a3:5e:94:87:13:81:1b:15:45:8a:
98:62:b8:66:3b:f7:10:2e:3d:32:16:ac:c9:7e:8e:97:13:1d:
ec:af:a9:e6:11:42:74:19:4d:7c:80:88:09:cb:06:f9:99:81:
39:61:81:40:fc:8a:70:f9:df:c7:a1:20:75:01:93:12:12:39:
a7:36:57:d8:be:2e:c1:09:9d:a8:3e:b5:f6:69:9f:d7:65:e2:
9c:35:f3:8f:8a:cc:fa:a5:66:45:bd:40:25:d6:92:c9:9a:90:
a0:87:b9:b7:14:4f:4f:0c:9b:7d:4e:31:5e:7c:1f:e5:07:9f:
bc:db:6d:23:ad:b8:a7:26:1f:37:aa:eb:1e:6c:ac:04:97:76:
49:9a:ec:03:81:50:ad:1b:e6:e6:5c:af:3d:6c:57:02:ef:6e:
de:35:8e:07:43:4b:2f:4e:4b:fc:19:c3:ae:d6:c9:bc:4d:36:
2d:f0:61:22:e1:ce:76:f3:99:0f:e1:c4:d4:46:d9:32:86:36:
0c:1d:11:94:de:58:ec:c3:e9:85:78:b6:42:fb:0a:d0:88:77:
69:e0:09:36:1d:97:6f:f4:01:04:4e:1c:86:71:de:dd:43:71:
d7:8a:57:df:af:85:6f:ee:09:43:76:15:72:21:b2:d7:82:2e:
83:1d:6f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:07 2024 by rpki-client on console-fra.rpki-client.org