Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/3IaojcN83OxcfAGGcRLSSdLlsjs.roa
File: 3IaojcN83OxcfAGGcRLSSdLlsjs.roa (raw, json)
Hash identifier: rgg/NU27mbL0092s2pGkRY3B2oSkdNJI2WRKt+IYGX8=
Subject key identifier: DC:86:A8:8D:C3:7C:DC:EC:5C:7C:01:86:71:12:D2:49:D2:E5:B2:3B
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17C0934C
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/3IaojcN83OxcfAGGcRLSSdLlsjs.roa
Signing time: Sat 01 Jan 2022 04:54:19 +0000
ROA not before: Sat 01 Jan 2022 04:54:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53850
IP address blocks: 185.214.68.0/24 maxlen: 32
45.13.244.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 398496588 (0x17c0934c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc86a88dc37cdcec5c7c01867112d249d2e5b23b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:cc:57:96:63:a4:e9:38:4e:73:8a:5e:76:f3:
cd:12:b2:d2:58:4b:71:0a:54:cf:84:8d:57:93:97:
16:e4:c3:47:c6:1c:12:a7:ee:4d:41:8f:95:b7:bf:
43:7c:8f:5a:7f:22:fe:93:bd:15:a7:88:e7:1f:76:
89:5e:3a:23:9f:33:60:e9:5c:e9:c9:8f:60:1d:95:
3a:20:0d:00:cd:27:cf:b6:51:25:60:7d:83:c6:61:
50:bb:1d:db:a9:b9:fe:d6:a6:70:b8:b2:3b:5b:76:
04:cf:b1:b1:07:d1:f0:b4:cc:1f:34:d5:bd:a1:c4:
5e:72:90:8b:e9:07:2b:1d:17:11:e9:fa:d9:82:38:
d7:bd:78:f2:96:fa:2e:4a:d2:b8:4f:a4:15:5f:19:
8f:61:76:71:9c:6c:c0:ef:93:72:04:01:2b:7d:0f:
36:2e:10:17:bc:29:fd:a0:31:9c:ae:b4:2f:ef:80:
b3:85:11:78:2b:d8:b0:21:d9:a2:4d:4d:14:98:93:
60:f5:d6:fc:15:59:e4:24:ad:87:b8:f2:34:88:25:
75:70:05:0f:f8:c4:29:91:c9:f7:88:5b:72:5a:f9:
43:16:87:f4:51:dd:8c:ba:fc:66:91:c0:78:c4:2b:
6a:dd:32:92:0d:41:ec:88:c0:58:51:a2:e8:bf:ea:
11:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:86:A8:8D:C3:7C:DC:EC:5C:7C:01:86:71:12:D2:49:D2:E5:B2:3B
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/3IaojcN83OxcfAGGcRLSSdLlsjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.244.0/23
185.214.68.0/24
Signature Algorithm: sha256WithRSAEncryption
48:53:1f:c5:82:78:74:23:90:ef:91:d9:de:f8:36:75:35:36:
16:24:0e:16:53:bd:f9:62:d3:e0:db:f6:db:c9:bb:7a:92:be:
4f:e8:b1:db:5d:db:59:d2:4f:c7:4c:34:97:ae:0c:fd:8e:a3:
11:83:8a:d2:ea:5a:3c:f8:27:57:ea:20:93:74:c2:ad:1f:3e:
e9:ba:38:53:ff:63:81:a2:29:da:ee:b1:48:7c:f8:26:68:e5:
9d:63:0f:33:49:db:d1:af:4d:ea:d2:72:68:c1:92:07:c9:3f:
2b:e3:00:c0:74:dc:92:b7:dd:34:03:ca:36:4d:01:f3:4a:de:
ac:da:c4:41:3a:53:d5:52:d8:21:bf:61:2e:41:65:89:19:56:
48:9c:67:9e:46:6d:77:96:6f:52:61:a8:88:b3:ca:e5:1f:8c:
e4:56:e0:90:d2:71:6f:d8:91:2b:3a:02:89:ce:e3:fa:4a:f5:
c0:d0:68:f5:d0:52:1e:ea:c0:f8:d9:06:f9:fb:bb:bf:8e:a0:
05:0f:59:28:c7:33:b3:ec:69:6f:95:77:dc:e2:c9:bc:3b:20:
0e:2b:59:d0:99:5e:e7:89:f4:4f:0c:9d:0a:01:91:6e:14:88:
23:a0:49:f8:85:f1:36:48:45:b8:90:d1:04:eb:3f:0e:a3:e5:
55:f4:d0:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org