Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/8rtj3eSBHPpCNPpO4GrsyuK-H4g.roa
File: 8rtj3eSBHPpCNPpO4GrsyuK-H4g.roa (raw, json)
Hash identifier: 5HbmmAWB6c4tZFM6hpiKVoPbfw22fYzp79cr/JKP+x4=
Subject key identifier: F2:BB:63:DD:E4:81:1C:FA:42:34:FA:4E:E0:6A:EC:CA:E2:BE:1F:88
Certificate issuer: /CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9
Certificate serial: 0182E149DF9AE93E0D944E896B6A9CBAD764
Authority key identifier: 09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/8rtj3eSBHPpCNPpO4GrsyuK-H4g.roa
Signing time: Sat 27 Aug 2022 21:51:31 +0000
ROA not before: Sat 27 Aug 2022 21:51:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207715
IP address blocks: 185.229.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:e1:49:df:9a:e9:3e:0d:94:4e:89:6b:6a:9c:ba:d7:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09bb6327cdfa16524dc7d0337138af325fb5e2d9
Validity
Not Before: Aug 27 21:51:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2bb63dde4811cfa4234fa4ee06aeccae2be1f88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:95:24:78:b9:68:1a:d3:fa:64:f0:c1:13:6e:
8c:70:14:9d:8b:d1:76:6f:13:3c:ab:92:e9:81:31:
35:4e:8a:59:48:89:d3:96:ed:7a:de:66:ab:c9:e1:
82:af:0c:e8:e0:2e:1f:b8:17:3b:4f:2a:48:03:d2:
69:02:d8:b9:40:56:1c:cc:a8:ac:4e:ed:34:3a:ed:
69:88:51:3c:1a:d5:11:04:54:05:a6:96:fc:f1:8a:
6e:52:bd:8c:ce:28:3d:cc:67:09:a9:9f:86:12:ad:
db:ce:82:e1:ec:22:66:b8:02:88:47:dd:4b:c6:ab:
92:91:75:89:8a:cc:c3:ee:0e:d4:61:61:1b:7c:65:
d8:bd:78:75:a6:90:a1:12:2b:6d:d7:fb:05:9c:3a:
af:9f:ee:62:fb:47:be:c2:e0:bb:b6:a3:2a:d5:d5:
8a:c6:42:13:c3:e5:24:63:19:12:37:3b:93:91:83:
f5:7d:37:d5:3d:f1:ba:bc:9a:f0:a6:f9:27:33:7c:
e3:b7:41:5f:c3:03:31:d1:a7:83:93:e4:28:22:d2:
0b:e1:a4:a5:7a:e2:c4:8c:7f:0a:27:70:10:18:20:
9e:4b:97:5f:e6:a0:0c:48:51:fd:23:4b:61:eb:44:
26:b0:ca:ea:3d:47:73:13:ba:00:89:24:c0:cd:25:
a7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BB:63:DD:E4:81:1C:FA:42:34:FA:4E:E0:6A:EC:CA:E2:BE:1F:88
X509v3 Authority Key Identifier:
keyid:09:BB:63:27:CD:FA:16:52:4D:C7:D0:33:71:38:AF:32:5F:B5:E2:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbtjJ836FlJNx9AzcTivMl-14tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/8rtj3eSBHPpCNPpO4GrsyuK-H4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/fffde1-9d87-4408-acc2-e7360323303c/1/CbtjJ836FlJNx9AzcTivMl-14tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.100.0/22
Signature Algorithm: sha256WithRSAEncryption
52:a6:6f:c4:3d:61:91:0b:07:61:54:ab:af:93:e6:1e:06:8c:
8c:43:f8:86:59:8f:1f:67:3c:de:cf:64:82:b8:97:17:da:16:
94:a9:6b:d6:1e:81:18:68:b4:a6:44:1f:6f:53:a1:36:9e:92:
ec:d2:9f:95:59:90:a2:28:a5:00:47:53:02:17:3d:16:b9:2f:
ad:23:75:16:cc:ed:cd:17:b5:3e:d6:f7:ff:dc:fd:88:31:17:
0e:c9:bd:63:7f:65:96:fd:50:8d:39:d8:11:f3:2a:a5:80:c6:
dd:90:37:46:62:b4:1e:f6:91:ed:ca:13:1d:5f:7c:e0:b9:e5:
bc:7e:9a:e6:cd:1f:f6:10:00:a6:3e:6b:67:2f:b6:37:14:61:
12:21:a4:e5:99:b6:28:8e:05:a4:69:24:38:ed:8d:ad:9e:1f:
4b:b6:ee:49:4a:10:e0:11:ad:c5:8d:30:d4:76:44:c8:55:f8:
84:62:6b:bd:e5:86:f4:3d:a1:1c:b2:57:06:e1:8e:f6:e8:eb:
e2:f3:b5:b7:18:7d:3d:8c:81:54:ae:a3:ab:51:62:38:a6:df:
09:1b:a7:f5:80:3f:0a:e4:53:42:9d:ec:fc:c2:b2:c0:b3:58:
7c:e0:5b:7a:f3:d0:e8:e6:88:d7:e2:2f:09:a3:4a:84:3a:94:
26:64:26:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:23 2023 by rpki-client on console-fra.rpki-client.org