Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/RzkFX5is3ybE-LP2mWCrZgAYVZA.roa
File: RzkFX5is3ybE-LP2mWCrZgAYVZA.roa (raw, json)
Hash identifier: /5SoIa5wSuFUvc9Bqshp86Xy5Y9JdVQbqJ9aQ/XjiXY=
Subject key identifier: 47:39:05:5F:98:AC:DF:26:C4:F8:B3:F6:99:60:AB:66:00:18:55:90
Certificate issuer: /CN=aca77c708af0ba1f81549c9f87089559390167a5
Certificate serial: 36A6643B
Authority key identifier: AC:A7:7C:70:8A:F0:BA:1F:81:54:9C:9F:87:08:95:59:39:01:67:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/RzkFX5is3ybE-LP2mWCrZgAYVZA.roa
Signing time: Sat 01 Jan 2022 04:03:41 +0000
ROA not before: Sat 01 Jan 2022 04:03:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.1.102.0/24 maxlen: 24
2001:7f8:bd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 916874299 (0x36a6643b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca77c708af0ba1f81549c9f87089559390167a5
Validity
Not Before: Jan 1 04:03:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4739055f98acdf26c4f8b3f69960ab6600185590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:71:5d:6b:dd:d5:5e:06:f4:fd:7a:84:86:c6:
60:d5:87:9a:4b:b4:ba:18:d6:5a:a8:a9:f7:63:fc:
7f:b2:65:b9:a9:fb:01:24:66:1f:dc:0b:d3:cb:6f:
98:f0:4b:c0:28:38:a5:8b:80:dc:c8:fc:0f:76:1e:
64:a5:54:33:25:60:7e:12:09:dd:53:5f:f9:ca:68:
bc:91:71:d1:e0:3b:ac:44:25:12:d2:c6:1b:4d:51:
45:d5:1a:01:b1:68:41:3a:17:00:a7:d2:56:82:8a:
9b:f7:b7:1b:40:44:db:d8:ed:5d:af:a1:f6:57:fc:
11:c2:ee:0b:54:81:cf:21:7e:c1:36:70:2e:ee:69:
bd:f2:32:fb:c6:1a:20:25:c3:ff:65:8b:94:22:d5:
41:ba:40:2f:60:1b:78:0b:8d:1d:e1:a1:ec:2d:5c:
a0:3c:fd:f2:68:57:83:fb:83:45:83:01:09:ea:36:
d2:91:04:e7:0d:cc:5e:76:54:19:cf:34:42:53:ad:
c8:48:41:09:23:e3:b2:5d:9a:5f:d3:a0:e2:c4:e8:
c9:65:53:c1:62:6b:21:2a:3c:5c:e8:8b:fc:e2:1c:
2b:c1:51:60:10:90:93:1e:12:0d:dd:da:f5:1f:2b:
ba:9f:82:4a:4f:1c:b0:af:3b:0a:7e:89:e2:f1:84:
5b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:39:05:5F:98:AC:DF:26:C4:F8:B3:F6:99:60:AB:66:00:18:55:90
X509v3 Authority Key Identifier:
keyid:AC:A7:7C:70:8A:F0:BA:1F:81:54:9C:9F:87:08:95:59:39:01:67:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/RzkFX5is3ybE-LP2mWCrZgAYVZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/8fe7d8-017b-41aa-a91f-28b19e3fd4a6/1/rKd8cIrwuh-BVJyfhwiVWTkBZ6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.102.0/24
IPv6:
2001:7f8:bd::/48
Signature Algorithm: sha256WithRSAEncryption
45:c4:15:73:ea:64:9d:cd:a9:38:93:45:00:bf:ca:a0:a7:0a:
3a:31:20:b3:60:7e:fb:9d:4b:7d:2a:23:37:ed:0a:9e:1f:53:
d6:55:84:7a:95:96:0d:e4:a5:e9:67:86:4a:77:7a:bf:68:f7:
3e:7d:c7:d6:08:58:f5:bd:04:a7:58:3c:21:42:4d:74:fa:ed:
9a:a9:50:a4:41:a9:7b:a9:e2:62:cf:38:d8:53:7d:d0:0d:99:
68:fb:56:8e:67:11:f9:71:b4:68:30:12:ab:a7:06:2c:22:a5:
27:46:f9:ce:78:07:3a:d5:7f:fe:2d:03:9a:05:8d:b5:a0:39:
1c:0d:bd:f4:a2:38:c0:74:db:46:44:6e:01:19:66:6c:00:83:
15:24:a2:b0:b8:89:74:f2:fd:df:20:eb:f4:9d:5e:da:a3:af:
b5:fe:0e:aa:c1:67:1b:f9:cc:c4:9a:1b:62:95:db:5e:8e:44:
7d:28:7d:86:64:a5:66:cd:bd:4a:3b:49:54:87:0d:9a:f1:8a:
8f:07:f0:35:e6:5a:4d:83:d0:da:29:a0:2d:8d:e0:cb:8c:93:
3e:62:4a:a7:60:6d:36:ee:84:44:c4:32:48:77:e0:a4:f6:d4:
88:92:16:d5:aa:06:5a:d8:33:9e:92:bf:1c:6e:98:3e:3b:37:
ff:8b:cc:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:28 2023 by rpki-client on console-ams.rpki-client.org