Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/I_4bR6p6kHCxe2-UpCaoM83XpjU.roa
File: I_4bR6p6kHCxe2-UpCaoM83XpjU.roa (raw, json)
Hash identifier: 6k9bzY5ltkyO0HhJ6sVZeMHrjiT1zGYv6USuszXuoOk=
Subject key identifier: 23:FE:1B:47:AA:7A:90:70:B1:7B:6F:94:A4:26:A8:33:CD:D7:A6:35
Certificate issuer: /CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Certificate serial: 01829BFDDCDFD80F49BE62C3BB85DB508D33
Authority key identifier: 08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/I_4bR6p6kHCxe2-UpCaoM83XpjU.roa
Signing time: Sun 14 Aug 2022 10:54:41 +0000
ROA not before: Sun 14 Aug 2022 10:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210392
IP address blocks: 185.112.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:9b:fd:dc:df:d8:0f:49:be:62:c3:bb:85:db:50:8d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=081b7a22e51cfb9cf84205e4449998ad55d8f065
Validity
Not Before: Aug 14 10:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23fe1b47aa7a9070b17b6f94a426a833cdd7a635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7f:2a:f7:fa:e3:97:54:30:c7:64:e9:3d:87:
0d:c2:b4:9f:92:af:4e:40:39:72:6a:99:31:5e:c6:
4a:c6:17:36:74:65:e0:d4:be:d9:ab:6f:7b:f5:aa:
d3:79:3e:89:6c:6e:96:ad:ef:dd:2e:85:b1:ad:20:
44:93:b5:4c:bf:de:93:9b:ea:a3:35:cf:36:3c:b9:
b9:ba:ed:51:b0:ed:d3:9b:97:b8:02:11:87:f3:0c:
18:53:41:52:8e:d5:b5:83:7b:cb:1c:70:cf:d3:a5:
d3:23:e7:ca:ba:7d:36:ff:4a:c3:fe:f7:dd:0b:92:
6a:d4:14:54:88:88:25:36:d2:3a:42:4b:2a:5b:ce:
f9:b5:ee:4b:e2:1e:ec:bd:1c:dd:4b:20:88:d3:07:
ed:ae:0a:69:1f:02:bc:91:d0:4d:f7:12:af:a7:56:
48:c7:d5:39:d0:fd:4c:02:81:5c:b9:c3:01:ba:25:
ab:b3:46:45:aa:57:43:1a:41:07:b3:e1:cb:2e:e4:
37:b6:52:75:b7:ef:27:1c:81:84:89:d9:aa:2b:1a:
b4:82:6b:6e:db:68:05:e3:cf:54:63:5c:76:2a:be:
96:77:c8:10:d6:59:24:83:9e:24:26:77:93:24:cf:
68:d6:67:a4:90:1a:b2:08:09:8b:24:88:07:4d:a1:
8f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:FE:1B:47:AA:7A:90:70:B1:7B:6F:94:A4:26:A8:33:CD:D7:A6:35
X509v3 Authority Key Identifier:
keyid:08:1B:7A:22:E5:1C:FB:9C:F8:42:05:E4:44:99:98:AD:55:D8:F0:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CBt6IuUc-5z4QgXkRJmYrVXY8GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/I_4bR6p6kHCxe2-UpCaoM83XpjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/c515c9-df08-426c-80e6-0367268ff871/1/CBt6IuUc-5z4QgXkRJmYrVXY8GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.148.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:0f:d8:dd:a0:73:f1:40:f7:78:e0:f9:fa:cd:27:3d:bc:b7:
84:01:71:6a:2d:ad:5b:06:8c:a8:d6:b5:20:df:78:25:df:01:
06:9b:5c:01:f0:90:ac:c4:f6:35:2f:0e:b9:fe:10:2d:76:e6:
6d:ec:2a:5f:25:b4:c6:a2:87:16:3d:f5:94:42:94:f7:3b:e7:
7a:78:e0:be:a9:5a:ce:3f:bf:f2:59:5a:9d:02:b4:c5:4e:0d:
3e:62:f3:64:a9:6f:a3:94:ae:a7:d2:d3:93:5b:20:ab:58:5c:
25:f2:ba:27:92:d3:ca:7e:25:aa:f0:96:7a:18:35:95:a1:3a:
89:6e:ae:45:8c:24:5b:27:60:9d:d5:d5:7b:5c:89:9b:c4:ed:
ca:de:18:97:76:7c:d2:f3:e1:1d:bc:b7:76:38:8c:33:d1:c1:
5a:e2:aa:01:74:a3:ee:27:d6:0c:25:5b:c2:01:dc:61:74:c2:
c2:65:92:55:01:99:bf:30:21:ff:47:49:b2:31:0c:c8:46:75:
38:45:57:f9:71:2c:a6:16:0b:8d:84:db:42:22:d1:39:5d:54:
66:a1:54:16:80:64:5f:04:67:b8:45:69:6d:da:db:f1:44:70:
e5:55:11:ec:b3:04:f4:0a:00:bc:e1:0f:9f:0c:9f:3f:59:4a:
c7:2a:72:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:49 2024 by rpki-client on console-ams.rpki-client.org