Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/3LA4eC4EHn88wdC2eMF-0GR1iZw.roa
File: 3LA4eC4EHn88wdC2eMF-0GR1iZw.roa (raw, json)
Hash identifier: UxNPo82958+SffEHFHLHcim+cdo2sx9rp4G1iA9jfv8=
Subject key identifier: DC:B0:38:78:2E:04:1E:7F:3C:C1:D0:B6:78:C1:7E:D0:64:75:89:9C
Certificate issuer: /CN=1a349707197c73e414bf642c6042c7bfad600e54
Certificate serial: 0183B23FB84A45CB83E759D126EE0DEC0C4E
Authority key identifier: 1A:34:97:07:19:7C:73:E4:14:BF:64:2C:60:42:C7:BF:AD:60:0E:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GjSXBxl8c-QUv2QsYELHv61gDlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/3LA4eC4EHn88wdC2eMF-0GR1iZw.roa
Signing time: Fri 07 Oct 2022 11:41:03 +0000
ROA not before: Fri 07 Oct 2022 11:41:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.185.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b2:3f:b8:4a:45:cb:83:e7:59:d1:26:ee:0d:ec:0c:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a349707197c73e414bf642c6042c7bfad600e54
Validity
Not Before: Oct 7 11:41:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcb038782e041e7f3cc1d0b678c17ed06475899c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2c:a1:c5:a5:2e:26:17:02:d4:21:77:8d:06:
13:ea:a3:1b:d3:e4:d9:9c:d3:90:b6:a7:71:df:e0:
dd:ad:65:55:4d:a3:3f:5f:76:cb:a4:8e:6e:1e:b6:
10:cb:00:8d:1d:76:2d:79:bf:51:91:96:98:c1:91:
d5:d8:14:85:b9:9f:ee:73:6a:99:4b:72:07:97:a4:
5b:a7:ae:11:d5:38:1f:66:bf:16:1a:07:57:c0:5c:
1e:f4:33:36:87:56:a6:e3:03:39:80:a8:36:f4:d1:
78:f9:78:1f:2c:25:28:f3:55:fc:b3:79:9e:3b:a8:
18:6b:0c:0b:d1:03:63:99:71:84:1d:93:e8:1d:cf:
94:26:5d:4d:3d:4b:00:13:8f:e6:35:c4:af:41:e1:
48:b6:e6:6e:f8:44:08:8b:d9:16:83:06:8f:c6:83:
47:6b:45:ac:4b:69:ad:7f:99:3e:09:62:3c:94:5d:
2d:06:b6:04:ca:75:b3:52:82:27:63:52:a7:61:19:
28:98:94:b9:82:b4:d9:73:ed:43:da:c2:02:13:c3:
9d:d5:73:86:78:e1:ce:85:72:81:cb:97:aa:f6:74:
0c:53:6b:11:ba:52:f8:11:e7:85:e5:94:8f:e3:f1:
d7:b8:f7:5c:d3:c7:35:02:d0:83:22:d9:76:1e:2a:
c2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B0:38:78:2E:04:1E:7F:3C:C1:D0:B6:78:C1:7E:D0:64:75:89:9C
X509v3 Authority Key Identifier:
keyid:1A:34:97:07:19:7C:73:E4:14:BF:64:2C:60:42:C7:BF:AD:60:0E:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GjSXBxl8c-QUv2QsYELHv61gDlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/3LA4eC4EHn88wdC2eMF-0GR1iZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/GjSXBxl8c-QUv2QsYELHv61gDlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.92.0/24
Signature Algorithm: sha256WithRSAEncryption
33:78:a6:24:4e:13:6b:c1:cc:04:ac:cb:7d:fe:dc:93:e2:15:
1d:c2:e8:02:50:13:bb:0e:10:b8:8d:9a:77:ff:70:72:13:5d:
21:54:cf:f2:89:f7:aa:20:2d:2a:ed:bc:28:83:a0:65:e3:24:
0d:0e:0b:49:f9:3a:c5:a1:5f:ba:85:fe:ab:69:c8:78:88:90:
33:e1:c8:57:d5:d0:d6:f3:cb:8c:b0:a8:0b:c4:96:39:e5:3b:
29:4c:f0:19:68:03:f5:8c:c8:1e:7a:7d:fa:f8:fc:25:1a:e9:
ad:d9:3b:06:1e:89:b4:1f:d2:1f:a5:cb:dc:cb:da:dd:30:f8:
b2:61:64:3c:2f:cd:01:45:17:ef:b0:59:3e:8b:4d:0d:c6:8c:
d3:9d:9e:7b:82:ae:33:11:b2:02:fc:93:d9:97:6d:d7:e8:7e:
67:b2:89:49:44:fe:d7:ef:03:20:1b:5b:59:37:98:4d:e3:b6:
62:7d:53:14:59:31:fe:ba:52:20:e8:50:65:3b:10:df:8f:2f:
57:62:b6:93:e2:6e:01:71:28:ac:bf:ea:6e:37:c9:6f:13:81:
bb:4e:9e:68:0c:f5:35:36:23:54:dc:00:58:98:51:3e:93:50:
a3:3b:d3:7c:2a:c1:e5:1d:9a:22:e2:e8:6a:4e:23:31:a5:1e:
58:24:aa:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:59 2023 by rpki-client on console-fra.rpki-client.org