Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/03AfP-Mv2SqO4bceRjgYJcPuqMY.roa
File: 03AfP-Mv2SqO4bceRjgYJcPuqMY.roa (raw, json)
Hash identifier: bsbDFCgozg+/HBApF/ZvI7q5Lu6CJtlWuX1/CeV3z24=
Subject key identifier: D3:70:1F:3F:E3:2F:D9:2A:8E:E1:B7:1E:46:38:18:25:C3:EE:A8:C6
Certificate issuer: /CN=877c20737116bc6d5e5b224931cf13dd7f79f95b
Certificate serial: 0183EB10D3C6BB078B7BF8BA3A110EE7D9E9
Authority key identifier: 87:7C:20:73:71:16:BC:6D:5E:5B:22:49:31:CF:13:DD:7F:79:F9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3wgc3EWvG1eWyJJMc8T3X95-Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/03AfP-Mv2SqO4bceRjgYJcPuqMY.roa
Signing time: Tue 18 Oct 2022 12:28:11 +0000
ROA not before: Tue 18 Oct 2022 12:28:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25540
IP address blocks: 185.13.214.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:10:d3:c6:bb:07:8b:7b:f8:ba:3a:11:0e:e7:d9:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877c20737116bc6d5e5b224931cf13dd7f79f95b
Validity
Not Before: Oct 18 12:28:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3701f3fe32fd92a8ee1b71e46381825c3eea8c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:33:d4:8a:78:db:97:14:fa:58:28:0b:28:15:
6f:e7:ac:b7:d2:ab:04:59:ce:0c:c8:73:44:c3:86:
8c:2b:96:9f:7a:6a:5d:24:3d:55:0b:29:a3:cf:ed:
d2:71:09:4d:8b:14:28:1f:a8:6c:82:0d:24:6d:7a:
20:2d:50:60:2f:a7:65:e5:1a:56:d6:a7:ec:6c:20:
3e:06:ba:e1:3e:3f:d5:42:1d:9c:8a:cb:b4:19:f0:
d3:46:54:0f:e0:a2:19:36:8e:77:16:06:ea:1a:67:
d4:45:71:85:8c:ab:bb:46:89:e9:76:db:e0:0a:b7:
ac:87:b6:d6:50:c7:54:d1:90:55:72:45:a0:a3:34:
6d:c1:25:66:99:dd:0e:49:f8:27:3a:39:56:a7:55:
20:77:ba:06:73:fd:02:b4:07:22:e4:89:db:25:7a:
2d:91:b7:9a:73:00:27:86:b7:b6:9c:5d:e5:2d:b7:
3c:89:e8:56:5b:e0:64:49:68:66:67:e5:e1:86:24:
b3:40:9d:7a:e7:ef:3b:8f:f8:93:5e:70:38:20:41:
b7:83:55:7c:a5:56:48:58:c3:33:54:de:98:75:21:
64:20:de:5d:49:54:5b:62:a3:a7:3b:ed:0d:3c:66:
ed:57:c1:26:21:46:b9:75:f8:a3:05:c1:b7:08:90:
5a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:70:1F:3F:E3:2F:D9:2A:8E:E1:B7:1E:46:38:18:25:C3:EE:A8:C6
X509v3 Authority Key Identifier:
keyid:87:7C:20:73:71:16:BC:6D:5E:5B:22:49:31:CF:13:DD:7F:79:F9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3wgc3EWvG1eWyJJMc8T3X95-Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/03AfP-Mv2SqO4bceRjgYJcPuqMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/acb956-e1b5-4682-80b8-e7232f8448b0/1/h3wgc3EWvG1eWyJJMc8T3X95-Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.214.0/23
Signature Algorithm: sha256WithRSAEncryption
56:ad:bd:26:82:56:aa:ef:14:fe:d1:3f:83:67:c7:10:51:ea:
0e:8e:40:1b:ce:57:0d:85:df:5b:3a:b1:8b:89:53:57:c5:b5:
6f:1b:9d:69:f3:76:4d:52:b1:b4:54:22:c4:19:dd:7f:93:18:
49:87:10:bb:ac:a7:0a:18:17:00:de:77:1e:ad:7c:8b:87:93:
ae:90:1d:2b:3e:15:17:10:be:f5:54:07:7c:ac:a0:53:6a:b7:
10:7a:a7:c9:76:37:0b:e6:f1:47:85:e1:bf:f6:c3:91:33:31:
e9:3d:09:de:ff:a4:5c:3f:ad:a5:9d:b7:40:49:80:2e:3e:3c:
64:df:90:bf:98:74:ec:08:57:d1:7a:dd:be:c6:6c:17:f0:31:
b7:05:81:6e:ea:7b:f7:7a:07:e4:83:f5:81:b1:e3:6d:1f:04:
36:72:15:d1:a8:f2:21:17:9f:dd:2a:5c:d1:ad:88:11:2f:7b:
e9:a6:6c:fb:8c:35:2b:49:b8:40:8d:58:13:7e:d9:06:a9:c1:
7f:7c:e8:3d:78:ce:9a:60:3d:bc:f1:81:ca:5b:0c:5e:78:fd:
66:cf:db:b3:38:f2:38:2e:b5:93:b2:40:00:c2:1e:8c:23:62:
7d:a3:ec:8e:17:49:08:ef:74:1f:51:18:c0:a0:15:1f:18:0d:
b0:b2:b9:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:27 2024 by rpki-client on console-ams.rpki-client.org