Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/14c1ca-1874-47ac-a18e-3a144c70e0b0/1/C_8dh61k3u89eKWX-f1IV5iDhWI.roa
File: C_8dh61k3u89eKWX-f1IV5iDhWI.roa (raw, json)
Hash identifier: taWPrCDfZIiguCtBWRQ4Ml6grkOdgf2o3c8+H0mZplI=
Subject key identifier: 0B:FF:1D:87:AD:64:DE:EF:3D:78:A5:97:F9:FD:48:57:98:83:85:62
Certificate issuer: /CN=1534838bb317b8186699f0a4485db6d9da1908d2
Certificate serial: 3DEA2912
Authority key identifier: 15:34:83:8B:B3:17:B8:18:66:99:F0:A4:48:5D:B6:D9:DA:19:08:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FTSDi7MXuBhmmfCkSF222doZCNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/14c1ca-1874-47ac-a18e-3a144c70e0b0/1/C_8dh61k3u89eKWX-f1IV5iDhWI.roa
Signing time: Tue 15 Mar 2022 08:44:09 +0000
ROA not before: Tue 15 Mar 2022 08:44:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2602
IP address blocks: 193.168.64.0/18 maxlen: 24
158.64.0.0/16 maxlen: 24
185.149.136.0/22 maxlen: 22
2001:a18::/29 maxlen: 32
2001:a18:ff00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1038756114 (0x3dea2912)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1534838bb317b8186699f0a4485db6d9da1908d2
Validity
Not Before: Mar 15 08:44:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0bff1d87ad64deef3d78a597f9fd485798838562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:48:e8:a5:bc:da:14:4e:34:c7:f8:83:4e:c6:
2b:bc:84:11:7d:67:c6:f9:c9:bf:a5:60:9a:8d:f0:
b3:50:96:8e:f6:37:a7:f4:de:e8:08:a2:31:b8:46:
b0:81:c6:68:bb:62:f4:ff:12:69:02:26:e2:e2:34:
d8:25:df:c4:b4:a6:54:ac:70:9e:9b:87:77:11:5f:
e7:2c:da:e8:1f:f2:fa:d4:b2:c6:67:25:f6:30:f2:
e8:f7:d4:90:3b:9e:c4:a2:93:32:81:7f:95:7e:72:
cf:e8:ca:f0:2e:48:ea:e5:93:45:7c:a5:3e:bf:1f:
5c:c1:df:9c:5b:8e:00:62:45:2c:6d:d8:76:66:15:
1b:45:80:91:db:c0:d9:f8:02:8e:c5:70:3f:ee:ab:
47:aa:38:23:a7:d3:47:b0:13:8e:77:12:89:d6:17:
e7:d8:31:dc:1a:03:ed:bc:5c:49:fa:c2:f8:1d:8d:
85:4f:86:64:1e:12:90:37:c3:af:cb:2b:49:59:95:
d7:5f:f4:5d:76:75:af:ba:84:d0:3f:d6:19:87:fb:
c1:da:d2:b2:44:0a:a8:d2:dc:aa:fd:2c:d7:b1:57:
37:5d:4f:0a:83:f3:6c:65:23:a7:7b:64:6f:e2:5e:
24:95:b6:36:52:79:f8:d7:41:3a:e9:1b:46:4c:cb:
5d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:FF:1D:87:AD:64:DE:EF:3D:78:A5:97:F9:FD:48:57:98:83:85:62
X509v3 Authority Key Identifier:
keyid:15:34:83:8B:B3:17:B8:18:66:99:F0:A4:48:5D:B6:D9:DA:19:08:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FTSDi7MXuBhmmfCkSF222doZCNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/14c1ca-1874-47ac-a18e-3a144c70e0b0/1/C_8dh61k3u89eKWX-f1IV5iDhWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/14c1ca-1874-47ac-a18e-3a144c70e0b0/1/FTSDi7MXuBhmmfCkSF222doZCNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.64.0.0/16
185.149.136.0/22
193.168.64.0/18
IPv6:
2001:a18::/29
Signature Algorithm: sha256WithRSAEncryption
14:bc:42:c0:ed:74:6b:3c:ef:0e:19:2d:48:e9:2f:aa:1f:34:
9c:e7:1d:79:fa:89:2d:c0:49:e4:03:3b:b9:b8:4a:f1:fa:d0:
16:9d:16:59:2f:c5:38:4b:99:13:85:4d:30:3a:3a:1e:20:c4:
60:1d:49:80:7d:1c:f8:87:37:94:2e:20:8f:0c:8a:49:a6:98:
7e:d7:13:69:5c:1d:ae:a0:36:d2:ae:f3:f4:ad:8b:d6:64:1d:
ff:30:54:9d:9c:bf:c8:38:d8:d7:2c:da:82:63:bc:62:78:80:
8e:88:ff:32:b0:10:39:e3:bf:c2:34:99:5e:a6:1a:94:b0:0b:
ae:43:82:84:21:44:5e:56:ed:01:7a:c3:8e:65:b2:5c:56:87:
85:15:7a:72:a6:58:28:1b:47:2f:06:d7:87:f0:14:d5:5c:e8:
5d:0f:7b:c3:b0:e6:42:da:cb:a6:68:da:ca:bc:f2:44:b6:6e:
7a:28:a4:72:ad:0a:81:f2:7d:50:51:13:64:40:8a:90:a8:c5:
d3:48:c1:6c:ce:87:90:95:3e:6d:9f:39:fe:35:a5:bd:0c:ab:
e6:6e:65:62:fe:c6:f4:15:7f:c2:28:e4:fa:56:16:97:e8:6c:
9d:79:8b:7e:b1:0c:f5:25:02:a0:8a:44:ba:6a:91:a2:ad:9a:
79:96:0c:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:56 2023 by rpki-client on console-ams.rpki-client.org