Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/IWZ4y-XGjUw-n5S0WVf10dhwxH4.roa
File: IWZ4y-XGjUw-n5S0WVf10dhwxH4.roa (raw, json)
Hash identifier: 244bTNkr7w9KvkwftJnziU0YAsYXDJIFYDFyAvOVmBg=
Subject key identifier: 21:66:78:CB:E5:C6:8D:4C:3E:9F:94:B4:59:57:F5:D1:D8:70:C4:7E
Certificate issuer: /CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Certificate serial: 03F144D8
Authority key identifier: 11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/IWZ4y-XGjUw-n5S0WVf10dhwxH4.roa
Signing time: Thu 21 Apr 2022 06:31:42 +0000
ROA not before: Thu 21 Apr 2022 06:31:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 185.236.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66143448 (0x3f144d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11eecd71c193e4ac30ed03d0b9f05da101c603d2
Validity
Not Before: Apr 21 06:31:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=216678cbe5c68d4c3e9f94b45957f5d1d870c47e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:17:51:68:c1:c6:6e:1f:69:03:d2:3a:e3:ce:
d1:7e:16:2f:84:2b:bf:1e:e3:e5:59:d4:b6:01:35:
5f:75:02:da:53:86:d9:da:2a:c4:90:c2:ba:b9:94:
f1:33:fe:3b:d1:89:4e:22:0e:49:6b:07:2b:ab:b3:
5e:60:f1:db:68:26:f2:ab:18:85:09:50:93:96:74:
c9:93:23:30:55:df:87:e0:66:19:b0:84:81:74:f9:
fd:91:16:80:38:23:5e:a9:0d:49:88:ec:1e:9a:f5:
97:12:91:f8:55:2f:c5:93:99:93:b3:86:37:11:30:
ab:3f:bb:04:9c:93:3f:d2:dd:8f:74:30:bf:ad:c8:
f9:cf:88:92:9d:63:70:bf:cc:09:61:20:8d:f1:43:
67:ae:dc:7d:0e:4c:df:bd:d9:2f:55:fd:72:b5:68:
53:c1:d3:ec:5f:79:4a:b3:01:d8:e5:a4:c6:4e:61:
9f:2e:ca:e9:37:0c:df:1e:57:b8:b6:9e:b9:10:9f:
f8:cf:7e:f1:97:0b:ed:f7:25:fb:7d:13:85:45:4d:
a0:8e:64:b0:18:25:76:1d:e3:8a:bc:dc:53:31:c8:
59:b2:a3:ef:e8:f2:cd:02:69:e5:d2:68:64:98:53:
a8:41:f9:02:a0:22:54:e4:ce:22:72:f8:b3:27:6e:
b8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:66:78:CB:E5:C6:8D:4C:3E:9F:94:B4:59:57:F5:D1:D8:70:C4:7E
X509v3 Authority Key Identifier:
keyid:11:EE:CD:71:C1:93:E4:AC:30:ED:03:D0:B9:F0:5D:A1:01:C6:03:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ee7NccGT5Kww7QPQufBdoQHGA9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/IWZ4y-XGjUw-n5S0WVf10dhwxH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4fd95a-5157-4a1b-b868-138995c99b97/1/Ee7NccGT5Kww7QPQufBdoQHGA9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.24.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:87:5b:b2:47:c5:5c:a7:ab:45:87:d4:42:46:ee:fc:18:d7:
a1:05:88:7d:db:19:88:a1:3a:9c:4e:bc:13:c0:1b:32:bf:1c:
be:25:e7:0d:d7:61:9b:d3:76:74:f7:51:4a:c7:1b:18:7f:ed:
e6:d7:d8:26:3c:ee:b8:22:87:97:20:8a:4e:af:fa:71:77:58:
50:6b:b3:a3:50:b0:6f:78:2e:1b:c0:21:71:08:0f:e1:ef:3a:
2b:86:60:02:17:88:62:0b:e6:df:d2:a0:54:30:25:20:e9:0f:
e5:5b:94:c3:a4:75:cc:99:4a:81:39:31:92:2f:a0:57:65:9f:
9d:e8:1a:ed:70:02:3c:65:49:19:0e:5e:98:25:8f:ab:36:3f:
87:98:86:1d:1e:f7:76:eb:06:08:53:f8:ae:1d:3f:df:31:23:
05:45:ad:28:4a:f1:54:a2:b5:ac:8c:a6:ed:ad:02:ec:3d:10:
e4:c6:a4:db:cb:89:68:7b:81:d7:67:c7:b9:0e:3e:64:58:cc:
0c:65:cf:25:72:e7:23:3c:7b:cb:10:a6:ea:39:f6:e9:80:dc:
6e:f7:39:f6:8b:6b:b5:d6:a3:2f:9a:26:8a:75:dd:5f:25:bb:
10:0b:8e:de:b4:ec:c1:50:7e:85:10:ff:68:e3:91:42:aa:fd:
2d:74:5b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:25 2023 by rpki-client on console-ams.rpki-client.org