Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/iCd6SYXWUDZzF2GMfUij4INGQAs.roa
File: iCd6SYXWUDZzF2GMfUij4INGQAs.roa (raw, json)
Hash identifier: KzR3Uv4d+22D4sMxg5npcf5Iaq9k2Qrb2ozOdeAOK74=
Subject key identifier: 88:27:7A:49:85:D6:50:36:73:17:61:8C:7D:48:A3:E0:83:46:40:0B
Certificate issuer: /CN=2874e46bf636ea63e5d12362f551b80b27714780
Certificate serial: 089D002C
Authority key identifier: 28:74:E4:6B:F6:36:EA:63:E5:D1:23:62:F5:51:B8:0B:27:71:47:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KHTka_Y26mPl0SNi9VG4CydxR4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/iCd6SYXWUDZzF2GMfUij4INGQAs.roa
Signing time: Mon 11 Apr 2022 23:58:43 +0000
ROA not before: Mon 11 Apr 2022 23:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60109
IP address blocks: 37.16.100.0/22 maxlen: 22
37.16.108.0/24 maxlen: 24
185.57.180.0/22 maxlen: 22
2a00:4cc4::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144506924 (0x89d002c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2874e46bf636ea63e5d12362f551b80b27714780
Validity
Not Before: Apr 11 23:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88277a4985d650367317618c7d48a3e08346400b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8d:ba:7b:fb:61:f4:91:65:6b:a6:7f:3d:78:
cc:8d:cf:25:9f:f4:40:cf:ff:ef:89:bd:51:a9:0b:
fd:98:2b:c4:64:5f:d6:03:68:6c:98:b7:98:44:14:
f1:77:68:99:f5:1c:49:9f:e3:6c:56:1c:53:e5:b4:
40:70:77:84:0c:29:82:4f:58:0e:d3:70:98:18:ed:
a3:06:dc:f0:e5:e0:d9:ab:16:bd:b6:62:f1:d6:74:
d9:fd:90:68:7c:3f:c4:e4:ea:4b:88:4c:d4:cc:3e:
0a:a9:b2:09:c5:42:b3:52:ad:8c:2a:2b:40:02:73:
88:7d:eb:df:1c:ca:33:69:aa:43:ec:89:85:15:a1:
e9:19:9c:d0:dc:43:05:67:2f:77:26:16:03:bf:c7:
9c:69:8b:91:bc:83:8d:f6:2c:f0:9c:f3:ea:81:25:
77:22:fc:2d:cb:3a:f6:42:be:b6:36:bf:5e:bc:2b:
c3:43:68:cf:97:4f:aa:86:c6:eb:05:39:8a:ce:e0:
c8:ec:b8:54:87:1d:fd:cb:21:bf:d7:74:2d:9f:d5:
c0:27:42:4e:57:6f:da:a9:fb:a6:02:4d:5d:e6:45:
ac:87:c8:22:ba:d7:4d:c7:98:63:fe:b4:9f:9b:a9:
fb:ff:30:5c:44:47:e3:9e:38:56:6d:ce:78:c7:25:
0a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:27:7A:49:85:D6:50:36:73:17:61:8C:7D:48:A3:E0:83:46:40:0B
X509v3 Authority Key Identifier:
keyid:28:74:E4:6B:F6:36:EA:63:E5:D1:23:62:F5:51:B8:0B:27:71:47:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KHTka_Y26mPl0SNi9VG4CydxR4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/iCd6SYXWUDZzF2GMfUij4INGQAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/KHTka_Y26mPl0SNi9VG4CydxR4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.100.0/22
37.16.108.0/24
185.57.180.0/22
IPv6:
2a00:4cc4::/32
Signature Algorithm: sha256WithRSAEncryption
2d:15:d7:49:4e:1b:a4:3b:5b:34:f8:8a:52:35:02:c8:f9:0a:
cc:6f:97:bf:08:2b:c4:50:e6:25:8c:e9:fa:ff:ba:0f:b3:6f:
0a:c7:88:e4:da:35:b6:c9:bd:14:27:78:9d:40:cb:59:b5:36:
4e:23:f0:b1:f8:f8:51:02:f9:08:0a:59:ac:cc:cf:45:5f:25:
1f:90:91:47:ab:91:14:5d:d9:fc:4e:65:f9:d4:bf:38:b0:5a:
ac:84:4e:fa:09:c3:a5:55:e0:71:70:8d:b8:5a:87:a9:95:f8:
1e:f5:d7:81:79:ba:8c:fd:d0:ef:49:84:6b:33:28:30:e8:c5:
a7:7d:d5:16:66:00:8c:e0:39:b7:5e:2b:8b:6f:3e:98:a9:b4:
5b:de:ce:c7:31:2b:76:e1:49:f9:40:72:b9:a7:e6:24:de:71:
74:70:55:cc:f5:d3:f2:0a:67:4b:2b:be:3e:e3:8b:d4:5e:0b:
af:da:e1:9e:c3:ca:05:44:8e:40:97:74:75:d3:f6:ff:2b:fa:
78:8c:7e:ca:8d:a4:b5:c0:33:ee:33:e8:53:dc:c5:ed:96:67:
45:57:d5:25:62:bb:eb:51:a8:7a:d9:3f:0d:d5:36:0e:64:85:
8f:42:b8:ee:e2:16:15:76:4d:7f:8a:99:f2:8f:8d:65:ef:75:
49:41:fc:b3
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:31 2024 by rpki-client on console-ams.rpki-client.org