Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/Rfjo6H6o9Nt8iE6nHEG20Yke8jc.roa
File: Rfjo6H6o9Nt8iE6nHEG20Yke8jc.roa (raw, json)
Hash identifier: SSBBmJVQpVJ0JoVglghlpBS8W6tUov9qHA5IOAiqBlE=
Subject key identifier: 45:F8:E8:E8:7E:A8:F4:DB:7C:88:4E:A7:1C:41:B6:D1:89:1E:F2:37
Certificate issuer: /CN=86ee201c65d655ee9cfe251f951ea91bba154567
Certificate serial: 0182A667C68887882DF335D02220E6BD1CEA
Authority key identifier: 86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/Rfjo6H6o9Nt8iE6nHEG20Yke8jc.roa
Signing time: Tue 16 Aug 2022 11:26:35 +0000
ROA not before: Tue 16 Aug 2022 11:26:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16633
IP address blocks: 185.201.18.0/24 maxlen: 24
185.201.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a6:67:c6:88:87:88:2d:f3:35:d0:22:20:e6:bd:1c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86ee201c65d655ee9cfe251f951ea91bba154567
Validity
Not Before: Aug 16 11:26:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45f8e8e87ea8f4db7c884ea71c41b6d1891ef237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f4:40:02:22:ad:b1:d8:56:ab:be:38:8a:54:
82:e4:ff:1f:f6:c1:b8:28:56:fb:9c:c5:f3:2d:19:
f4:22:d5:32:98:34:76:a7:9c:40:e3:f4:a3:86:c6:
ea:f3:fc:0f:09:81:fb:90:9b:f3:81:f0:63:0b:1e:
2e:6f:2a:8f:25:e7:37:f2:37:43:72:2f:08:f2:f0:
c4:13:99:e7:97:f5:33:28:93:92:82:54:8f:48:98:
df:70:8f:3c:32:46:01:03:db:ec:88:9d:b3:0f:7a:
be:ff:f2:99:0a:de:d7:09:a7:36:35:6a:ff:56:1f:
f2:79:33:0d:e6:82:ab:45:e3:6d:bd:7f:af:a3:56:
59:99:5d:b9:92:91:5a:ca:d4:e6:9c:ce:c4:09:af:
62:d4:28:87:5b:f1:b7:12:12:79:0b:c5:fc:d6:77:
87:ea:50:f5:6d:e9:a0:c2:be:db:5c:b0:51:65:a8:
75:17:57:f1:88:4d:73:0b:fa:6a:10:c9:01:cc:1c:
2f:6c:17:9e:61:85:2d:4b:88:f5:90:3b:c2:7a:21:
74:74:85:44:bc:df:67:aa:bb:fd:a7:14:1d:a7:91:
27:b1:90:8e:93:a6:18:97:67:52:c6:bc:e0:6e:53:
57:7a:6d:09:9a:1b:cc:fd:1d:6e:e8:94:54:7f:68:
70:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F8:E8:E8:7E:A8:F4:DB:7C:88:4E:A7:1C:41:B6:D1:89:1E:F2:37
X509v3 Authority Key Identifier:
keyid:86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/Rfjo6H6o9Nt8iE6nHEG20Yke8jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/hu4gHGXWVe6c_iUflR6pG7oVRWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.18.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:6f:ba:d6:12:25:32:de:51:33:36:e9:ab:21:91:16:ae:3a:
8c:e5:43:35:40:b9:64:ab:37:d3:59:14:a2:9d:70:64:b9:40:
ca:82:a3:3d:2f:66:ce:5e:3e:d8:9a:78:55:0f:dd:05:b0:83:
0b:f6:98:d3:d8:48:62:92:b7:2c:c7:20:cf:42:04:2b:86:f0:
53:b5:22:89:d0:cf:bd:c4:4f:e4:81:89:14:9c:1d:f7:20:48:
b3:c7:08:13:74:66:51:41:cd:ae:98:2c:b2:3a:50:3f:a5:ea:
01:bf:c9:32:0c:f7:e8:a8:71:38:1c:7b:78:be:5b:e3:3d:fd:
ae:73:07:23:06:5b:0c:70:27:2b:a7:a6:39:e2:e5:6a:d7:83:
a0:de:af:0d:e2:fc:08:56:c1:bc:f1:3f:dd:8c:c0:83:db:89:
e9:53:0c:5e:be:00:17:21:c7:dd:ae:02:5f:e9:86:dc:2c:df:
cd:e7:56:2f:2a:b2:d3:52:3a:15:25:eb:31:e0:c2:08:d9:4e:
f9:80:d9:84:d0:47:20:26:5c:5b:fe:bc:f6:c3:4f:94:92:bf:
99:06:1c:b6:10:2b:a7:69:97:41:7c:af:f9:b8:55:3d:ef:0a:
69:c9:ed:a1:03:f6:2c:47:88:b9:04:22:99:9f:47:e9:ae:3d:
70:f2:28:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:42 2023 by rpki-client on console-fra.rpki-client.org