Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/8RT-upKztiGx3rpfQs1VACe9I8o.roa
File: 8RT-upKztiGx3rpfQs1VACe9I8o.roa (raw, json)
Hash identifier: +1CC9sJ9dYyMc46Qeylio9WR0ScY+ji8mLblOEFYGaA=
Subject key identifier: F1:14:FE:BA:92:B3:B6:21:B1:DE:BA:5F:42:CD:55:00:27:BD:23:CA
Certificate issuer: /CN=66634f14586e399cd3802d9c88b1e67d8ddb03a8
Certificate serial: 0E73EEED
Authority key identifier: 66:63:4F:14:58:6E:39:9C:D3:80:2D:9C:88:B1:E6:7D:8D:DB:03:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/8RT-upKztiGx3rpfQs1VACe9I8o.roa
Signing time: Sat 01 Jan 2022 13:06:19 +0000
ROA not before: Sat 01 Jan 2022 13:06:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205739
IP address blocks: 185.208.88.0/22 maxlen: 24
2a0b:32c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242478829 (0xe73eeed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66634f14586e399cd3802d9c88b1e67d8ddb03a8
Validity
Not Before: Jan 1 13:06:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f114feba92b3b621b1deba5f42cd550027bd23ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c2:13:19:85:f1:ae:86:0d:a8:33:70:fa:ba:
b5:ce:ce:9b:c7:55:22:f7:37:7b:20:6a:c0:4b:b9:
ea:45:03:d6:57:5b:d2:b9:01:2e:2b:25:d9:28:a8:
0c:43:1c:ed:da:37:2e:76:e2:f6:18:46:39:81:ff:
8e:89:25:b0:c0:5c:27:cb:fd:b3:77:d3:c8:d8:99:
35:fd:5b:d2:ea:39:89:c4:f8:7d:28:f7:34:84:80:
6d:e5:bf:41:0f:25:70:03:72:9e:15:33:cc:c2:51:
e9:ff:10:d2:c6:93:dc:4c:ad:52:bb:1b:81:86:72:
62:39:71:48:18:13:20:5f:99:e6:99:5c:10:1c:23:
74:cd:b1:36:68:c7:60:82:e7:a7:08:c8:ee:7f:8c:
2f:10:ec:19:09:0b:b8:26:62:0a:d2:18:d9:31:ee:
9b:6d:8a:49:71:69:98:75:bc:65:00:41:c8:c3:e1:
aa:61:fe:51:f5:2d:03:18:31:65:dc:a7:1c:bb:1b:
91:04:43:58:49:0c:1a:1f:98:1f:9c:8e:50:70:27:
d6:16:fb:12:7a:b4:3f:81:55:ff:ad:93:97:d9:19:
40:e7:ef:cd:8b:ad:bb:4c:66:93:e5:00:cb:07:86:
62:0e:81:7d:96:20:e7:49:66:e8:3c:54:58:04:52:
07:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:14:FE:BA:92:B3:B6:21:B1:DE:BA:5F:42:CD:55:00:27:BD:23:CA
X509v3 Authority Key Identifier:
keyid:66:63:4F:14:58:6E:39:9C:D3:80:2D:9C:88:B1:E6:7D:8D:DB:03:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/8RT-upKztiGx3rpfQs1VACe9I8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.208.88.0/22
IPv6:
2a0b:32c0::/29
Signature Algorithm: sha256WithRSAEncryption
68:9d:c9:50:6a:5a:a4:e9:75:3c:04:fe:88:5d:eb:2c:2d:e5:
39:e7:92:0b:7c:eb:ec:dc:4e:4b:61:d3:f9:5c:76:19:81:05:
93:fa:58:d0:4f:c0:39:1b:40:96:dc:8c:cf:e4:55:b2:2d:ec:
cb:5b:01:61:77:a2:7b:e4:20:62:2e:1b:88:82:53:a4:ef:92:
df:1f:28:0f:de:d0:74:ac:f4:b2:3f:e5:6c:19:02:cc:ad:d2:
2e:40:93:2f:14:e8:e4:c3:00:1e:03:f0:1d:9b:d1:fe:35:36:
ac:d9:5d:e8:78:0b:83:0a:ef:3b:41:19:08:ca:40:9f:51:c0:
fd:e1:ff:3a:d2:25:e1:ae:22:d4:01:a7:20:59:48:31:d8:0a:
ca:ff:7e:10:04:c8:c5:11:da:8c:c9:70:19:d1:89:b7:62:ec:
c6:0d:b8:7b:a2:78:97:cc:7a:51:67:31:74:da:d9:61:93:e2:
a2:67:df:c8:57:96:a2:43:fb:bd:ac:ec:52:97:3c:59:f4:48:
1c:20:d3:12:25:bd:a4:6f:47:8d:6c:dd:51:c0:d3:be:39:38:
c3:cb:95:c0:fe:3c:0e:02:6b:46:4d:11:c6:2d:f6:a4:34:a6:
35:7a:ed:0c:80:43:8b:d7:af:19:5e:42:fe:be:c1:03:a7:ef:
c0:44:f4:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:10 2023 by rpki-client on console.sobornost.net