Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/93ce62-6f3d-493c-bf6f-5cd885489f82/1/iWrgaqqK6rGhUTQWjMOsYnyZXqo.roa
File: iWrgaqqK6rGhUTQWjMOsYnyZXqo.roa (raw, json)
Hash identifier: XW76VqVYi9/L8g65mmQ+/4xruYg3SPX71zFB/t3ZNKk=
Subject key identifier: 89:6A:E0:6A:AA:8A:EA:B1:A1:51:34:16:8C:C3:AC:62:7C:99:5E:AA
Certificate issuer: /CN=f7d535083fb140ddab453abf821f5db3a6f461a4
Certificate serial: 01913F
Authority key identifier: F7:D5:35:08:3F:B1:40:DD:AB:45:3A:BF:82:1F:5D:B3:A6:F4:61:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/99U1CD-xQN2rRTq_gh9ds6b0YaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/93ce62-6f3d-493c-bf6f-5cd885489f82/1/iWrgaqqK6rGhUTQWjMOsYnyZXqo.roa
Signing time: Fri 25 Mar 2022 01:16:09 +0000
ROA not before: Fri 25 Mar 2022 01:16:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213299
IP address blocks: 185.155.116.0/24 maxlen: 24
2a10:40c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102719 (0x1913f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7d535083fb140ddab453abf821f5db3a6f461a4
Validity
Not Before: Mar 25 01:16:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=896ae06aaa8aeab1a15134168cc3ac627c995eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:aa:8d:d6:20:40:3f:38:ab:c9:76:d7:a8:dc:
e8:1b:47:85:4e:90:f1:31:bc:cb:68:bc:89:5c:0d:
10:29:6f:4a:17:83:d8:35:9a:6a:a0:c8:58:65:28:
ea:64:27:6e:31:d1:c3:82:1c:32:63:e6:e1:e7:9c:
3b:44:f3:c3:41:cb:23:1d:d9:90:5a:6b:75:80:46:
1a:e8:79:bc:96:6d:dc:4a:12:d7:3d:c9:ff:ab:58:
c6:1e:3f:f0:2d:73:b4:65:56:1b:ae:61:a8:bb:a4:
97:d8:0c:28:ac:e9:55:90:df:ae:d2:49:72:95:32:
af:9b:f7:5e:83:2d:5a:d5:9b:a8:ce:b0:06:e0:b1:
57:04:5f:32:f9:09:07:e2:3c:c4:38:f9:f9:e5:99:
97:66:6f:39:65:27:51:20:ce:d1:1c:53:0f:06:05:
db:ae:fc:af:bf:ee:5e:1a:c6:ed:b7:ec:9b:a4:b5:
b8:c2:a8:21:86:ff:a9:aa:a6:75:29:fa:89:83:a7:
0f:01:2f:0d:1d:80:c0:14:cf:0e:e6:81:25:ad:75:
e1:03:f4:b9:0d:2a:fe:b1:3a:ce:72:a4:72:ab:53:
d9:ba:3a:81:70:db:3e:90:01:1c:22:17:61:bb:be:
1d:19:21:28:0e:15:1f:2a:f8:78:5c:bc:7b:ab:e3:
51:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6A:E0:6A:AA:8A:EA:B1:A1:51:34:16:8C:C3:AC:62:7C:99:5E:AA
X509v3 Authority Key Identifier:
keyid:F7:D5:35:08:3F:B1:40:DD:AB:45:3A:BF:82:1F:5D:B3:A6:F4:61:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/99U1CD-xQN2rRTq_gh9ds6b0YaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93ce62-6f3d-493c-bf6f-5cd885489f82/1/iWrgaqqK6rGhUTQWjMOsYnyZXqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/93ce62-6f3d-493c-bf6f-5cd885489f82/1/99U1CD-xQN2rRTq_gh9ds6b0YaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.116.0/24
IPv6:
2a10:40c0::/32
Signature Algorithm: sha256WithRSAEncryption
15:07:6b:c3:4d:a3:b2:b0:c7:f2:d9:3c:f8:f6:3a:4f:13:0f:
65:4c:9d:d4:92:2b:11:c1:8e:c3:22:c4:02:10:ef:6a:d9:5e:
0b:f3:2e:bd:bf:dd:e7:11:bd:08:84:93:46:76:38:bf:f0:66:
20:99:42:33:c5:8b:1c:78:fa:d8:ee:fc:f0:ec:f7:4b:71:d6:
e3:43:ce:ee:74:cc:0c:16:84:45:9b:07:25:77:08:31:db:cf:
d3:73:6c:c9:ee:eb:a2:b7:0b:dc:d2:72:63:5b:b1:d7:35:ea:
e2:17:30:d8:58:b7:fc:62:b6:5f:dd:7d:0f:6e:fe:62:69:6d:
28:8e:bc:76:5e:77:48:09:5e:aa:97:54:9f:97:f4:c1:6a:52:
46:4e:f5:54:65:e5:77:4a:b0:ba:1e:84:d8:ec:22:39:2c:0f:
ff:c7:73:3b:0d:bb:a4:85:fe:c2:46:7c:d9:88:8b:b6:a6:82:
79:ed:23:fa:e1:41:6e:59:63:ed:93:7e:0c:a8:da:15:3f:a7:
c3:98:02:f3:e9:f2:69:45:b1:1e:c0:af:0b:03:9d:60:61:15:
22:c2:14:5c:1f:ca:7a:47:97:c1:77:92:58:0c:84:24:79:62:
32:8c:33:bc:51:02:8c:b1:be:e7:f1:fd:0f:0d:67:ec:ea:ae:
5a:29:3a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:40 2023 by rpki-client on console.sobornost.net