Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/VjutKrjFCtW2_I68Cm45yxZd00c.roa
File: VjutKrjFCtW2_I68Cm45yxZd00c.roa (raw, json)
Hash identifier: m9wHHXrZqBFa55uMyZHD4OW8IacP5yNv0Xqd1nDxcrY=
Subject key identifier: 56:3B:AD:2A:B8:C5:0A:D5:B6:FC:8E:BC:0A:6E:39:CB:16:5D:D3:47
Certificate issuer: /CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Certificate serial: 020B7AD9
Authority key identifier: 88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/VjutKrjFCtW2_I68Cm45yxZd00c.roa
Signing time: Sat 01 Jan 2022 05:04:45 +0000
ROA not before: Sat 01 Jan 2022 05:04:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51013
IP address blocks: 185.111.88.0/24 maxlen: 24
185.111.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34306777 (0x20b7ad9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812a0a809dc3cd1fbd8951a8f80f69925e11908
Validity
Not Before: Jan 1 05:04:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=563bad2ab8c50ad5b6fc8ebc0a6e39cb165dd347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:24:97:2b:91:37:03:cc:de:8a:7e:eb:94:bf:
f7:0d:32:89:2c:2b:d5:17:47:c6:62:11:c4:56:5f:
30:fe:6a:cc:96:fb:87:10:fc:fd:d7:f4:f1:34:86:
ec:b1:12:c7:b2:f8:5a:bc:88:f4:a2:03:7a:f6:69:
5c:95:38:5a:1f:ee:82:eb:1e:7a:46:a8:eb:45:c3:
bd:db:c4:ef:e5:96:3c:6f:41:fc:3c:29:ae:92:b3:
8c:95:cb:52:a9:4f:02:77:ec:ee:d4:8b:7e:fe:99:
70:a1:73:2c:ea:24:53:b4:b4:71:60:d8:91:89:8c:
c7:44:cf:57:4c:c1:f9:c2:d3:c4:d0:97:1a:12:30:
1a:92:74:eb:9a:3a:bf:97:fa:4f:af:ae:1c:10:24:
87:b3:c6:1d:c1:95:ef:b5:54:11:d5:2c:b1:00:2b:
3d:20:38:a9:09:3a:a6:8c:b4:b8:a8:17:d4:46:c0:
05:02:d2:74:7b:b5:ae:dd:d6:05:ac:aa:92:c8:80:
af:6e:1b:f2:1a:38:02:34:f2:95:26:bb:ff:3d:20:
99:9a:7a:bc:9f:ea:ee:b5:ec:da:9d:02:d2:f4:a2:
f4:e8:16:63:fa:9d:d1:18:0c:8a:32:1a:7f:8c:40:
e1:2c:af:04:9a:90:44:36:03:dc:a5:cb:9a:15:11:
ec:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:3B:AD:2A:B8:C5:0A:D5:B6:FC:8E:BC:0A:6E:39:CB:16:5D:D3:47
X509v3 Authority Key Identifier:
keyid:88:12:A0:A8:09:DC:3C:D1:FB:D8:95:1A:8F:80:F6:99:25:E1:19:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBKgqAncPNH72JUaj4D2mSXhGQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/VjutKrjFCtW2_I68Cm45yxZd00c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/c8aa09-bdfb-43ca-8522-fa75cbe9bead/1/iBKgqAncPNH72JUaj4D2mSXhGQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.88.0/22
Signature Algorithm: sha256WithRSAEncryption
47:ed:b5:63:1e:dd:31:08:c8:02:9e:fc:b1:a3:1e:e5:79:21:
ee:ab:31:e2:da:e8:ab:c1:f4:de:44:7e:11:8d:c7:13:2a:06:
b2:0d:b4:2d:13:06:42:44:0b:6e:e4:7c:b7:13:81:15:4e:7f:
5e:9d:47:5f:2c:10:c1:1d:99:84:f8:57:2b:a2:45:c4:c4:29:
76:a6:61:56:e5:bc:4e:f6:08:cb:86:9e:2d:de:3e:18:fc:a9:
a0:e1:9a:d0:56:11:0f:bc:34:50:aa:df:76:57:5d:16:58:81:
09:e8:a0:81:13:18:52:76:31:b4:6c:93:e4:ee:0f:50:e2:0c:
4e:0d:62:ef:ab:ec:1c:bd:23:df:65:9c:67:b5:11:ea:b7:93:
b4:0e:af:e9:ea:e0:a4:41:dc:e5:e6:23:0e:68:aa:db:c8:ac:
25:42:cd:9d:16:e2:18:8d:20:cb:d2:5f:7b:3f:a0:44:61:81:
62:52:2a:68:b1:e3:06:8f:50:35:aa:c1:7e:9f:f5:98:ca:0d:
73:21:a3:40:53:22:0d:c6:7a:8b:1b:4b:5e:89:8e:aa:cb:89:
eb:f7:19:de:70:fe:a6:0d:24:1c:7c:64:3e:41:d1:f7:76:fd:
0e:b3:e9:e2:53:58:ee:17:4b:02:98:41:c2:b9:b8:ff:6e:8d:
65:6d:99:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:38 2023 by rpki-client on console.sobornost.net