Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/76d0d1-2b41-4118-9e60-f9288d80315b/1/RsafiGSbXwZNOFE7GEQUn4AYslY.roa
File: RsafiGSbXwZNOFE7GEQUn4AYslY.roa (raw, json)
Hash identifier: i01gL0ovRlb4aLccikdv9gcAFEHvo7+qtK7etBmdPGg=
Subject key identifier: 46:C6:9F:88:64:9B:5F:06:4D:38:51:3B:18:44:14:9F:80:18:B2:56
Certificate issuer: /CN=4f1e3770e71e6ee68b4e16f4eec6b1909f1d6686
Certificate serial: 0183FE4A64C496341DC81AB22A6DF63E2DF5
Authority key identifier: 4F:1E:37:70:E7:1E:6E:E6:8B:4E:16:F4:EE:C6:B1:90:9F:1D:66:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tx43cOcebuaLThb07saxkJ8dZoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/76d0d1-2b41-4118-9e60-f9288d80315b/1/RsafiGSbXwZNOFE7GEQUn4AYslY.roa
Signing time: Sat 22 Oct 2022 06:03:51 +0000
ROA not before: Sat 22 Oct 2022 06:03:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41789
IP address blocks: 185.55.58.0/24 maxlen: 24
185.55.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fe:4a:64:c4:96:34:1d:c8:1a:b2:2a:6d:f6:3e:2d:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1e3770e71e6ee68b4e16f4eec6b1909f1d6686
Validity
Not Before: Oct 22 06:03:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46c69f88649b5f064d38513b1844149f8018b256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f6:38:3c:e6:9d:0a:b0:24:77:e9:01:32:e4:
c0:20:85:bd:10:fb:fe:20:65:20:9c:06:2f:90:ff:
b8:e9:10:be:c6:f5:2f:28:f5:a2:2d:54:33:ec:61:
e9:c6:46:0f:42:c4:b5:40:b6:04:ba:39:f1:57:62:
aa:cc:5b:cb:5d:ea:b7:ec:23:0e:9e:98:17:31:02:
b6:a1:97:c7:36:e7:8e:0c:bd:8b:63:34:37:2a:c1:
ff:83:dc:14:e2:df:88:a2:da:0a:93:73:88:cd:2b:
0a:20:7f:f5:d8:72:1d:f8:b5:01:93:77:32:19:0b:
77:d7:46:01:a0:92:fd:51:1f:ba:03:8c:58:5d:de:
ea:17:f5:1c:81:14:a4:e4:c1:13:37:79:98:6f:01:
6a:49:e8:d6:85:cc:c7:16:dc:a4:5d:60:5b:97:e6:
c8:b4:de:32:ec:b2:aa:25:fe:19:a5:66:0c:22:ab:
d7:9e:b8:db:12:22:36:ab:2d:db:4f:9d:30:c4:01:
17:51:1d:b0:5f:41:10:09:37:dd:ca:ac:03:1e:0d:
13:8f:06:fa:51:f8:bb:ae:a1:5c:2e:04:f5:14:3d:
09:16:a9:97:b3:42:59:af:35:0d:a7:c8:36:66:7c:
29:58:ab:2a:5b:39:8e:bf:1a:e6:3d:0a:c3:75:91:
13:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:C6:9F:88:64:9B:5F:06:4D:38:51:3B:18:44:14:9F:80:18:B2:56
X509v3 Authority Key Identifier:
keyid:4F:1E:37:70:E7:1E:6E:E6:8B:4E:16:F4:EE:C6:B1:90:9F:1D:66:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tx43cOcebuaLThb07saxkJ8dZoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/76d0d1-2b41-4118-9e60-f9288d80315b/1/RsafiGSbXwZNOFE7GEQUn4AYslY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/76d0d1-2b41-4118-9e60-f9288d80315b/1/Tx43cOcebuaLThb07saxkJ8dZoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.55.58.0/23
Signature Algorithm: sha256WithRSAEncryption
04:f6:2b:7b:2c:b6:bd:c0:b2:db:74:e8:9e:ba:6c:a3:71:ec:
a1:88:57:71:4d:16:3b:1e:4d:87:8b:97:51:09:aa:f6:7c:dc:
e2:5c:6d:35:50:db:b5:15:72:16:8d:00:1d:2e:a7:34:cd:cc:
59:df:cf:75:1a:d7:03:4e:ca:45:09:a4:6f:66:1a:e3:10:3b:
da:14:f4:0d:4c:bc:80:fd:a4:2e:cf:d4:7c:67:a7:dc:64:18:
87:e2:fe:dc:83:3e:34:49:b7:24:33:51:4c:6b:f3:a9:51:e4:
e1:3a:fa:bc:6d:ad:64:22:67:ec:fa:13:5e:ec:98:3a:5a:ec:
b5:26:47:bd:10:fc:f7:80:bd:d5:97:4d:fd:b6:7a:20:7b:57:
20:22:1d:85:0c:f2:68:79:ee:65:b1:fa:4c:cc:a7:28:0c:12:
02:32:44:72:bc:4a:56:4d:b4:0b:6e:6d:39:2c:98:77:3d:28:
14:05:fe:2a:76:ee:4e:46:d9:f2:8a:b6:45:b3:7c:69:39:fa:
45:aa:bc:ef:a1:31:4a:32:da:07:ca:24:40:08:13:f5:8d:62:
c3:42:a4:d3:10:a7:88:c1:43:20:80:eb:5f:49:b3:d4:46:56:
2d:51:da:1f:8e:9d:22:9d:84:ee:05:48:fd:0d:bb:cd:5c:6e:
c5:81:2b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:59 2023 by rpki-client on console-ams.rpki-client.org