Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/QmMOwMwReH9QGXyUpxMudUh1KGA.roa
File: QmMOwMwReH9QGXyUpxMudUh1KGA.roa (raw, json)
Hash identifier: 6kWhxPEE8mgi5IIA7QCFTWSPK94AhNCzZK/os2kB624=
Subject key identifier: 42:63:0E:C0:CC:11:78:7F:50:19:7C:94:A7:13:2E:75:48:75:28:60
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 01822755136926CC03C3AC57F853842F47EB
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/QmMOwMwReH9QGXyUpxMudUh1KGA.roa
Signing time: Fri 22 Jul 2022 19:14:23 +0000
ROA not before: Fri 22 Jul 2022 19:14:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 89.185.22.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:27:55:13:69:26:cc:03:c3:ac:57:f8:53:84:2f:47:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Jul 22 19:14:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42630ec0cc11787f50197c94a7132e7548752860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:94:da:23:c4:24:78:ce:47:23:29:19:5b:dc:
02:c9:28:72:e7:c2:18:3a:1a:62:02:90:75:4c:b9:
6c:0c:ad:0f:ad:89:69:81:0b:99:a3:0a:2d:0b:e6:
2c:30:d4:d7:7d:d3:ad:f5:fc:e6:45:6a:02:57:89:
e9:69:c7:0f:78:9a:c8:36:66:9d:06:92:f1:89:78:
97:56:a8:aa:d2:ae:73:62:3e:f3:7f:62:20:af:5a:
29:0e:f5:18:88:91:d4:4c:f3:b4:d3:09:7b:8a:8e:
84:8c:22:86:d6:2f:53:34:74:a7:1d:e8:10:6d:2a:
c0:c2:9a:bd:8b:15:c5:63:9e:99:9a:6d:17:23:e4:
6a:dc:b6:23:fd:33:92:5b:cc:72:16:30:b7:e4:75:
52:5a:7d:81:34:21:3f:8c:2e:26:5c:c7:18:06:24:
62:1e:c3:e3:12:b5:f2:04:3c:d3:c6:70:5a:a3:c6:
e4:12:80:45:46:20:14:08:27:9e:83:48:f7:82:c3:
c1:e2:a8:59:dc:2c:a9:4e:24:97:80:ba:83:44:ce:
e2:d7:f0:3c:95:2e:82:92:19:f6:40:7a:b9:ad:b9:
ff:9b:04:e9:fc:d0:e7:69:dd:e2:5a:c8:94:e6:01:
a8:92:29:57:21:a9:52:c3:ba:0b:84:da:f0:b4:83:
dd:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:63:0E:C0:CC:11:78:7F:50:19:7C:94:A7:13:2E:75:48:75:28:60
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/QmMOwMwReH9QGXyUpxMudUh1KGA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.22.0/23
Signature Algorithm: sha256WithRSAEncryption
98:48:15:30:b2:ab:b1:ce:15:6c:c7:0c:9b:a8:51:79:ba:34:
00:b0:a4:6e:e3:77:5e:fb:76:a6:1a:e0:ed:91:cb:44:fb:9d:
06:bd:b9:5f:ef:ba:3e:75:1b:54:a5:b0:f3:d0:41:3a:2c:20:
2c:85:50:13:58:43:ef:d5:b3:35:ee:2d:6c:34:f9:ed:f7:e9:
7f:a9:ee:34:2f:a0:19:0b:28:0c:9c:84:ed:f5:e2:58:5a:92:
22:79:18:dd:c0:b1:14:b2:7e:64:b9:2e:9f:80:0d:55:1a:9d:
3d:da:4b:c5:cd:b8:28:dd:14:39:7d:89:9a:dd:26:d6:45:19:
d5:b3:54:d6:4a:a0:87:32:03:57:4e:9e:61:06:1c:03:3c:97:
39:94:9a:97:d6:ed:90:42:d4:22:25:ad:70:c0:72:cd:82:4f:
11:85:c0:03:3f:c2:57:2a:d9:39:9d:c2:9e:03:3a:16:c5:53:
8a:be:73:2a:ff:6f:dc:ce:5d:73:29:df:b9:9c:16:52:8a:2f:
5d:4a:11:4c:72:e5:3e:d7:06:19:73:2c:0f:54:43:97:92:8e:
8b:b0:77:29:61:3b:a8:f6:c4:20:6c:2c:ee:91:14:86:26:2d:
f0:c9:a5:2d:bb:d7:1c:b3:04:b0:29:fa:cf:f0:5b:d7:8a:02:
a8:ae:1d:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:46 2024 by rpki-client on console-ams.rpki-client.org