Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/kNeS5uDcow4nv3BKBPXH9B2_oaQ.roa
File: kNeS5uDcow4nv3BKBPXH9B2_oaQ.roa (raw, json)
Hash identifier: DxKlxTLQdhvxheI3/t5ersxV3UV5Z8kKoLpQSS5lbQ0=
Subject key identifier: 90:D7:92:E6:E0:DC:A3:0E:27:BF:70:4A:04:F5:C7:F4:1D:BF:A1:A4
Certificate issuer: /CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Certificate serial: 12E64DDA
Authority key identifier: 47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/kNeS5uDcow4nv3BKBPXH9B2_oaQ.roa
Signing time: Fri 14 Jan 2022 15:58:27 +0000
ROA not before: Fri 14 Jan 2022 15:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201935
IP address blocks: 185.23.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 317083098 (0x12e64dda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Validity
Not Before: Jan 14 15:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90d792e6e0dca30e27bf704a04f5c7f41dbfa1a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:14:ee:74:63:52:0d:28:06:22:78:db:73:61:
f3:9b:c9:40:56:a3:35:a3:61:50:fd:98:00:49:5a:
f5:28:98:72:80:7b:9d:2a:27:17:92:92:a8:f3:16:
62:96:75:a6:26:fb:d4:9a:c2:77:7e:b7:98:a9:ff:
04:69:1e:c8:bb:3f:df:5a:0c:e7:5f:1a:c8:f3:48:
88:c8:a3:00:f2:69:a8:07:e0:4b:9f:46:8d:e9:b6:
63:00:ae:31:c3:53:df:67:fb:f9:80:69:65:90:a3:
67:ec:cc:95:42:e8:32:31:69:77:6e:4b:42:6c:83:
e0:81:37:72:5a:98:32:64:cf:b5:80:da:48:34:73:
83:e9:23:15:9b:a5:42:7e:0e:11:96:27:6a:6a:78:
58:c1:e5:63:0d:85:cd:30:bd:2b:79:d2:5a:ab:22:
86:cd:27:da:bd:61:6a:8a:c0:a4:97:20:79:80:88:
d7:e4:cd:17:5b:c9:47:42:19:79:81:33:4e:e8:a0:
7a:b0:2b:7d:3f:6e:09:22:9e:69:01:e5:b5:eb:ce:
40:d3:b9:1a:70:e3:07:94:8f:0c:2d:d7:1f:1f:21:
84:87:5d:40:c5:e5:66:60:f6:e1:6d:eb:28:83:3c:
03:72:96:77:a4:09:90:48:db:71:65:04:55:e0:96:
d9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D7:92:E6:E0:DC:A3:0E:27:BF:70:4A:04:F5:C7:F4:1D:BF:A1:A4
X509v3 Authority Key Identifier:
keyid:47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/kNeS5uDcow4nv3BKBPXH9B2_oaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.98.0/24
Signature Algorithm: sha256WithRSAEncryption
55:e5:2a:65:62:77:db:d4:99:e0:bf:33:e4:40:e7:7d:75:4e:
71:b3:68:b6:4a:f1:74:40:0e:9d:32:c6:08:bd:21:ec:28:bd:
66:3b:83:8d:88:a5:bd:57:c5:1a:53:b0:00:33:06:39:fb:73:
4e:9c:1f:41:97:82:c7:fa:c5:41:0d:91:18:1a:bb:b9:d1:44:
f0:df:63:04:59:9f:70:fe:2d:f3:47:70:87:b9:80:34:ea:59:
98:36:1b:52:f4:d6:ab:c4:07:26:67:65:ae:9c:71:44:cd:17:
72:a3:cf:18:f8:cd:76:ae:45:f0:d5:6a:4c:af:e0:2b:43:c5:
51:9b:1b:9a:e2:a9:43:4b:79:cb:31:f8:ce:6b:eb:7a:48:84:
02:38:2f:f2:3e:92:2c:c1:7a:6f:59:b5:97:01:3c:64:e6:be:
78:0a:3f:41:63:dd:f3:fb:ba:b8:ea:cb:56:20:dc:f1:b1:fb:
e2:4d:e1:f7:10:6a:31:da:7a:5d:51:a0:05:0f:94:be:45:f2:
61:53:a0:e0:79:1c:da:37:b4:4a:68:68:ab:aa:5b:48:ec:58:
c5:8c:0d:2d:8c:bb:2e:db:ce:a9:6f:46:c9:8a:b0:2c:96:a2:
52:85:27:21:41:70:77:9f:0e:5a:99:a6:61:1d:d5:ee:9a:81:
cb:51:01:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:47 2024 by rpki-client on console-fra.rpki-client.org