Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/g4qS2GYM4luBfVUL7ixUL4cBjsQ.roa
File: g4qS2GYM4luBfVUL7ixUL4cBjsQ.roa (raw, json)
Hash identifier: mtirL0+dSjbhgo3RA8/fD1MteGjJbEN7lGsCtDZGISw=
Subject key identifier: 83:8A:92:D8:66:0C:E2:5B:81:7D:55:0B:EE:2C:54:2F:87:01:8E:C4
Certificate issuer: /CN=be49fb190f4bd0f5815a8e579f366ad58d5d41f9
Certificate serial: 055C4EC9
Authority key identifier: BE:49:FB:19:0F:4B:D0:F5:81:5A:8E:57:9F:36:6A:D5:8D:5D:41:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/g4qS2GYM4luBfVUL7ixUL4cBjsQ.roa
Signing time: Wed 30 Mar 2022 09:57:51 +0000
ROA not before: Wed 30 Mar 2022 09:57:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48101
IP address blocks: 185.244.250.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89935561 (0x55c4ec9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be49fb190f4bd0f5815a8e579f366ad58d5d41f9
Validity
Not Before: Mar 30 09:57:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=838a92d8660ce25b817d550bee2c542f87018ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:37:ce:12:56:5f:09:20:f9:b0:a3:d2:5e:38:
2a:a6:73:82:c7:ad:c0:e2:ce:52:73:ed:e2:22:4d:
f5:5b:7d:5c:e2:43:da:50:d3:4f:58:15:e0:d7:5e:
b1:bc:6f:ae:83:59:cb:fd:4f:2b:7a:82:72:0b:67:
cb:92:95:9d:73:32:34:00:c2:8c:12:ac:0a:06:dd:
54:2a:f1:84:99:c6:15:5e:ea:aa:99:8a:a4:9e:35:
48:ad:44:e2:01:8e:e0:0e:25:a4:01:0f:d5:cb:c1:
cb:e1:76:1c:3b:ae:be:d4:0c:5f:9f:08:22:51:92:
8a:fc:68:b8:a6:af:e3:af:57:89:e5:6d:0f:db:b8:
5c:e6:71:06:6a:30:de:62:eb:11:d4:9a:9c:cc:5c:
64:2c:2d:d2:79:30:20:b0:c5:b2:0b:4d:9c:3d:74:
9a:de:26:d2:78:0d:38:01:b6:dd:af:74:74:3a:51:
c1:f1:70:50:38:d3:93:90:1e:38:cb:81:a7:70:a1:
d6:0e:d3:1d:c9:6b:f8:28:4d:92:f0:08:67:a8:08:
d9:71:5e:bc:8f:15:21:92:21:d5:63:d4:e9:68:c4:
8f:8f:9c:1c:42:b3:71:77:b3:6e:88:09:9e:d1:3f:
4f:04:c9:4f:ae:31:a0:a1:95:34:64:44:4f:20:70:
86:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:8A:92:D8:66:0C:E2:5B:81:7D:55:0B:EE:2C:54:2F:87:01:8E:C4
X509v3 Authority Key Identifier:
keyid:BE:49:FB:19:0F:4B:D0:F5:81:5A:8E:57:9F:36:6A:D5:8D:5D:41:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/g4qS2GYM4luBfVUL7ixUL4cBjsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.250.0/23
Signature Algorithm: sha256WithRSAEncryption
68:cc:4d:fe:24:a5:4f:04:b0:2a:de:73:58:60:96:74:fc:06:
96:92:c7:5c:95:e6:a2:0f:86:dc:61:05:5b:48:e1:ab:41:7c:
61:47:25:2a:da:c0:94:6e:00:c1:14:c2:a4:c2:32:24:ba:f9:
c0:93:ad:9a:f9:d3:77:89:f8:78:b8:88:60:9b:8e:f0:7d:72:
f0:e5:67:e3:7c:d9:6f:ec:78:38:47:45:59:2d:9b:8b:65:79:
0d:7d:78:26:6a:6c:cb:7a:5a:18:10:5a:86:b7:ce:33:b0:fc:
8c:02:8b:ec:3b:43:d6:fd:d8:0c:30:97:a4:25:44:21:06:75:
a8:3f:cf:67:ef:fb:18:a0:d0:04:bc:9b:38:f2:93:e4:11:a9:
f8:91:b8:09:2b:04:04:72:bc:48:48:94:55:9c:7e:b3:fe:9d:
80:f2:78:a7:bc:28:46:0f:db:65:7a:a4:98:9e:94:99:1b:10:
bd:21:3e:f0:b3:cd:80:0a:cb:65:6c:d1:19:ba:06:28:6a:b5:
04:60:27:3e:cf:d0:55:7b:83:83:42:de:df:1f:5a:85:bc:da:
3b:32:ba:aa:de:6b:54:92:dd:00:74:d0:c8:6c:ce:e4:c4:a3:
a1:4d:b6:23:94:c8:37:38:7b:c0:a8:23:9c:a7:c9:f8:24:ab:
ed:f2:e5:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:37 2023 by rpki-client on console-fra.rpki-client.org