Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/myF5CPG3sgStNQzfouq60ZKaW6M.roa
File: myF5CPG3sgStNQzfouq60ZKaW6M.roa (raw, json)
Hash identifier: PnZY1HLSwKEaDZ1BmHkOxkX2npyyxf/smyrjhGC8xig=
Subject key identifier: 9B:21:79:08:F1:B7:B2:04:AD:35:0C:DF:A2:EA:BA:D1:92:9A:5B:A3
Certificate issuer: /CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Certificate serial: 2E67AA
Authority key identifier: 6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/myF5CPG3sgStNQzfouq60ZKaW6M.roa
Signing time: Sat 01 Jan 2022 01:54:46 +0000
ROA not before: Sat 01 Jan 2022 01:54:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59723
IP address blocks: 185.191.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3041194 (0x2e67aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Validity
Not Before: Jan 1 01:54:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b217908f1b7b204ad350cdfa2eabad1929a5ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:80:dc:d5:fb:fd:8d:15:63:f8:cd:51:39:0d:
e7:09:8c:1b:96:99:dc:f6:1c:c1:26:59:6c:24:5a:
47:69:1d:24:db:14:f2:66:90:a8:47:30:77:8f:ea:
3d:33:1f:d8:05:7d:db:2a:58:f4:be:e0:5c:7b:e6:
20:ee:ca:5b:91:41:7d:7b:c0:cc:fb:85:2d:d5:e8:
53:26:69:08:34:f1:54:7a:c7:5c:36:a0:d3:0b:07:
a5:2c:e4:09:54:7b:ca:89:a7:df:43:59:4a:46:ae:
60:f0:8c:90:26:b9:55:b5:68:99:f8:87:5c:92:7f:
1e:8d:05:bc:34:0a:b7:81:8f:1a:2d:f9:fb:6f:b3:
26:2c:60:cd:d5:31:ab:1d:13:37:30:0e:88:47:12:
27:1d:df:25:d7:20:43:8a:2f:a2:43:6e:d0:07:65:
8d:9d:36:3d:3e:26:c8:1d:16:91:64:b1:48:2d:4d:
33:4e:3b:00:e5:9d:6b:5c:42:7f:b9:0f:06:a6:13:
4b:3b:b4:72:2a:b6:d4:33:d5:eb:cc:cd:36:38:b7:
3a:72:e2:8c:1d:c4:24:47:78:93:43:01:09:93:0e:
c1:89:ac:b6:96:83:11:a4:6f:f5:2e:3e:90:f4:62:
1e:4f:55:7b:57:40:79:26:6e:15:18:4e:e9:fe:4c:
dd:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:21:79:08:F1:B7:B2:04:AD:35:0C:DF:A2:EA:BA:D1:92:9A:5B:A3
X509v3 Authority Key Identifier:
keyid:6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/myF5CPG3sgStNQzfouq60ZKaW6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.88.0/22
Signature Algorithm: sha256WithRSAEncryption
67:a2:00:b5:52:d6:fd:5f:4f:ca:3b:bc:99:98:d7:cf:5e:ce:
73:ac:1f:6a:1b:44:22:86:47:bc:e6:fd:f7:60:dc:41:61:95:
56:28:6e:8f:1a:36:1d:19:37:c8:75:b3:80:e8:41:01:96:07:
92:a7:a1:b0:86:2a:1f:11:a2:ef:e7:2a:2d:91:5b:db:5a:f3:
89:3b:c8:9a:59:33:55:04:33:bd:98:37:a3:fa:a5:a5:ad:4e:
53:0b:ee:8c:25:56:aa:4e:75:4f:a6:88:0e:23:3d:a1:fb:bb:
10:71:4b:92:1b:7c:58:75:25:81:c4:25:24:27:ae:0a:e6:f4:
74:35:23:42:91:ce:18:9f:cd:fb:db:8c:86:c7:99:6d:ee:6c:
95:e3:e3:a7:d3:fd:56:52:e1:77:0c:88:e8:c7:4c:0b:a2:ed:
6b:a2:53:9f:d5:93:17:11:05:70:e1:b4:85:5a:f1:98:bb:d9:
ac:d3:95:43:6a:a1:94:64:49:8e:79:9f:1b:e9:a5:a7:3e:5a:
9d:94:ed:17:38:be:ca:8c:a5:fb:34:40:61:14:ac:d7:16:ee:
50:dc:dd:de:27:54:cc:77:7f:9a:15:49:64:f8:29:50:d1:28:
b3:cf:28:1b:c9:f8:80:aa:af:a9:c8:16:ef:82:d5:c2:83:9f:
03:45:22:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:07 2023 by rpki-client on console-ams.rpki-client.org