Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/l6c1-U6cB8wIEHR4gg56VwmmPDI.roa
File: l6c1-U6cB8wIEHR4gg56VwmmPDI.roa (raw, json)
Hash identifier: 5nC/lvF2PPfbjLG3VAcI53GeMYD8HwKUHpnP0+jKhAA=
Subject key identifier: 97:A7:35:F9:4E:9C:07:CC:08:10:74:78:82:0E:7A:57:09:A6:3C:32
Certificate issuer: /CN=8a3ec0537242f44ce7d5933e9b32204b3f85e99f
Certificate serial: 11C38108
Authority key identifier: 8A:3E:C0:53:72:42:F4:4C:E7:D5:93:3E:9B:32:20:4B:3F:85:E9:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij7AU3JC9Ezn1ZM-mzIgSz-F6Z8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/l6c1-U6cB8wIEHR4gg56VwmmPDI.roa
Signing time: Sat 01 Jan 2022 07:57:25 +0000
ROA not before: Sat 01 Jan 2022 07:57:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35280
IP address blocks: 185.110.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298025224 (0x11c38108)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3ec0537242f44ce7d5933e9b32204b3f85e99f
Validity
Not Before: Jan 1 07:57:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97a735f94e9c07cc08107478820e7a5709a63c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:15:32:2f:7c:94:83:1b:26:d4:02:84:34:b1:
db:7b:73:cd:20:fc:56:fe:2a:65:3c:a4:3c:8c:06:
3a:ba:38:2b:09:f8:08:23:6a:a4:d5:3c:0d:29:a9:
87:39:a7:5e:12:ba:8a:76:87:e3:d5:f8:85:c6:f1:
ba:bb:c0:d1:f6:70:fe:f7:79:ba:fb:d2:1a:cc:fd:
6e:34:0b:63:c1:ef:c4:6c:97:aa:69:bf:1c:68:f4:
4c:a0:f3:64:ff:e6:a2:71:8d:16:52:b2:b2:7c:0e:
83:e2:85:da:cd:21:f2:f7:3d:a8:92:ae:2b:e8:35:
e2:9a:0b:a0:f4:a1:a7:dd:97:43:26:9e:90:ba:0a:
97:44:d4:07:28:89:50:ca:62:e2:cc:e2:45:b9:04:
03:18:01:30:ce:b1:d1:dc:fb:eb:91:a8:37:79:77:
80:e5:5b:e9:c5:b1:2d:09:a2:74:0b:67:10:62:70:
9c:27:08:a3:c7:50:85:6f:62:17:7a:a1:59:c2:55:
dd:19:0d:0d:d0:41:82:51:52:37:1e:d3:34:ad:ae:
9c:ca:d4:54:63:33:73:30:32:ad:ba:d7:19:37:bf:
6b:a6:8f:9f:fe:e0:60:44:33:f6:0b:b1:f2:d8:69:
77:9d:cb:d6:e6:36:c9:68:88:49:40:6d:0b:35:81:
31:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A7:35:F9:4E:9C:07:CC:08:10:74:78:82:0E:7A:57:09:A6:3C:32
X509v3 Authority Key Identifier:
keyid:8A:3E:C0:53:72:42:F4:4C:E7:D5:93:3E:9B:32:20:4B:3F:85:E9:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij7AU3JC9Ezn1ZM-mzIgSz-F6Z8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/l6c1-U6cB8wIEHR4gg56VwmmPDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/ij7AU3JC9Ezn1ZM-mzIgSz-F6Z8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.99.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:6c:f9:6f:9f:3c:7c:b6:9f:9e:7d:c8:a6:02:70:ba:4b:85:
75:66:5a:52:44:b5:8e:78:5e:af:7d:d7:8a:dc:7e:af:0d:94:
67:66:8f:9c:1e:dc:9f:79:40:5b:2d:37:ae:43:9c:05:5e:21:
49:d8:a3:37:a3:e3:3f:59:d1:d8:92:b4:3b:79:82:b2:c9:d5:
88:69:06:49:e8:3c:11:78:2e:55:ad:aa:5e:a5:f1:62:8b:d5:
f5:e3:1e:98:c8:56:df:b1:05:68:87:0c:e1:cd:ca:93:1e:e3:
9f:7d:31:73:d4:73:99:24:1b:20:50:d4:27:48:49:c9:1f:99:
4c:5a:5d:d2:44:4b:3b:97:a0:84:04:4f:ff:b7:cb:2b:7a:0d:
e4:79:00:f4:d9:67:5e:c8:25:08:e3:32:da:5f:71:86:07:6b:
10:83:98:1e:b8:78:8f:57:8e:5a:33:93:af:09:22:79:97:d9:
b1:47:ed:db:59:1c:58:6b:84:dd:6b:ab:79:8a:68:f4:a4:96:
01:dc:e0:b5:66:55:c8:f3:c6:9a:eb:d7:c4:a1:66:7a:64:7f:
a1:6a:7b:b7:f4:de:6b:98:c7:fc:4c:0c:1f:f9:ef:67:87:4d:
0e:a8:18:02:60:8a:76:42:29:05:12:3d:49:5e:d7:aa:86:58:
ca:08:ce:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-fra.rpki-client.org