Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/rJDXj3Ed5uew07xFntpt3huuUQM.roa
File: rJDXj3Ed5uew07xFntpt3huuUQM.roa (raw, json)
Hash identifier: Qw3qwsKqSlSBXDBnilEomWTcoIwXophQVCyZ9BnS9vo=
Subject key identifier: AC:90:D7:8F:71:1D:E6:E7:B0:D3:BC:45:9E:DA:6D:DE:1B:AE:51:03
Certificate issuer: /CN=09b9d37450b62ae3f144eb42ac52ce243b628a7a
Certificate serial: 01839CDE76590F4EDE08523811D09E886F39
Authority key identifier: 09:B9:D3:74:50:B6:2A:E3:F1:44:EB:42:AC:52:CE:24:3B:62:8A:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbnTdFC2KuPxROtCrFLOJDtiino.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/rJDXj3Ed5uew07xFntpt3huuUQM.roa
Signing time: Mon 03 Oct 2022 08:02:48 +0000
ROA not before: Mon 03 Oct 2022 08:02:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 185.150.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9c:de:76:59:0f:4e:de:08:52:38:11:d0:9e:88:6f:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09b9d37450b62ae3f144eb42ac52ce243b628a7a
Validity
Not Before: Oct 3 08:02:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac90d78f711de6e7b0d3bc459eda6dde1bae5103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5e:4c:97:c8:c1:8e:d7:49:36:73:21:13:51:
c0:a5:df:d6:9e:d8:5e:ce:7f:93:82:85:8b:db:3d:
ba:31:d5:7b:51:e0:3c:12:65:1c:7d:37:ba:f6:9c:
0a:04:9d:19:80:9a:2e:43:7b:fc:98:a8:97:5e:65:
9b:e7:b6:23:cd:00:61:52:7d:88:5a:48:9d:7f:2a:
73:b9:81:0c:6f:67:7a:a7:14:50:f9:9c:80:8b:24:
8b:13:27:5f:af:3f:dc:58:a0:52:d4:eb:e8:03:be:
92:d5:7b:0c:75:05:b1:d2:b8:fa:ef:1c:3e:91:c8:
4e:8c:13:97:b7:f6:9f:95:60:5b:7d:c8:f1:7c:fa:
a8:30:0f:87:10:59:1e:d8:b2:ad:54:b5:9a:e8:fb:
46:8e:bd:5a:1f:35:a1:e8:96:db:f3:37:5a:b6:be:
68:27:43:6f:b8:d0:fe:49:da:45:06:3b:26:02:84:
e5:34:4a:1f:90:6c:a2:41:d9:be:4f:d7:c8:47:cd:
f0:c3:c9:a8:d6:a5:1e:82:1d:ab:1e:71:b4:35:b5:
42:72:28:62:b6:18:8d:6f:01:d1:cc:9a:81:e5:34:
b1:e0:db:e0:c5:24:cb:8a:57:bc:90:34:2b:ac:cc:
2d:ca:b5:00:98:2d:16:48:59:58:5e:b0:5d:41:47:
d8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:90:D7:8F:71:1D:E6:E7:B0:D3:BC:45:9E:DA:6D:DE:1B:AE:51:03
X509v3 Authority Key Identifier:
keyid:09:B9:D3:74:50:B6:2A:E3:F1:44:EB:42:AC:52:CE:24:3B:62:8A:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbnTdFC2KuPxROtCrFLOJDtiino.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/rJDXj3Ed5uew07xFntpt3huuUQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e5c0b6-8788-4bb9-b885-3fbfb94d9100/1/CbnTdFC2KuPxROtCrFLOJDtiino.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.19.0/24
Signature Algorithm: sha256WithRSAEncryption
30:f3:49:21:02:82:22:5a:0c:2d:4e:a1:3b:d2:0b:63:d2:11:
72:ce:ac:39:96:63:cd:37:07:cb:16:7f:69:1d:a6:49:0f:89:
25:25:f4:0f:eb:24:85:56:96:de:95:a1:22:f7:ad:94:d4:e7:
7b:d1:4b:27:2a:d6:b3:a5:3a:fc:8a:a8:da:1d:4f:32:1e:95:
9d:98:88:31:dc:e2:8e:c9:25:0d:b4:51:a6:ce:6e:2a:70:d1:
48:79:90:79:79:93:bd:1e:40:ef:2e:85:61:ab:54:f5:81:24:
96:07:98:99:01:9b:c9:0e:cf:de:7b:0c:60:29:0b:9a:54:7c:
80:b1:ad:bd:68:d9:13:68:03:39:d4:e8:f5:33:1f:45:4e:0d:
56:a0:f0:db:cc:47:8c:5a:80:a1:e4:9b:5b:36:3c:5e:31:cd:
4a:a4:45:d4:66:1c:24:e0:0b:b3:45:5d:f9:21:e1:55:0e:99:
51:20:cc:5d:ba:30:f9:16:7a:2d:11:c8:8f:6b:75:ed:c1:3f:
c5:e2:01:c1:bc:a2:ed:ae:f2:e1:1b:95:b5:17:26:68:7b:9c:
f7:69:35:5c:b6:85:9e:55:81:48:09:39:bd:40:b3:95:8f:b6:
81:b9:bf:6d:45:45:07:1d:7c:00:3e:41:dc:fb:78:de:b4:1e:
b1:cc:c7:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:52 2023 by rpki-client on console-ams.rpki-client.org