Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/9rquf5kt-4ZiiCLyOSsG0uVcHYs.roa
File: 9rquf5kt-4ZiiCLyOSsG0uVcHYs.roa (raw, json)
Hash identifier: 0h1B9k5uN6V5245aiMInGgBc3hmEgbO4Qq49ZLr7rhw=
Subject key identifier: F6:BA:AE:7F:99:2D:FB:86:62:88:22:F2:39:2B:06:D2:E5:5C:1D:8B
Certificate issuer: /CN=d5271a6f99eac12abe0856100a14a2d9663ce7bb
Certificate serial: 06F2DB10
Authority key identifier: D5:27:1A:6F:99:EA:C1:2A:BE:08:56:10:0A:14:A2:D9:66:3C:E7:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Scab5nqwSq-CFYQChSi2WY857s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/9rquf5kt-4ZiiCLyOSsG0uVcHYs.roa
Signing time: Sat 01 Jan 2022 14:05:55 +0000
ROA not before: Sat 01 Jan 2022 14:05:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39151
IP address blocks: 185.23.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116579088 (0x6f2db10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5271a6f99eac12abe0856100a14a2d9663ce7bb
Validity
Not Before: Jan 1 14:05:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6baae7f992dfb86628822f2392b06d2e55c1d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:dc:e5:33:b1:34:c4:7d:c4:95:d2:44:50:49:
87:2e:e8:27:c7:02:63:ed:20:02:d0:46:1c:88:30:
b6:27:17:91:04:47:79:bc:f2:6c:e9:21:dc:b2:9f:
da:b8:9b:cb:17:cb:55:96:e8:be:e5:95:02:77:8b:
81:7c:56:6f:3d:b9:dd:dd:a6:46:8d:36:ee:85:16:
01:f0:6d:a6:e9:98:d9:46:7b:b8:db:07:c7:ec:bc:
dc:c5:76:6a:ab:45:e8:f7:d9:b1:b5:e9:06:af:a6:
85:4a:26:f9:c7:f9:c2:66:7c:a6:f3:8e:c2:f1:b3:
0b:3e:97:ac:f3:2a:3e:d7:5b:35:4a:7c:71:b6:ee:
bd:08:ba:b2:48:e1:0b:e6:ec:55:fd:14:cb:2b:0d:
26:cd:1b:f1:37:6f:af:d1:0d:f5:6e:df:c1:d1:4c:
bd:63:09:41:7f:8d:ff:39:04:42:d1:45:d2:bf:5a:
44:55:81:7f:68:6e:22:91:56:b1:22:fd:5b:c8:63:
7d:bf:39:37:b9:11:72:ce:3c:69:33:ad:0c:47:f1:
29:cb:b1:ad:e3:54:78:35:af:49:e6:99:92:17:9e:
b7:22:71:60:55:c8:4a:92:c7:52:41:44:d0:61:db:
db:79:b5:d7:44:da:68:81:f1:51:07:2f:55:9a:aa:
25:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:BA:AE:7F:99:2D:FB:86:62:88:22:F2:39:2B:06:D2:E5:5C:1D:8B
X509v3 Authority Key Identifier:
keyid:D5:27:1A:6F:99:EA:C1:2A:BE:08:56:10:0A:14:A2:D9:66:3C:E7:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Scab5nqwSq-CFYQChSi2WY857s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/9rquf5kt-4ZiiCLyOSsG0uVcHYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/1Scab5nqwSq-CFYQChSi2WY857s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.243.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:ad:0a:5c:be:e3:c5:11:aa:38:3d:92:8a:01:69:86:24:9a:
33:fe:3a:e8:43:30:0a:a3:1c:5d:19:b6:a7:69:34:5b:60:90:
87:07:e1:fd:c3:0e:6e:5d:d7:4e:6f:cd:65:96:64:bf:29:c0:
dd:d9:0c:84:13:f1:23:7b:cf:2a:b1:e4:11:13:a3:ec:09:2a:
a5:1f:26:03:17:b8:0d:a1:71:81:b9:60:42:7f:70:9c:5c:e4:
15:5d:52:06:02:e7:3d:6c:c0:83:44:7c:7a:b2:8e:e6:f4:db:
a4:d6:81:20:ef:a1:0f:a7:0e:a7:3b:49:6e:5f:da:5c:75:36:
82:30:63:46:d3:a3:c5:eb:96:5e:18:02:2e:05:53:e9:a4:56:
e9:05:1a:78:9b:32:ca:e5:d5:08:e0:ec:6c:14:8e:34:3e:11:
cf:31:12:a9:6d:4e:21:72:09:18:2c:a5:e8:2d:54:1f:3c:e4:
45:6e:87:13:86:20:60:d0:2d:e0:17:2b:45:eb:1f:f4:60:14:
06:f0:85:dc:ae:af:5b:c0:e6:04:68:a0:79:7b:24:45:36:5b:
43:da:e6:36:d7:55:fc:05:cc:c3:58:fa:97:d0:62:1a:b5:01:
13:d5:7a:7b:f3:55:9e:ea:03:71:ab:b9:0d:28:ed:f1:42:42:
e2:bd:2e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:31 2023 by rpki-client on console-ams.rpki-client.org