Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/R7F9aay8NW9eVOIC2dxFV5dLqMo.roa
File: R7F9aay8NW9eVOIC2dxFV5dLqMo.roa (raw, json)
Hash identifier: T+0nPfHq5afWEbtsh1fvyegjG37Z9B/+DK/z3cKurZM=
Subject key identifier: 47:B1:7D:69:AC:BC:35:6F:5E:54:E2:02:D9:DC:45:57:97:4B:A8:CA
Certificate issuer: /CN=d5271a6f99eac12abe0856100a14a2d9663ce7bb
Certificate serial: 06F1A16D
Authority key identifier: D5:27:1A:6F:99:EA:C1:2A:BE:08:56:10:0A:14:A2:D9:66:3C:E7:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Scab5nqwSq-CFYQChSi2WY857s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/R7F9aay8NW9eVOIC2dxFV5dLqMo.roa
Signing time: Sat 01 Jan 2022 14:05:54 +0000
ROA not before: Sat 01 Jan 2022 14:05:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24627
IP address blocks: 185.23.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116498797 (0x6f1a16d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5271a6f99eac12abe0856100a14a2d9663ce7bb
Validity
Not Before: Jan 1 14:05:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47b17d69acbc356f5e54e202d9dc4557974ba8ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:aa:f8:45:c8:a2:fe:fb:5e:28:d1:d6:a4:57:
15:c7:24:52:90:1b:ce:0c:1c:eb:70:93:a6:af:38:
24:91:b1:83:67:0e:11:e1:91:6e:b7:31:d9:33:43:
ef:7f:8a:b2:45:1f:5d:15:ec:b1:15:41:b7:31:01:
9a:01:cd:38:bd:8e:26:39:c3:38:83:06:66:f2:46:
0c:43:0c:6f:bb:c2:fd:3a:c4:c5:e5:53:96:80:ef:
0a:c3:6f:a4:9a:4e:93:f4:78:d8:83:64:f9:92:ed:
09:87:3a:7d:39:7a:64:60:76:94:1f:07:05:3c:fb:
5a:a1:34:08:d3:ce:aa:5e:f5:67:09:7c:cc:58:fb:
d4:ee:b3:18:00:d6:25:e2:43:2a:66:e2:b4:58:cf:
8b:57:1a:fc:ed:e4:7c:20:d9:4e:b8:e3:35:2e:f9:
81:98:27:84:3c:51:2d:f8:8e:9e:22:82:5c:95:1c:
21:b2:65:f3:52:ef:40:c3:0b:75:3c:ff:ec:76:6f:
61:9a:1c:1e:8f:3a:b9:48:c0:c8:7f:7a:74:2c:25:
87:38:db:48:53:97:32:a2:54:e9:92:fa:20:81:e5:
54:3c:39:5d:49:97:5b:d7:62:f5:53:42:29:2c:a4:
0f:e6:af:f4:9f:a8:ca:3f:a7:76:2e:af:20:08:ff:
2c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B1:7D:69:AC:BC:35:6F:5E:54:E2:02:D9:DC:45:57:97:4B:A8:CA
X509v3 Authority Key Identifier:
keyid:D5:27:1A:6F:99:EA:C1:2A:BE:08:56:10:0A:14:A2:D9:66:3C:E7:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Scab5nqwSq-CFYQChSi2WY857s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/R7F9aay8NW9eVOIC2dxFV5dLqMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/180996-c97a-48bc-b5ab-100862b96c4d/1/1Scab5nqwSq-CFYQChSi2WY857s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.240.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:3f:6a:5a:2d:2a:53:0f:8e:d7:17:ff:a9:5f:58:88:05:89:
7b:09:24:ef:6b:f5:0d:11:a4:6b:6a:5f:5a:7e:0e:8f:db:54:
ae:86:8c:57:e7:3a:a0:88:8d:a0:d9:71:8c:f7:1d:91:ff:81:
30:c2:2d:13:76:9a:0b:70:c5:a1:dd:ac:f4:d4:d6:fe:dc:1a:
14:d8:b5:ae:ca:cd:9b:5c:57:a0:bb:90:32:7c:a0:d7:9f:6d:
82:7a:3d:4a:b7:01:88:de:78:a2:48:23:07:24:d8:87:c3:b1:
45:e1:f5:98:00:24:e3:f0:0c:55:e5:78:24:f3:6a:3f:3a:d6:
9c:79:0e:f8:be:1a:68:99:8f:a7:3a:6f:f6:4d:5b:7f:7f:c3:
e3:6e:3a:65:29:90:b2:8c:21:e2:3c:4e:15:4d:32:8c:a6:ee:
7e:79:0b:46:57:d8:ee:07:1c:15:fc:2a:82:f4:95:12:32:07:
89:49:1c:42:ef:71:d0:91:da:52:52:9a:55:fe:0b:d2:23:13:
b2:e2:72:0a:9a:59:f1:ab:be:fd:fe:89:bf:f9:50:7c:59:a6:
ed:45:34:0f:76:4a:71:5a:fb:0f:2d:34:3e:1c:2f:e6:ec:61:
31:b2:71:c3:27:27:89:e5:1d:bf:a0:2b:ad:d8:9c:56:6e:35:
74:55:e1:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:45 2023 by rpki-client on console-fra.rpki-client.org