Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/GIiewGDjdfIgNdCKdR89a7ddlKQ.roa
File: GIiewGDjdfIgNdCKdR89a7ddlKQ.roa (raw, json)
Hash identifier: bF8xN/ew0KpqPhuNlwvCmRwXwkoxOzN5IlxXlxlWW0s=
Subject key identifier: 18:88:9E:C0:60:E3:75:F2:20:35:D0:8A:75:1F:3D:6B:B7:5D:94:A4
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 018447D0B1B7502BBEFEC1196CBADBD156A9
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/GIiewGDjdfIgNdCKdR89a7ddlKQ.roa
Signing time: Sat 05 Nov 2022 12:42:50 +0000
ROA not before: Sat 05 Nov 2022 12:42:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13259
IP address blocks: 185.221.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:47:d0:b1:b7:50:2b:be:fe:c1:19:6c:ba:db:d1:56:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: Nov 5 12:42:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18889ec060e375f22035d08a751f3d6bb75d94a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ce:ca:68:ba:c5:fd:23:94:97:af:c3:91:82:
49:a8:42:f8:d3:61:2a:6b:c1:26:35:9a:0d:c0:00:
00:04:5f:a7:36:a8:d2:b4:33:1d:75:b9:3b:4d:af:
8b:b6:cd:49:79:1d:2b:6b:58:c9:b2:3b:2a:57:7a:
f3:5a:3e:a8:35:1c:e2:e1:d0:c1:a0:65:0f:ee:df:
b1:ed:b9:61:ad:61:0e:e4:85:03:e6:e5:49:ac:f5:
55:62:a3:cc:cc:0d:a6:da:81:e8:ef:e7:63:6c:21:
b2:20:a2:02:cf:72:45:23:9b:5b:b1:43:22:2b:10:
2b:f4:59:1d:0d:d0:ec:f0:33:0d:09:d1:33:da:13:
f7:24:da:74:cf:ee:4f:c1:9b:e2:ef:d8:b3:6c:2d:
ad:b1:ed:e0:b2:61:ee:f5:f7:45:25:57:de:3b:39:
dd:05:c2:f2:28:37:84:62:19:d4:dc:c1:82:af:8a:
f7:92:a4:1e:92:f9:57:38:4b:53:04:16:1e:f3:0c:
8f:7f:f9:57:37:2e:04:e2:1a:b1:9d:20:02:0a:e7:
9a:fb:e2:34:9e:25:c0:6b:39:35:ab:ed:0a:1f:46:
29:64:59:22:e5:9a:ca:e5:9a:8d:6e:c3:08:2d:b5:
8d:46:05:e3:53:ce:f8:f9:05:14:a8:16:e7:c6:0b:
51:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:88:9E:C0:60:E3:75:F2:20:35:D0:8A:75:1F:3D:6B:B7:5D:94:A4
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/GIiewGDjdfIgNdCKdR89a7ddlKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.197.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:b4:c9:61:69:7c:96:07:b1:f0:29:c6:81:bd:30:d3:37:88:
62:c6:1f:16:0f:10:a2:56:f1:23:69:ee:9f:a7:c2:cc:47:d6:
79:ec:f2:ac:aa:9a:63:cf:a9:af:fd:f5:95:8d:d9:a2:6b:2e:
45:9d:17:37:d6:52:c7:fc:56:ed:df:65:ca:61:3a:b5:63:b5:
e4:dd:3e:95:ea:4c:54:10:82:f9:b2:2f:2d:89:c5:a3:92:24:
81:49:61:b8:24:0e:11:58:6e:68:f6:52:d1:49:37:86:e4:c1:
99:72:c6:a0:49:b1:89:6c:9f:96:81:b2:e2:40:57:f3:6b:41:
68:a7:a3:26:43:9f:c8:10:ca:2e:69:2d:80:54:bc:90:e3:fe:
5d:ec:f6:a9:6c:9f:e7:3d:81:9f:9a:22:d7:5e:20:bd:9d:3a:
31:69:c1:ba:7d:6d:67:9e:34:56:99:a1:06:78:76:e6:e4:2e:
c2:8b:49:9f:04:51:ff:3a:36:ec:07:72:b0:3f:06:3b:91:18:
c3:28:c3:73:1d:f1:ea:02:0f:40:45:f7:06:bb:1c:c3:da:e8:
75:5a:a0:31:47:c1:9f:f6:62:3a:b1:25:d4:c1:29:22:ff:35:
c2:e9:eb:17:53:a6:59:1c:6a:a0:78:de:f8:7c:64:cf:8d:e4:
6b:5b:f5:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:45 2023 by rpki-client on console-fra.rpki-client.org