Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/fbc141-99fc-4f83-b585-0fe6f55db3f6/1/1-EGnmrKwLTxHjcG1y9lbNI2HmR0.roa
File: 1-EGnmrKwLTxHjcG1y9lbNI2HmR0.roa (raw, json)
Hash identifier: rQSLdT/qWHcyc7Se0nSC2Qee5HD8QoYPvJJbjcmNNFo=
Subject key identifier: F8:41:A7:9A:B2:B0:2D:3C:47:8D:C1:B5:CB:D9:5B:34:8D:87:99:1D
Certificate issuer: /CN=029e98336f6a6cc9dbcf1ecb4895580f094e3e2b
Certificate serial: 014475
Authority key identifier: 02:9E:98:33:6F:6A:6C:C9:DB:CF:1E:CB:48:95:58:0F:09:4E:3E:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ap6YM29qbMnbzx7LSJVYDwlOPis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/fbc141-99fc-4f83-b585-0fe6f55db3f6/1/1-EGnmrKwLTxHjcG1y9lbNI2HmR0.roa
Signing time: Tue 26 Apr 2022 07:39:26 +0000
ROA not before: Tue 26 Apr 2022 07:39:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8376
IP address blocks: 185.98.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83061 (0x14475)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=029e98336f6a6cc9dbcf1ecb4895580f094e3e2b
Validity
Not Before: Apr 26 07:39:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f841a79ab2b02d3c478dc1b5cbd95b348d87991d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4f:fe:50:52:38:7f:f3:3c:51:ce:02:db:5c:
a4:bc:f7:af:d0:93:0e:3c:fa:56:5b:07:83:66:c9:
c6:1b:40:33:f3:68:07:90:55:a6:7e:b4:26:3b:c8:
98:ee:59:91:80:4e:d0:be:57:27:29:d1:b5:f2:cf:
40:a1:3b:19:5b:06:13:b8:8f:cc:70:cd:6a:1a:c2:
23:67:a8:1a:09:8a:62:80:52:4d:75:c9:cf:a6:bc:
02:f9:7d:49:cb:b3:70:32:b7:65:1d:e4:fd:02:93:
8e:1d:99:75:06:11:83:fb:8c:b8:99:86:63:d0:ec:
bb:82:cb:5c:a2:70:ec:8a:c1:bb:31:d6:db:03:d0:
ed:05:90:a5:d6:9d:ef:4e:50:a8:3f:9c:ea:44:88:
3d:46:f2:03:1e:4a:5d:e5:e5:d1:8c:df:bf:d0:77:
9a:47:c5:e4:a0:8b:3e:23:3e:44:91:3a:04:75:05:
ae:f5:50:1e:c9:d5:de:14:aa:9f:63:fe:54:15:67:
e7:28:0a:88:65:a9:e0:89:65:73:71:53:3a:88:ab:
9a:38:41:23:61:28:78:f4:4b:47:65:45:d6:c4:ed:
cb:9c:da:10:07:81:d3:e7:c1:03:04:fc:dc:33:26:
e9:a7:c8:5f:c7:65:05:1a:29:24:c2:01:64:f8:13:
c0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:41:A7:9A:B2:B0:2D:3C:47:8D:C1:B5:CB:D9:5B:34:8D:87:99:1D
X509v3 Authority Key Identifier:
keyid:02:9E:98:33:6F:6A:6C:C9:DB:CF:1E:CB:48:95:58:0F:09:4E:3E:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ap6YM29qbMnbzx7LSJVYDwlOPis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/fbc141-99fc-4f83-b585-0fe6f55db3f6/1/1-EGnmrKwLTxHjcG1y9lbNI2HmR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/fbc141-99fc-4f83-b585-0fe6f55db3f6/1/Ap6YM29qbMnbzx7LSJVYDwlOPis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.224.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:82:3d:e2:93:91:2b:33:df:cb:10:85:e0:8c:18:d1:a8:a2:
e9:be:e9:f2:1e:d4:8c:eb:a9:00:ce:3b:8f:99:3a:be:a5:56:
ce:94:b0:62:9c:31:6b:f4:83:1e:26:80:09:70:00:c2:b4:5b:
05:c6:94:98:6d:da:62:46:2c:b2:51:38:da:1e:67:4e:7f:f9:
b6:52:67:03:09:bf:8e:8e:43:16:cd:38:14:43:9d:7f:7b:32:
1e:48:a4:72:32:95:96:1c:58:13:15:95:ce:a2:26:42:4b:ea:
ee:b3:cf:9d:36:04:fa:78:0c:bd:74:3a:45:11:9a:28:6e:eb:
10:fe:85:83:31:5e:a2:88:a9:ce:c6:2a:c8:72:41:16:a5:9a:
01:bf:67:5a:c4:59:c9:96:02:c8:d4:05:c1:eb:a5:c4:ce:ff:
ca:6b:cc:d7:a7:c0:71:a8:9c:34:09:96:f6:d1:8e:57:ba:7d:
51:9d:eb:fc:05:5e:40:0d:71:2c:a5:78:a9:b6:81:44:24:bc:
c3:71:e2:f1:f2:1d:3d:63:0f:5e:80:a1:98:18:3c:74:11:87:
09:90:c8:c6:32:d3:29:5f:7c:ae:08:58:65:4d:a6:17:81:ea:
bf:0f:0a:51:a5:98:2e:f7:77:39:0b:d2:ee:14:d2:a9:3d:00:
0d:a6:92:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:27 2023 by rpki-client on console-fra.rpki-client.org