Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/557548-d39e-44e0-b7ae-3fb05a0986e7/1/aHuZU94jQdj6hCvUB9Q0d5K_Qsg.roa
File: aHuZU94jQdj6hCvUB9Q0d5K_Qsg.roa (raw, json)
Hash identifier: uhvDPcZtkPfu0MjUrGKz2xdBQD0aaJd3Rp9M9zNnKLE=
Subject key identifier: 68:7B:99:53:DE:23:41:D8:FA:84:2B:D4:07:D4:34:77:92:BF:42:C8
Certificate issuer: /CN=797bce98c8e3a5d2f75623e6f232f3cfcdbb52ba
Certificate serial: 0185393D93E62ACB19FB081890382AA8EBFC
Authority key identifier: 79:7B:CE:98:C8:E3:A5:D2:F7:56:23:E6:F2:32:F3:CF:CD:BB:52:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXvOmMjjpdL3ViPm8jLzz827Uro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/557548-d39e-44e0-b7ae-3fb05a0986e7/1/aHuZU94jQdj6hCvUB9Q0d5K_Qsg.roa
Signing time: Thu 22 Dec 2022 09:50:14 +0000
ROA not before: Thu 22 Dec 2022 09:50:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16019
IP address blocks: 185.13.87.0/24 maxlen: 24
2a10:1d00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:3d:93:e6:2a:cb:19:fb:08:18:90:38:2a:a8:eb:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=797bce98c8e3a5d2f75623e6f232f3cfcdbb52ba
Validity
Not Before: Dec 22 09:50:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=687b9953de2341d8fa842bd407d4347792bf42c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:54:40:0f:6c:50:88:d2:e3:5f:8e:25:cb:e9:
1f:08:e2:92:c4:bc:19:91:2d:d9:d3:46:90:ae:6c:
57:f3:2e:ef:18:de:9c:02:e3:6b:17:3f:50:53:a6:
e1:05:d6:c2:84:ac:27:a1:a3:16:36:15:a7:61:a3:
7d:a0:43:cc:10:9e:c2:fb:ea:30:b3:6c:c7:2d:f8:
66:c5:6a:af:6d:f1:f9:93:40:62:43:9f:c3:fb:54:
97:8c:98:8c:cc:83:c1:8e:54:2c:e1:88:27:eb:d8:
74:b8:e3:e9:87:f0:99:9a:f7:7c:96:c4:71:a9:dc:
17:1e:63:09:7b:9e:63:92:38:3a:be:ec:1e:b8:4a:
f2:6f:83:85:9b:e0:52:df:ff:ed:cb:5f:b5:5b:dc:
02:a2:87:bf:b7:11:6b:98:e4:61:c2:e4:38:29:43:
eb:a3:0a:75:f8:be:79:bf:cc:74:26:5b:9e:82:4a:
6c:07:92:c3:3f:ec:a8:cc:06:8e:f4:56:f5:51:48:
df:24:fa:e7:19:42:cb:41:a2:31:c6:84:2a:29:8b:
ef:05:12:f8:7a:b0:74:8f:e7:cf:c2:55:5e:27:5c:
f2:52:74:9d:45:82:d0:b8:12:bd:25:10:1b:f9:fd:
ea:c7:4a:88:24:37:45:af:22:8d:e3:dc:6a:6e:3c:
df:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:7B:99:53:DE:23:41:D8:FA:84:2B:D4:07:D4:34:77:92:BF:42:C8
X509v3 Authority Key Identifier:
keyid:79:7B:CE:98:C8:E3:A5:D2:F7:56:23:E6:F2:32:F3:CF:CD:BB:52:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXvOmMjjpdL3ViPm8jLzz827Uro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/557548-d39e-44e0-b7ae-3fb05a0986e7/1/aHuZU94jQdj6hCvUB9Q0d5K_Qsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/557548-d39e-44e0-b7ae-3fb05a0986e7/1/eXvOmMjjpdL3ViPm8jLzz827Uro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.87.0/24
IPv6:
2a10:1d00::/32
Signature Algorithm: sha256WithRSAEncryption
74:f3:2b:c9:64:52:5f:60:65:2b:77:90:46:fb:ba:d6:78:bd:
88:ba:87:b9:d2:7c:b0:85:a0:c2:68:32:0a:cb:23:48:e1:0f:
01:aa:d3:67:5a:d9:55:73:02:9a:a6:3f:d0:4b:c0:15:fa:ec:
cb:ed:95:2b:45:e2:5f:da:73:09:a6:2d:ae:54:1a:74:48:5b:
96:0b:04:c0:f6:c8:47:0c:8a:26:4f:b5:ca:af:69:3d:18:38:
f4:5a:e6:3f:4d:3e:89:11:a5:af:ef:f0:25:92:ac:da:6e:d0:
15:a4:83:28:a1:f5:24:51:68:cc:ed:80:9c:f1:8d:80:fa:4d:
a6:f3:00:39:77:cd:83:75:45:99:a7:4a:81:f3:ae:25:bf:69:
72:8b:e4:f2:0b:09:57:cd:81:95:1a:27:15:f3:f7:34:0f:40:
8c:bc:63:d0:19:b1:3b:02:1f:04:cc:4e:f6:bc:e6:d3:90:9f:
46:4b:c0:f4:b5:9a:d2:fa:c3:1a:d8:66:69:ef:be:eb:20:af:
00:a3:c4:24:c5:3f:84:cd:1d:ac:44:6d:2d:70:0a:3a:81:dd:
e2:25:36:b1:ad:30:35:d6:10:fa:77:e1:ce:0c:7e:e1:b7:3a:
ee:24:68:52:35:06:98:a7:fa:2b:50:63:c1:71:8a:f1:e1:78:
2b:69:66:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:34 2023 by rpki-client on console-fra.rpki-client.org