Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/9PNQQn1IulwVuhOWAzRkpZy1k50.roa
File: 9PNQQn1IulwVuhOWAzRkpZy1k50.roa (raw, json)
Hash identifier: gjmaCfQqZvr/E9LRLFvol1NMs4o97RbZZTgjoy/GCWQ=
Subject key identifier: F4:F3:50:42:7D:48:BA:5C:15:BA:13:96:03:34:64:A5:9C:B5:93:9D
Certificate issuer: /CN=826905d1c1168b2a660709adb20f34c6e4c03d7f
Certificate serial: 06A7D374
Authority key identifier: 82:69:05:D1:C1:16:8B:2A:66:07:09:AD:B2:0F:34:C6:E4:C0:3D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmkF0cEWiypmBwmtsg80xuTAPX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/9PNQQn1IulwVuhOWAzRkpZy1k50.roa
Signing time: Sat 01 Jan 2022 13:01:22 +0000
ROA not before: Sat 01 Jan 2022 13:01:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59455
IP address blocks: 185.98.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111661940 (0x6a7d374)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826905d1c1168b2a660709adb20f34c6e4c03d7f
Validity
Not Before: Jan 1 13:01:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4f350427d48ba5c15ba1396033464a59cb5939d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:be:94:93:da:b3:e2:83:47:c6:9e:a4:28:44:
34:81:5c:60:90:81:07:4f:ec:ff:ca:9c:a5:c5:c0:
f4:6c:80:3f:36:64:79:75:d2:33:37:d9:55:16:25:
e2:19:b3:a7:18:87:9a:be:cd:5c:35:f3:f6:4c:f5:
62:59:8b:f1:eb:56:d3:2b:b5:66:6a:62:f9:a8:06:
83:cf:d3:8d:47:af:63:d5:60:50:53:77:58:87:33:
16:07:52:aa:1d:06:de:9c:6f:ac:d7:28:e4:d4:a1:
63:88:ec:06:be:5a:28:e9:2e:ac:27:8d:df:08:57:
4d:ba:de:09:3d:40:f2:08:9e:4d:18:82:ec:4a:b7:
81:29:05:bc:d7:40:c3:e9:29:ad:f9:8f:3b:e5:09:
80:7e:e5:ad:0c:4c:d2:74:1d:e9:66:77:de:c4:14:
f4:76:fd:2b:ac:0b:d2:9b:81:d4:11:78:a4:5e:81:
70:42:38:e2:3c:7f:bc:e8:65:12:86:4e:2d:43:ba:
0e:3c:bc:d9:73:7a:22:a0:a0:df:b0:ed:d6:05:c7:
ca:52:e4:41:1d:5b:8f:b6:03:4b:ea:8b:6b:ec:b6:
ed:3f:d5:03:18:98:49:df:92:c6:9f:24:a4:cd:bd:
5f:61:15:6e:50:0a:38:f6:c8:90:fc:df:38:6f:e2:
c6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F3:50:42:7D:48:BA:5C:15:BA:13:96:03:34:64:A5:9C:B5:93:9D
X509v3 Authority Key Identifier:
keyid:82:69:05:D1:C1:16:8B:2A:66:07:09:AD:B2:0F:34:C6:E4:C0:3D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmkF0cEWiypmBwmtsg80xuTAPX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/9PNQQn1IulwVuhOWAzRkpZy1k50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/fc282c-cd7c-435a-aab4-b25e9dcb466e/1/gmkF0cEWiypmBwmtsg80xuTAPX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.108.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:b7:46:af:71:e2:62:fc:1d:e2:23:16:1a:8f:3c:1c:f0:0b:
89:91:7f:ff:f7:5f:a7:4a:18:c6:01:e3:6a:67:cd:37:1e:43:
dd:23:fc:df:84:f3:53:2b:ce:d5:ae:7c:83:bf:65:a3:df:08:
d4:ee:be:47:a1:bd:c5:1c:84:26:87:6f:5a:67:46:c9:5c:a1:
99:07:6a:e9:1d:49:d4:05:6c:68:7e:81:f5:a2:ac:6a:65:fc:
7b:f9:08:36:c8:8b:ea:32:71:f8:62:8a:cf:f1:74:1c:13:b4:
3a:1b:52:75:da:bb:dc:06:0f:d5:f1:fa:cf:99:8a:33:89:dd:
6f:7f:f6:a9:ee:10:d0:4c:7a:25:14:78:ba:2d:a0:17:87:26:
28:f1:54:e7:92:cc:1e:75:93:a3:16:93:e1:89:d9:92:c7:b3:
6f:ae:ba:15:ad:88:86:74:02:7b:5c:be:5a:04:a6:ef:d4:e1:
d5:5f:99:01:60:f9:46:9e:b9:a9:b1:f2:f2:fd:7b:5d:92:96:
73:cc:73:77:a2:b0:0a:f0:a4:86:7b:b5:c3:93:92:e2:63:7c:
d3:cd:35:25:a9:74:d1:f8:ac:cb:f3:21:07:ca:eb:ae:df:bb:
33:dc:9d:85:f9:33:0c:5e:9b:49:df:5f:09:9b:81:36:71:6a:
5d:41:75:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:20 2023 by rpki-client on console-ams.rpki-client.org