Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/AFOYCUS5Qgz18JGlywGkMU7WVVE.roa
File: AFOYCUS5Qgz18JGlywGkMU7WVVE.roa (raw, json)
Hash identifier: KkjukPRO5bfhIEzWAxYZ9V8Mz8wBin9KlsMzGsm4yaU=
Subject key identifier: 00:53:98:09:44:B9:42:0C:F5:F0:91:A5:CB:01:A4:31:4E:D6:55:51
Certificate issuer: /CN=16ea37a8e73e7679a933d70f7b9c872081024455
Certificate serial: 16617003
Authority key identifier: 16:EA:37:A8:E7:3E:76:79:A9:33:D7:0F:7B:9C:87:20:81:02:44:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fuo3qOc-dnmpM9cPe5yHIIECRFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/AFOYCUS5Qgz18JGlywGkMU7WVVE.roa
Signing time: Sat 01 Jan 2022 03:57:34 +0000
ROA not before: Sat 01 Jan 2022 03:57:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 185.81.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375484419 (0x16617003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16ea37a8e73e7679a933d70f7b9c872081024455
Validity
Not Before: Jan 1 03:57:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0053980944b9420cf5f091a5cb01a4314ed65551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d0:7e:8a:46:db:46:a7:e2:2e:e7:e7:a0:f6:
e1:0f:8b:89:9f:cc:bc:9e:28:29:1c:5b:cc:63:7f:
77:a8:79:d9:f9:eb:38:63:f7:40:73:7f:7b:e5:68:
68:fb:36:5b:40:18:62:77:24:83:84:8f:71:e2:35:
83:62:c6:97:5d:d5:d3:19:ec:31:60:3f:d5:d4:e5:
cd:47:6d:87:5f:53:f5:21:4d:78:ab:cd:5b:55:ec:
cc:48:2e:eb:5d:40:94:bb:24:04:2d:7b:5e:50:e1:
54:71:10:a9:9c:c5:02:95:39:4f:b7:8b:8e:b2:de:
ea:31:62:6d:ed:df:c7:62:67:75:38:d8:24:41:11:
43:b9:46:12:8d:bf:55:ae:a7:26:29:77:ef:6b:72:
ef:05:f6:48:4f:96:bd:a8:70:fc:f9:c5:b0:57:f9:
cc:e4:e4:0a:36:fd:7a:59:d4:45:ba:96:91:37:d6:
95:cb:e9:59:72:16:f8:9d:cf:72:9f:dc:a7:5a:39:
75:d9:cd:91:f5:6d:a4:88:d2:23:90:1f:52:07:cb:
ed:93:e7:9f:a4:4a:6f:bb:95:83:b9:b1:e0:a8:8a:
ca:28:00:85:af:bd:79:57:d2:2a:0a:ed:dd:13:f4:
f1:e4:a8:7c:3b:ba:41:62:cd:04:cd:9e:12:54:ff:
c5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:53:98:09:44:B9:42:0C:F5:F0:91:A5:CB:01:A4:31:4E:D6:55:51
X509v3 Authority Key Identifier:
keyid:16:EA:37:A8:E7:3E:76:79:A9:33:D7:0F:7B:9C:87:20:81:02:44:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fuo3qOc-dnmpM9cPe5yHIIECRFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/AFOYCUS5Qgz18JGlywGkMU7WVVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/Fuo3qOc-dnmpM9cPe5yHIIECRFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.98.0/24
Signature Algorithm: sha256WithRSAEncryption
64:d8:45:21:a2:fd:83:8d:c6:ae:d2:a6:17:87:9d:95:6d:ed:
42:82:0f:70:dd:da:e0:69:64:e7:26:33:ea:2c:d4:bf:b0:51:
d5:9a:86:c6:7d:1b:07:bf:7a:bb:60:8c:54:5b:00:78:48:b5:
68:a9:36:b6:d4:ec:08:9e:92:a1:33:34:d8:23:d8:03:f3:79:
19:49:d4:f6:9d:eb:ca:d3:c5:69:ce:27:fc:63:a7:98:d1:76:
d1:f8:17:72:21:e1:e0:80:86:55:09:b0:8f:b1:0c:fc:77:75:
1d:0e:95:a5:98:96:00:95:c2:04:35:73:b2:37:ff:8d:42:0e:
d7:1f:25:3a:03:79:45:42:c2:99:68:5b:d1:1e:c0:13:da:53:
ba:b0:ff:c4:36:44:ad:56:35:07:1d:cc:d8:68:75:1f:6f:4b:
a6:fb:4b:07:cf:fb:35:cb:a6:44:c7:38:85:22:fd:6a:fc:df:
ab:2c:07:07:bb:98:88:99:87:8b:92:39:d8:84:cc:27:4d:17:
ab:49:a6:40:15:32:b0:2e:de:64:2c:bc:fa:5d:42:ae:e8:91:
8f:fa:26:e0:ee:49:fa:f3:80:ac:54:0c:a5:78:ff:7e:28:0c:
46:d1:af:37:6f:0e:dc:f7:94:5a:50:d0:1d:72:42:9f:46:ce:
44:95:09:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:34 2023 by rpki-client on console-ams.rpki-client.org