Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/q31Hu8Eusq10QONc_bKguTZMSK8.roa
File: q31Hu8Eusq10QONc_bKguTZMSK8.roa (raw, json)
Hash identifier: Jj2W7n2vKsrqWMM57gjkYDjPYGKr1tPLO7s9itF8suE=
Subject key identifier: AB:7D:47:BB:C1:2E:B2:AD:74:40:E3:5C:FD:B2:A0:B9:36:4C:48:AF
Certificate issuer: /CN=84d60d2dc6ad82a2570e0000fdd993948bc454d8
Certificate serial: 061D5ADD
Authority key identifier: 84:D6:0D:2D:C6:AD:82:A2:57:0E:00:00:FD:D9:93:94:8B:C4:54:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYNLcatgqJXDgAA_dmTlIvEVNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/q31Hu8Eusq10QONc_bKguTZMSK8.roa
Signing time: Sat 01 Jan 2022 14:02:33 +0000
ROA not before: Sat 01 Jan 2022 14:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.98.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102587101 (0x61d5add)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d60d2dc6ad82a2570e0000fdd993948bc454d8
Validity
Not Before: Jan 1 14:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab7d47bbc12eb2ad7440e35cfdb2a0b9364c48af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:46:bb:2a:e8:6d:0a:06:c5:c1:4e:db:63:d8:
7f:60:d3:2f:60:87:1f:38:d8:ee:ea:e2:f6:16:97:
aa:8c:3e:24:d2:15:a5:cf:4e:2e:d5:77:a4:9f:d9:
8d:7c:79:6e:d5:44:ed:95:67:1e:40:3b:5f:04:ab:
e3:17:2d:b9:7c:96:14:83:36:86:4a:9e:af:02:11:
0b:3a:25:38:84:fd:ae:a3:7b:06:70:9f:24:dd:a9:
a0:14:58:a4:a3:80:6a:b2:2f:f9:47:09:fb:e4:00:
14:48:af:7c:e5:57:91:bd:96:dd:de:06:f9:5f:39:
09:5f:0f:d5:9b:ac:19:e9:b2:4f:e1:a6:ae:66:f0:
34:35:37:e2:2e:77:36:0c:79:58:ca:88:f5:e4:99:
52:98:f7:74:a6:bb:e6:c1:56:ef:1b:60:f4:21:bd:
45:82:01:b4:35:7a:aa:e1:00:f8:7d:59:61:7c:c9:
5f:d0:d3:de:17:ef:e2:b0:35:a5:dc:e1:63:e6:a2:
4d:c6:da:57:bb:fa:f1:57:34:c5:61:24:c2:04:55:
44:81:4e:cc:78:a8:fe:03:01:b0:b5:74:ca:ec:d1:
1f:b7:11:c4:31:68:e6:6e:9b:6e:3a:5d:45:c4:9a:
93:cf:14:21:c5:b5:c8:a7:35:f6:b9:84:8a:4d:4c:
50:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7D:47:BB:C1:2E:B2:AD:74:40:E3:5C:FD:B2:A0:B9:36:4C:48:AF
X509v3 Authority Key Identifier:
keyid:84:D6:0D:2D:C6:AD:82:A2:57:0E:00:00:FD:D9:93:94:8B:C4:54:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYNLcatgqJXDgAA_dmTlIvEVNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/q31Hu8Eusq10QONc_bKguTZMSK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/hNYNLcatgqJXDgAA_dmTlIvEVNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.159.0/24
Signature Algorithm: sha256WithRSAEncryption
80:23:9d:2e:11:9f:23:cb:95:ba:2d:e8:51:33:f8:3d:d6:69:
eb:8d:39:80:33:8c:63:49:37:58:0a:7a:de:16:72:71:51:6b:
4e:8f:94:45:d0:55:7f:84:9f:7b:a0:89:52:48:b8:d4:ac:e8:
4d:00:e5:15:43:4e:c5:3a:d0:17:96:41:26:55:4c:10:ca:cd:
9f:b7:90:ee:cb:ea:0a:f0:fb:d6:c1:c4:16:18:c5:61:97:4e:
05:2e:68:95:42:d3:e5:b5:c2:77:8a:8d:20:9d:7b:83:c0:06:
10:49:34:81:54:e6:fc:c4:e1:de:eb:89:ba:1d:61:6b:63:1e:
8b:05:4a:36:3b:64:48:2b:c1:7f:c0:26:9e:ca:91:2f:2b:c3:
c3:71:a5:d8:3b:14:10:5d:4d:65:1f:be:5f:6e:e9:ba:b6:47:
49:b7:ac:d8:dc:6b:53:37:5f:48:fc:ed:dc:b6:99:08:30:02:
83:d2:71:a4:6d:d4:78:3a:e1:de:4e:47:bf:04:9b:4b:cb:2e:
7e:88:6f:07:58:90:87:b4:bf:12:66:63:59:38:ac:03:39:ff:
93:64:61:37:a1:08:7a:d4:a4:0d:bf:cc:76:13:10:97:f8:01:
cb:ed:c9:94:32:96:c2:0f:49:97:8c:1b:ec:4c:88:27:22:bf:
e5:84:39:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:25 2024 by rpki-client on console-ams.rpki-client.org