Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/zF4c5Yj22VHnA_DJHmDVq0FRvYc.roa
File: zF4c5Yj22VHnA_DJHmDVq0FRvYc.roa (raw, json)
Hash identifier: 9kQe6cgI4TepCaXi7Uv3Z6Quc0lqgnm6yEostABB+t8=
Subject key identifier: CC:5E:1C:E5:88:F6:D9:51:E7:03:F0:C9:1E:60:D5:AB:41:51:BD:87
Certificate issuer: /CN=84d60d2dc6ad82a2570e0000fdd993948bc454d8
Certificate serial: 061E9DCD
Authority key identifier: 84:D6:0D:2D:C6:AD:82:A2:57:0E:00:00:FD:D9:93:94:8B:C4:54:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYNLcatgqJXDgAA_dmTlIvEVNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/zF4c5Yj22VHnA_DJHmDVq0FRvYc.roa
Signing time: Sat 01 Jan 2022 14:02:33 +0000
ROA not before: Sat 01 Jan 2022 14:02:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.98.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102669773 (0x61e9dcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84d60d2dc6ad82a2570e0000fdd993948bc454d8
Validity
Not Before: Jan 1 14:02:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc5e1ce588f6d951e703f0c91e60d5ab4151bd87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:db:24:d2:d6:e8:a5:87:22:fe:fe:fb:57:12:
44:6c:47:c3:86:a9:4c:bb:02:8e:55:78:ee:9b:00:
35:47:45:1c:9f:6e:81:cf:cb:59:98:f4:a9:92:21:
d9:15:ff:c0:0f:bd:a5:99:14:91:d1:d5:44:58:c5:
41:ba:eb:1f:80:11:2e:db:c2:bc:a0:91:a4:f3:16:
10:29:56:43:c2:df:01:7b:11:e8:c9:d7:8e:30:5a:
08:bb:fe:76:c7:c0:92:30:4e:7e:59:ef:62:f2:58:
f8:3e:62:72:50:4b:b8:36:6d:59:f4:ff:8d:c8:34:
7b:56:41:f2:83:5b:bb:e5:cf:1f:aa:c1:a6:f9:bd:
a8:74:bc:d5:a5:5e:90:06:86:59:5e:f5:25:97:68:
16:14:7f:08:f7:a1:c3:08:0b:5e:e0:e7:26:bf:6f:
df:3c:b7:21:bc:75:be:ec:f3:de:a7:97:f5:9d:37:
45:5d:74:ec:fc:4d:84:51:b6:95:91:fb:3f:8e:a7:
91:8d:be:9e:8e:77:40:21:26:49:40:66:b7:1a:7f:
60:b9:99:2b:41:6d:4c:97:da:c1:bd:96:4b:d0:03:
ca:70:66:5f:6e:51:4c:5e:cd:ba:1e:8d:1f:1c:2a:
71:47:f6:37:ca:e9:72:b7:92:be:74:f8:2a:12:28:
f9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:5E:1C:E5:88:F6:D9:51:E7:03:F0:C9:1E:60:D5:AB:41:51:BD:87
X509v3 Authority Key Identifier:
keyid:84:D6:0D:2D:C6:AD:82:A2:57:0E:00:00:FD:D9:93:94:8B:C4:54:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYNLcatgqJXDgAA_dmTlIvEVNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/zF4c5Yj22VHnA_DJHmDVq0FRvYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/50d9c6-f24a-44af-8ae0-54f6bc85aac0/1/hNYNLcatgqJXDgAA_dmTlIvEVNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.159.0/24
Signature Algorithm: sha256WithRSAEncryption
99:3c:81:17:26:63:3b:f7:d7:db:ef:0d:a3:85:3f:ed:5c:e0:
e8:04:71:bb:b2:04:8f:ba:4f:ca:59:73:70:6d:60:56:63:35:
15:e5:64:f6:cf:04:6c:df:06:76:03:c1:76:dc:6f:cc:c4:fa:
81:5e:d3:6b:55:2b:ff:da:cb:d5:90:47:dd:39:2c:ca:c9:07:
d1:d7:e4:07:ed:8d:46:c4:4f:4c:56:d2:75:7c:14:4f:5c:18:
b5:5d:6e:61:7a:68:38:b2:bf:fd:a2:f9:88:63:80:a0:b5:0e:
8b:a0:9b:b4:d5:ca:5b:69:3e:3d:bc:58:26:77:41:b2:c7:d6:
d5:83:d4:55:e3:9d:22:ae:ae:bf:36:d2:30:dd:a7:cc:cd:e1:
36:b8:60:92:4d:e7:d9:60:82:59:06:bd:8f:90:49:d1:8d:7d:
41:73:ee:f6:e1:e0:a6:96:d0:2a:33:90:a0:68:b4:79:77:e8:
b0:63:6b:8b:3a:20:70:30:d0:a8:c1:57:db:e5:c0:85:59:1a:
45:09:04:61:06:e1:ce:5e:6e:97:04:3e:1d:53:b3:ac:b5:11:
72:6d:00:a3:34:85:7c:6b:b6:f6:ea:01:8f:0c:c0:16:93:d5:
b5:07:53:99:8a:d2:b3:df:27:2a:ed:4b:88:21:a9:76:4c:e8:
40:db:01:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:25 2024 by rpki-client on console-ams.rpki-client.org