Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/mOSqWEgdqlF1Jg7GIngYVU9yiMM.roa
File: mOSqWEgdqlF1Jg7GIngYVU9yiMM.roa (raw, json)
Hash identifier: gWFMHFm78PTJDtZByO034vZ2ocjhZePrH42BoIsFMEU=
Subject key identifier: 98:E4:AA:58:48:1D:AA:51:75:26:0E:C6:22:78:18:55:4F:72:88:C3
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 05C38551
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/mOSqWEgdqlF1Jg7GIngYVU9yiMM.roa
Signing time: Sat 01 Jan 2022 11:59:17 +0000
ROA not before: Sat 01 Jan 2022 11:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211113
IP address blocks: 185.179.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96699729 (0x5c38551)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 11:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98e4aa58481daa5175260ec6227818554f7288c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:93:9d:80:96:79:20:ae:6b:20:a8:0f:bc:fa:
8b:e6:19:8c:8f:07:0b:1c:3e:52:07:4d:ee:a8:56:
1e:c0:ea:d0:5d:18:65:6d:8c:c9:dd:80:02:9c:bb:
37:72:ee:52:0b:87:77:e1:4e:d4:8f:c0:25:8a:32:
36:b5:38:cb:65:24:97:07:1b:63:a8:a3:64:6e:3f:
56:c5:d9:14:7a:42:1c:54:aa:2b:01:8a:0f:cb:ab:
ee:05:4e:84:40:76:6b:6b:45:13:cc:11:b2:6d:b8:
89:db:7e:86:cb:c7:c9:d2:ea:9d:18:7c:a6:46:67:
08:7b:2d:fd:be:1b:60:3a:15:17:59:9f:ba:59:e3:
ba:92:01:d9:1b:02:8d:2b:48:94:b5:01:8c:d0:43:
3d:7e:07:22:59:9a:d6:2b:cf:88:d0:df:e0:fd:56:
ee:39:d6:19:2e:44:fa:e5:01:f4:7e:bc:85:43:a8:
d1:3b:90:1c:80:a6:7f:1d:be:f0:84:91:73:57:8b:
a4:a4:38:3d:28:93:cc:ee:34:df:39:a7:10:84:ae:
9e:15:6a:7a:ef:ea:f4:6a:43:8f:ca:5d:f6:1a:6c:
ad:a2:08:55:05:2b:1d:56:78:3d:ea:eb:1d:ff:e5:
50:a4:25:c4:51:ad:ba:12:78:5b:1e:73:a3:6c:bf:
ab:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E4:AA:58:48:1D:AA:51:75:26:0E:C6:22:78:18:55:4F:72:88:C3
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/mOSqWEgdqlF1Jg7GIngYVU9yiMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.216.0/22
Signature Algorithm: sha256WithRSAEncryption
77:cb:23:11:fa:3e:0d:2b:a9:35:d6:ba:3f:36:79:61:53:71:
69:b3:ad:f5:69:72:5d:1f:bb:f3:a1:f4:93:83:de:73:19:d6:
51:a9:f1:17:3c:97:3f:97:8e:0b:32:a9:7b:1a:6b:e9:a2:fc:
63:87:37:ce:0d:c3:13:1e:e2:ec:fe:79:1c:56:db:6f:ab:d6:
21:e3:9a:e5:66:02:3f:1b:fb:e8:c1:3a:bf:9a:58:52:16:e5:
e4:02:b6:46:45:64:c4:b0:74:be:6f:4f:5f:a1:58:ca:a1:4f:
21:c5:a7:01:e1:6a:3c:00:83:a4:66:e8:63:d3:66:1d:92:6b:
48:3a:38:cc:1a:1f:1a:9e:49:45:39:02:a3:21:e2:84:6e:27:
6c:a1:8b:63:94:fc:32:59:6e:df:34:92:97:f3:03:d8:d6:97:
8f:1f:f8:98:3d:63:76:e2:bf:bd:66:d8:b2:fb:9d:8e:6c:6d:
bb:ff:7b:dc:ba:57:36:93:12:b1:3b:9e:5b:70:71:f5:6e:2a:
0b:4b:e3:52:2c:3c:1e:d6:cf:fa:41:28:cf:9d:3c:c1:e5:54:
5b:4d:c9:9a:44:d4:a2:7f:c7:9c:ae:8d:f5:45:9a:c4:51:a3:
4d:8d:ac:ec:26:5b:7a:26:92:9d:6c:c6:85:07:cf:c0:2a:23:
a1:99:ff:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:40 2023 by rpki-client on console-fra.rpki-client.org