Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/2mDBGe6lcoq_5WoRbTFN65kxErA.roa
File: 2mDBGe6lcoq_5WoRbTFN65kxErA.roa (raw, json)
Hash identifier: s6lJsw57BE+yRyYmoqm+hfxqGBJrjQDTOsOWalBRXtM=
Subject key identifier: DA:60:C1:19:EE:A5:72:8A:BF:E5:6A:11:6D:31:4D:EB:99:31:12:B0
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 0185049F33249A493F72218C77F49DE655EA
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/2mDBGe6lcoq_5WoRbTFN65kxErA.roa
Signing time: Mon 12 Dec 2022 04:37:00 +0000
ROA not before: Mon 12 Dec 2022 04:37:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 94.184.0.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:04:9f:33:24:9a:49:3f:72:21:8c:77:f4:9d:e6:55:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Dec 12 04:37:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da60c119eea5728abfe56a116d314deb993112b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:05:c0:78:e0:80:f2:bc:19:72:2b:7e:5e:c9:
59:1b:83:17:1c:2c:31:3a:b2:de:a2:55:f2:40:d2:
2c:b3:b8:5d:df:31:14:53:d3:c5:0d:b9:2e:22:ef:
ec:80:1b:5c:c9:08:2e:09:2a:9a:08:d3:fd:bf:58:
80:0a:2d:9a:5b:cb:e0:11:dc:97:97:1f:5f:8d:71:
3d:49:be:1a:1a:ec:90:90:20:6f:e8:0c:dd:18:a9:
b1:d8:7e:6b:17:30:c1:15:e1:1f:eb:eb:c5:e5:99:
ae:4b:e7:fb:be:2e:dd:6e:1e:d0:09:9d:7d:07:81:
dc:f5:4c:a9:c4:f9:89:48:c0:47:af:93:b6:8e:c3:
9e:5e:b8:ce:b2:01:6b:5c:98:40:79:da:9c:7b:95:
3c:36:6b:ea:e1:cf:21:e1:f5:e9:79:c2:ca:d3:d6:
85:b4:70:39:58:f7:b7:57:2b:61:47:6a:64:54:75:
a2:13:33:7e:5f:bc:cf:44:47:c2:c0:8c:f8:51:83:
6c:4f:46:f7:b0:05:fa:92:a8:91:32:7c:ac:c0:6a:
28:a0:b2:d5:22:81:8d:64:60:a3:ae:73:51:5b:1c:
c7:7b:a6:3d:fd:41:a3:eb:52:24:18:fd:ab:6c:6e:
92:aa:d9:85:fa:8a:95:f4:f6:ab:e4:00:b8:d6:66:
8a:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:60:C1:19:EE:A5:72:8A:BF:E5:6A:11:6D:31:4D:EB:99:31:12:B0
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/2mDBGe6lcoq_5WoRbTFN65kxErA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.184.0.0/18
Signature Algorithm: sha256WithRSAEncryption
35:48:11:9d:d1:82:5d:67:53:13:a6:9b:db:34:f0:99:6d:aa:
55:fd:cd:78:6d:7c:5d:f9:52:07:83:90:96:9a:c3:71:f3:7b:
2f:e8:c1:31:0f:e9:e9:9f:21:64:fa:d7:30:8e:22:75:28:1c:
60:3f:07:f0:03:41:cd:6c:bd:b0:00:fd:3b:c5:34:c9:1f:09:
ca:0c:1b:43:87:25:2a:e3:c1:07:d4:07:9f:e0:78:ed:7b:f8:
f3:77:43:44:e7:d6:86:6e:c6:00:e4:96:c3:e0:73:73:21:f4:
15:d0:d3:41:cd:be:f1:cf:58:2d:21:2c:92:5f:95:ae:df:e6:
fe:38:73:df:12:a6:76:39:38:83:f5:49:f6:ce:e4:b6:cb:1f:
b8:fe:6c:8e:67:33:0f:b6:d5:59:2d:b2:74:d6:a5:bf:a5:3f:
81:62:27:cd:b9:47:4f:2d:4f:ab:46:1d:e7:57:2e:4a:12:aa:
57:59:1b:01:da:ed:5b:a2:74:ba:4e:db:58:f2:4d:e1:87:4b:
16:00:9f:69:10:a5:4b:02:68:83:59:f0:60:93:05:63:d7:0f:
e2:49:7a:a5:1a:9e:9b:f3:b7:82:09:84:d7:8d:94:4a:19:a4:
e0:3a:f6:35:51:13:c2:6d:60:8a:c9:94:59:0d:a6:64:d4:53:
4d:40:37:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-ams.rpki-client.org