Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/f4J_TPqMOC3072WXwr4GyaS1e60.roa
File: f4J_TPqMOC3072WXwr4GyaS1e60.roa (raw, json)
Hash identifier: GbrlDDZ60rYVcc3SKVvl3sdnAcXx2HtjOIr90NTdf+c=
Subject key identifier: 7F:82:7F:4C:FA:8C:38:2D:F4:EF:65:97:C2:BE:06:C9:A4:B5:7B:AD
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 058383A4
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/f4J_TPqMOC3072WXwr4GyaS1e60.roa
Signing time: Sat 01 Jan 2022 06:04:26 +0000
ROA not before: Sat 01 Jan 2022 06:04:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 185.199.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92504996 (0x58383a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Jan 1 06:04:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f827f4cfa8c382df4ef6597c2be06c9a4b57bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bc:35:4f:d5:a5:d6:d4:0e:c0:49:ef:eb:de:
52:fd:e4:1b:09:08:84:9a:58:65:d1:6e:03:dc:bd:
a1:ea:f7:6d:6a:9e:07:d6:9a:89:22:6b:2e:47:86:
84:43:51:66:7f:3b:49:24:b3:d0:64:fe:39:15:5b:
5a:bc:f4:ec:ef:83:9b:b1:fc:03:9e:e6:23:7e:ae:
5b:0a:46:64:5b:d6:5c:96:83:f6:d0:99:90:85:0d:
8f:8f:94:f7:24:77:6f:91:3f:3b:1c:6f:7f:79:57:
61:0b:90:a8:2b:98:35:26:bc:df:d3:7d:69:57:1d:
05:ab:7a:d7:72:55:5e:b4:d9:71:69:25:49:3f:3f:
95:69:01:44:b7:3b:ef:93:a9:d8:7b:86:73:2a:8e:
08:58:fe:b7:37:6f:92:0c:85:01:46:46:28:3e:16:
f2:7f:25:53:7b:03:b6:e4:62:4f:d7:1f:8c:9b:b7:
0b:70:fa:b4:b3:6f:1b:fe:23:24:6e:43:d9:fe:2f:
91:a6:e6:54:3b:8f:5c:f3:51:84:93:ba:89:dc:36:
bb:91:82:6d:c6:bd:5a:81:a5:6b:95:90:04:cf:c3:
a8:81:4c:4d:4a:8d:ec:f1:31:1e:af:f8:d1:b8:92:
bf:06:27:2a:a5:36:43:ef:b5:44:4a:fb:1c:4c:a1:
a7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:82:7F:4C:FA:8C:38:2D:F4:EF:65:97:C2:BE:06:C9:A4:B5:7B:AD
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/f4J_TPqMOC3072WXwr4GyaS1e60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.227.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:85:27:c0:aa:97:ca:62:d9:ac:da:4c:f0:fc:69:b2:96:1b:
18:cf:78:3e:c3:f1:8d:ce:5c:00:8b:2c:df:c7:fe:53:37:47:
57:61:c7:f3:94:43:5f:43:e7:4d:fb:84:6a:58:e3:90:e3:fd:
cb:3e:5d:f0:74:4a:30:c0:18:99:b7:15:91:f2:f5:ab:06:0a:
0f:ea:31:5a:cd:10:70:96:c8:2b:2b:d9:9d:27:af:87:50:a3:
54:66:de:3b:f9:d4:94:ac:62:d7:7c:fc:a4:09:3a:3c:c1:8a:
6c:d6:0e:e1:52:91:47:51:b8:ab:15:1a:4a:f2:47:3c:1c:ac:
da:b7:f4:cb:d3:b5:d5:d0:62:cb:82:82:9e:eb:7f:3a:ba:1c:
28:49:a5:78:24:2a:24:fe:6b:84:1a:dd:cf:98:da:46:b9:e6:
92:e4:94:9c:f3:de:39:8f:25:6b:8c:f5:9d:70:02:b0:62:3e:
02:ad:0a:54:66:3b:8b:c5:e6:d1:e3:aa:11:ff:b8:50:75:7d:
42:5a:80:3f:9d:76:c0:fd:28:00:cf:cd:44:3d:25:f3:d9:fb:
ac:09:a5:45:77:eb:fc:07:f1:b3:6f:67:a8:15:4a:1a:27:fa:
e9:06:c6:ca:34:af:30:01:75:44:01:dc:ab:44:93:22:8f:cc:
2f:2a:c6:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:46 2023 by rpki-client on console-fra.rpki-client.org