Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/gJ0Zneb_C-xThgKEXWTehXgui00.roa
File: gJ0Zneb_C-xThgKEXWTehXgui00.roa (raw, json)
Hash identifier: 8/sbRdT1a9Oq3YKFIuv3xeKJckCNJEl465kAepn2UHY=
Subject key identifier: 80:9D:19:9D:E6:FF:0B:EC:53:86:02:84:5D:64:DE:85:78:2E:8B:4D
Certificate issuer: /CN=1c344f11597594882853a79581dd2bf789eeb31f
Certificate serial: 0445320B
Authority key identifier: 1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/gJ0Zneb_C-xThgKEXWTehXgui00.roa
Signing time: Sat 01 Jan 2022 08:04:04 +0000
ROA not before: Sat 01 Jan 2022 08:04:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24641
IP address blocks: 185.50.228.0/22 maxlen: 22
2a01:ade0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71643659 (0x445320b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c344f11597594882853a79581dd2bf789eeb31f
Validity
Not Before: Jan 1 08:04:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=809d199de6ff0bec538602845d64de85782e8b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:4b:0d:f5:73:a0:c4:a2:89:57:d6:fe:d4:c2:
f8:e7:c0:b4:c4:1b:ca:2e:3c:66:f3:ab:bf:58:af:
3f:55:a8:34:ca:54:34:8e:44:a4:aa:c4:9c:7f:e4:
6f:f9:bd:1b:85:31:15:64:ba:04:e1:db:2d:50:fe:
a9:5a:c7:4a:26:a6:d2:10:60:65:84:34:85:70:97:
39:4b:7e:3e:e3:df:f8:21:57:c9:37:25:f4:2c:62:
6e:c8:ab:bd:14:85:ed:25:cc:3b:4c:42:93:b7:2a:
ed:11:83:86:41:a9:c6:c8:a7:a9:8e:dd:1e:69:b6:
28:7f:8e:c3:1e:25:12:b6:7b:a8:4b:aa:1b:a5:cf:
1b:dc:fb:2d:2d:2d:56:7c:e4:f6:74:8d:dd:ff:fc:
e9:56:c7:48:89:a3:61:59:66:6d:e5:f0:a6:89:2c:
e0:d8:80:d5:3b:ce:93:ee:9e:76:f1:be:47:c6:88:
a5:1c:74:58:23:55:75:89:0b:e8:88:65:a2:6a:bf:
46:c5:37:f8:bc:dd:f4:4f:0a:a9:7d:b8:0c:0a:72:
82:71:bc:ae:97:73:c7:14:89:30:be:4d:97:22:e8:
44:0b:97:03:26:48:91:63:dd:39:8c:c5:7e:fe:38:
e1:88:84:15:06:6d:e7:eb:c3:7c:4d:73:88:2e:46:
24:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9D:19:9D:E6:FF:0B:EC:53:86:02:84:5D:64:DE:85:78:2E:8B:4D
X509v3 Authority Key Identifier:
keyid:1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/gJ0Zneb_C-xThgKEXWTehXgui00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.50.228.0/22
IPv6:
2a01:ade0::/32
Signature Algorithm: sha256WithRSAEncryption
7c:d4:2f:c8:b3:d6:03:3f:07:f1:de:3b:07:0d:ac:d0:d2:35:
68:b5:a0:e3:21:cc:05:4e:8c:da:a6:e2:c6:e9:37:c6:c6:53:
07:5d:fb:a5:c9:eb:e2:0b:47:ae:f4:ae:e8:89:6c:7a:00:d5:
9c:05:e0:75:94:6a:01:26:d3:b7:27:e6:c1:51:b4:28:79:59:
c6:25:10:37:1f:69:26:d1:0d:39:39:79:50:87:6b:dc:84:c8:
84:07:1a:01:72:3c:31:e5:d0:9c:0d:c9:d1:94:37:b7:71:2f:
25:32:02:2b:4b:47:3d:d6:4b:4a:ef:24:bf:dd:a2:4f:64:37:
eb:15:a0:99:a7:72:92:fb:41:0f:4f:e4:19:6a:0c:4a:75:5f:
b1:1b:64:7d:0e:26:0a:0c:38:bd:04:ef:94:c7:b7:4b:8e:97:
3b:7c:0e:29:55:46:8e:fc:5e:54:15:73:a2:c6:e3:f9:ea:1d:
89:8a:0e:26:c4:74:1f:e2:20:77:14:bb:7e:1f:1d:d3:ff:11:
ed:9a:b2:27:9d:6b:27:b8:e7:86:af:49:7c:8e:6c:85:38:08:
d7:5d:c5:78:96:81:22:16:61:47:0b:52:c8:c7:f6:f1:31:c6:
87:96:05:eb:3c:63:d1:ae:5b:c8:78:ff:8c:48:0d:b1:78:fc:
f3:3a:bc:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:11 2024 by rpki-client on console-ams.rpki-client.org