Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/lw1BZ4yeFqaajE35uw92g4BSQG8.roa
File: lw1BZ4yeFqaajE35uw92g4BSQG8.roa (raw, json)
Hash identifier: xTy5/XvUCiDxhgPXbqMze/eLiyEKfbzhx7pY5TT0rX0=
Subject key identifier: 97:0D:41:67:8C:9E:16:A6:9A:8C:4D:F9:BB:0F:76:83:80:52:40:6F
Certificate issuer: /CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Certificate serial: 072FE2A7
Authority key identifier: 05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/lw1BZ4yeFqaajE35uw92g4BSQG8.roa
Signing time: Sat 01 Jan 2022 15:04:58 +0000
ROA not before: Sat 01 Jan 2022 15:04:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198089
IP address blocks: 185.98.124.0/24 maxlen: 24
185.98.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120578727 (0x72fe2a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Validity
Not Before: Jan 1 15:04:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=970d41678c9e16a69a8c4df9bb0f76838052406f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c2:9b:0f:05:56:44:54:8e:7a:30:94:35:60:
94:91:97:0f:3f:53:59:3c:de:de:36:cb:6c:3f:1a:
0d:43:25:1d:05:24:19:40:14:80:e2:c1:f1:4d:5b:
f9:c1:dd:72:0a:4d:96:f2:dc:fb:c0:41:1b:99:ce:
46:55:c0:91:1c:d2:ef:18:66:e8:85:37:22:f9:e3:
36:fd:c1:00:69:84:dc:a0:5d:a1:5c:9b:b4:68:6b:
ca:82:78:39:9d:ba:b2:87:c8:e4:f2:6c:78:cf:18:
58:15:76:d4:f4:b0:47:77:e8:4f:2c:cb:cd:30:2d:
a7:38:16:a7:e8:ad:c3:e5:b9:76:42:d4:07:57:71:
db:2c:d2:e7:9c:55:a3:44:9c:4b:0a:43:81:da:b7:
18:f9:46:42:1c:f9:a7:bd:14:f1:47:01:78:fd:a4:
3a:7f:5c:62:fd:32:09:61:01:d2:41:32:d1:64:f7:
f5:4a:87:ea:94:b2:b4:ea:4a:43:3f:02:0c:b5:67:
ff:70:9a:29:5f:50:39:de:a1:02:6d:32:49:b7:37:
9e:ca:c4:53:f7:81:87:de:2e:00:00:38:99:2a:29:
c0:f2:b1:c7:d7:6a:31:98:f1:ca:53:02:0b:67:1f:
c9:41:61:72:69:37:1e:a4:ad:92:98:f6:04:2f:63:
96:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:0D:41:67:8C:9E:16:A6:9A:8C:4D:F9:BB:0F:76:83:80:52:40:6F
X509v3 Authority Key Identifier:
keyid:05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/lw1BZ4yeFqaajE35uw92g4BSQG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.124.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:97:19:84:54:65:4e:7e:44:7d:fe:6a:a5:04:2f:d6:79:7c:
75:ec:05:dd:1c:d3:f3:a6:e9:ed:74:7f:c3:1a:b9:fd:88:f7:
9c:46:db:89:38:08:c6:28:b6:ea:62:ca:76:13:62:ab:51:9d:
8f:93:9e:4e:c7:95:0e:4b:5e:c6:57:84:48:dd:65:22:d7:c2:
88:3f:b7:ea:2b:85:50:bd:55:95:a3:71:8a:dc:d3:ae:29:64:
30:54:c7:72:b6:f7:c9:1e:17:7b:5a:ea:d0:dd:bf:5d:23:6f:
4d:76:f2:bb:25:e7:b1:79:29:e4:ff:c9:19:17:31:7d:cb:1d:
7f:b0:8f:5a:cf:dd:d9:64:3e:23:39:79:26:73:9b:cf:7d:20:
5a:e4:e8:37:6c:3b:69:27:72:7b:f8:6d:4d:a9:97:2c:ff:2c:
1d:f7:fd:eb:4e:11:a2:4b:94:e6:79:fd:2d:26:fb:82:ea:55:
5d:17:5b:25:67:d7:f5:d8:55:d2:89:8b:fa:34:b3:ba:20:4a:
2d:81:7c:54:e5:08:47:69:4e:b9:d4:99:32:f7:ad:f0:60:4b:
ac:fd:bf:ad:6a:bc:b9:31:08:1d:b2:d5:0c:94:f0:72:64:90:
e6:64:e9:66:aa:7b:30:8d:d2:92:fa:41:02:f0:cb:ce:a3:68:
55:75:c2:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:44 2023 by rpki-client on console-ams.rpki-client.org