Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/73db77-0a6b-4f9b-a8e8-eaedb709efbf/1/q88s3DgMLX2nr1KHgOtJrqH1oNU.roa
File: q88s3DgMLX2nr1KHgOtJrqH1oNU.roa (raw, json)
Hash identifier: ejZ/kMX+e5MisLpoyWqYq2Ez51pDN+rQ+fOupGmtajk=
Subject key identifier: AB:CF:2C:DC:38:0C:2D:7D:A7:AF:52:87:80:EB:49:AE:A1:F5:A0:D5
Certificate issuer: /CN=f8e826de1070d9d79daa9e415fc432613cc57e57
Certificate serial: 12A62834
Authority key identifier: F8:E8:26:DE:10:70:D9:D7:9D:AA:9E:41:5F:C4:32:61:3C:C5:7E:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Ogm3hBw2dedqp5BX8QyYTzFflc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/73db77-0a6b-4f9b-a8e8-eaedb709efbf/1/q88s3DgMLX2nr1KHgOtJrqH1oNU.roa
Signing time: Sat 01 Jan 2022 09:55:12 +0000
ROA not before: Sat 01 Jan 2022 09:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50622
IP address blocks: 185.47.226.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 312879156 (0x12a62834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e826de1070d9d79daa9e415fc432613cc57e57
Validity
Not Before: Jan 1 09:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abcf2cdc380c2d7da7af528780eb49aea1f5a0d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8e:c0:38:5b:70:11:a4:fd:08:d7:2a:fa:c9:
73:96:b5:c9:76:00:77:41:58:ab:16:f7:58:a8:15:
88:6f:8a:19:fe:15:68:2c:60:53:fa:12:68:bd:f9:
66:44:58:33:01:23:78:8d:a8:fd:8c:99:71:93:da:
eb:25:cb:f2:4e:cd:69:fd:67:f1:0e:1e:fd:e0:aa:
8a:9c:b6:00:fc:1e:33:58:12:37:8d:dd:d1:a1:40:
58:94:6c:d3:f8:95:43:94:d6:bf:4d:7a:b3:d2:a7:
f5:51:3a:1c:bd:2a:93:88:91:4e:cd:42:d9:f8:96:
b4:13:5c:16:01:a1:84:cf:5a:0a:6b:3b:b0:2f:49:
d9:9e:66:0a:f0:d6:cd:b9:96:fc:0f:86:50:04:06:
a5:83:20:2a:79:3d:7f:4b:a6:43:f9:c4:a1:c2:c5:
36:04:13:03:d1:8e:e8:ed:e4:87:5a:e0:9c:00:e5:
d6:ac:2f:32:fb:b5:8a:c0:00:67:4f:c6:ad:38:ae:
22:23:a5:47:d6:80:5f:5f:2a:db:b6:a1:d2:a1:35:
33:aa:24:a3:bc:97:43:61:e4:85:c0:22:1d:66:ab:
c2:0c:f8:e4:21:71:76:80:da:a5:41:16:2d:dd:68:
48:38:2c:5d:bf:9c:c2:50:70:43:b6:99:0f:a9:cb:
60:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CF:2C:DC:38:0C:2D:7D:A7:AF:52:87:80:EB:49:AE:A1:F5:A0:D5
X509v3 Authority Key Identifier:
keyid:F8:E8:26:DE:10:70:D9:D7:9D:AA:9E:41:5F:C4:32:61:3C:C5:7E:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Ogm3hBw2dedqp5BX8QyYTzFflc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/73db77-0a6b-4f9b-a8e8-eaedb709efbf/1/q88s3DgMLX2nr1KHgOtJrqH1oNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/73db77-0a6b-4f9b-a8e8-eaedb709efbf/1/1-Ogm3hBw2dedqp5BX8QyYTzFflc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.226.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:68:d6:6c:f5:b0:0c:0a:df:29:c5:b0:3a:a0:b1:da:ec:16:
e5:a0:cc:07:8b:8a:8c:e5:90:6e:29:89:97:95:bf:fb:59:09:
e2:16:87:9a:86:dc:f2:a2:31:e4:2e:5e:0a:ed:bb:40:1b:21:
da:0e:1a:00:7a:cf:aa:7d:0d:55:60:0a:5e:2d:6b:d9:06:3e:
c2:4d:08:99:33:9d:c2:dd:b6:61:6f:1a:50:67:ea:00:10:bf:
4f:2a:a7:2f:a5:d5:15:e9:0b:76:d4:8f:af:29:1d:3d:99:98:
05:50:37:80:fe:08:ce:ae:43:73:68:da:ec:af:7a:1a:1f:3e:
01:3c:2a:74:f7:7f:cf:a0:54:23:f6:6d:dd:83:6f:c8:4e:78:
f6:b3:92:af:ec:1f:5d:9f:77:5a:8d:22:34:bb:56:da:47:f8:
1f:de:a5:24:de:87:ef:b8:50:6e:a1:04:83:71:ac:e6:10:a6:
2b:1e:3d:83:5d:bf:c1:7e:bd:8e:f8:cb:92:1c:38:c9:6e:49:
e3:e4:0e:ec:fd:ba:62:68:71:6d:2f:a3:18:57:4a:4c:58:bb:
56:5d:54:03:5a:a5:6f:c1:21:42:cb:c7:2a:30:86:55:88:61:
3d:a4:3f:c5:ea:01:c9:50:2f:72:25:b5:d9:cc:10:88:0d:b7:
6f:7c:cd:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:02 2023 by rpki-client on console-fra.rpki-client.org