Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/9f37d1-14ca-4dcf-98f7-2e7213767628/1/6ZEx6gpYxC1y4n4zJk0KqzIgGf4.roa
File: 6ZEx6gpYxC1y4n4zJk0KqzIgGf4.roa (raw, json)
Hash identifier: gAc3B2uIDPt0ROEIckVnBP/R+XhjbYbJNT548mg8KAw=
Subject key identifier: E9:91:31:EA:0A:58:C4:2D:72:E2:7E:33:26:4D:0A:AB:32:20:19:FE
Certificate issuer: /CN=8a009e171baf8c2a3a94d29b24879ef97f096602
Certificate serial: 0434287D
Authority key identifier: 8A:00:9E:17:1B:AF:8C:2A:3A:94:D2:9B:24:87:9E:F9:7F:09:66:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/igCeFxuvjCo6lNKbJIee-X8JZgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/9f37d1-14ca-4dcf-98f7-2e7213767628/1/6ZEx6gpYxC1y4n4zJk0KqzIgGf4.roa
Signing time: Sat 01 Jan 2022 14:04:00 +0000
ROA not before: Sat 01 Jan 2022 14:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 185.222.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70527101 (0x434287d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a009e171baf8c2a3a94d29b24879ef97f096602
Validity
Not Before: Jan 1 14:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e99131ea0a58c42d72e27e33264d0aab322019fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:be:15:a2:bc:88:04:84:0d:de:27:0a:00:07:
bc:99:19:cc:9e:4e:c9:5f:e4:ba:69:a0:4c:7b:8c:
ca:15:a2:23:c3:5d:8e:24:1c:70:68:25:b6:c2:89:
fe:bc:58:8c:99:ec:2a:43:2e:15:19:92:3e:af:26:
b3:bc:fc:e3:53:3b:dc:22:6a:29:64:75:58:e5:9d:
d5:ab:36:93:27:7d:50:24:81:19:ea:a3:53:a8:0d:
5a:95:fe:45:0e:82:36:99:3c:ad:a0:8c:c8:59:de:
14:26:fc:52:aa:0a:54:57:64:a3:37:e9:0e:a0:5f:
9a:3b:97:b6:47:ca:86:dd:f8:db:15:b9:fc:b2:52:
3d:fc:e7:67:3f:fb:83:08:a5:e5:50:5b:05:38:7a:
83:d5:d0:af:a8:04:ad:11:c3:56:e8:08:a5:fb:61:
3a:24:79:ea:73:7a:31:1a:6a:cd:68:a7:7c:c3:06:
32:e4:3d:a2:89:19:49:c1:23:73:15:1f:1e:70:ef:
16:27:6b:87:f2:eb:eb:ca:7d:67:c8:eb:6f:26:de:
31:c0:5b:85:2a:64:e0:c8:ae:78:ee:5d:4a:9d:f3:
a9:91:bd:37:e7:48:24:43:f0:bb:1b:f2:9f:86:41:
ba:eb:4a:4d:92:86:25:3a:63:e8:e9:d8:ce:6a:2a:
26:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:91:31:EA:0A:58:C4:2D:72:E2:7E:33:26:4D:0A:AB:32:20:19:FE
X509v3 Authority Key Identifier:
keyid:8A:00:9E:17:1B:AF:8C:2A:3A:94:D2:9B:24:87:9E:F9:7F:09:66:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/igCeFxuvjCo6lNKbJIee-X8JZgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9f37d1-14ca-4dcf-98f7-2e7213767628/1/6ZEx6gpYxC1y4n4zJk0KqzIgGf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9f37d1-14ca-4dcf-98f7-2e7213767628/1/igCeFxuvjCo6lNKbJIee-X8JZgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.59.0/24
Signature Algorithm: sha256WithRSAEncryption
16:9f:be:28:ee:07:67:87:94:8e:e6:50:83:64:b3:cd:7a:f0:
4e:cb:19:f8:a4:5f:80:71:b7:b0:98:7c:3f:54:32:9f:1f:64:
bb:8a:c8:f6:57:d2:1d:c1:7c:57:2f:ae:fd:8a:ae:00:84:7f:
d8:1d:1f:c9:b6:de:5e:c1:1c:0d:18:07:12:76:da:ad:d6:d1:
aa:7b:23:ad:01:0c:55:bd:40:de:22:25:e2:ff:d3:55:06:1f:
77:ef:41:f0:79:50:06:39:80:89:a6:e8:c5:10:bf:81:cf:05:
be:00:a6:b3:b2:23:b1:c2:19:5f:73:ec:0e:b1:d3:1c:f7:af:
38:81:6f:75:71:35:68:e2:bf:1e:64:71:38:df:a7:1c:33:eb:
ed:81:f1:f5:61:36:da:ad:ee:c4:6d:12:70:f4:5e:4d:4f:2d:
1e:59:fe:d0:66:e3:11:ee:ef:e4:4d:0e:c4:66:9a:94:f5:5c:
75:ed:74:85:12:7e:f1:04:b0:82:15:a7:fd:16:7c:1f:dd:76:
e0:a7:fa:0b:55:de:5e:7d:61:64:d5:7c:e5:5e:8b:87:56:d6:
0b:78:19:fb:82:0a:96:12:70:fd:4f:86:11:a5:81:dc:cb:e5:
da:b6:f5:4c:e9:3e:8f:58:c9:37:89:84:df:de:70:eb:33:11:
a5:7a:80:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org