Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/nQTxGKhduOY1ZMal0ehS-hydFLM.roa
File: nQTxGKhduOY1ZMal0ehS-hydFLM.roa (raw, json)
Hash identifier: ruiHoDcqSBQ3ciqePCa1cwMSlwg1y1oirJBxK0WaTmI=
Subject key identifier: 9D:04:F1:18:A8:5D:B8:E6:35:64:C6:A5:D1:E8:52:FA:1C:9D:14:B3
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 0305E972
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/nQTxGKhduOY1ZMal0ehS-hydFLM.roa
Signing time: Tue 14 Jun 2022 16:56:44 +0000
ROA not before: Tue 14 Jun 2022 16:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44092
IP address blocks: 185.22.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50719090 (0x305e972)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jun 14 16:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d04f118a85db8e63564c6a5d1e852fa1c9d14b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cf:a6:9a:97:e3:a7:da:11:f4:e3:5a:3a:c4:
13:7e:1a:27:f0:01:24:4c:71:84:49:83:e9:09:fd:
e0:df:67:7c:71:36:ae:48:66:fc:13:46:a6:78:30:
be:dd:0b:9d:32:18:77:68:84:52:21:7a:bb:35:1e:
64:47:72:c6:33:ce:ed:3c:a4:1a:05:9d:57:56:91:
6a:d8:24:76:e2:f4:c0:bf:55:73:1c:8f:13:f5:b4:
40:96:54:73:03:bc:a5:7a:20:a9:61:af:b6:7f:6c:
f3:3b:48:a2:8a:d8:84:5e:75:ca:38:f6:2d:99:92:
41:d0:40:79:86:0f:ca:ba:94:ac:cd:c4:be:e0:a5:
5f:d7:b9:3c:55:32:33:83:2d:8b:2b:8a:73:17:9a:
da:cf:7b:e1:ed:96:4c:75:4a:78:eb:76:ae:e3:db:
65:d5:e7:24:5e:55:56:fd:e0:76:4e:84:fb:2d:c0:
16:7e:5b:e9:72:9f:8d:f8:b4:fb:da:be:58:47:9e:
ff:9a:64:eb:69:19:29:aa:3e:b4:dd:03:f5:63:2c:
76:6e:f1:af:89:55:1f:e2:c6:e3:ef:d0:5d:d3:ac:
4f:58:4f:e0:bc:38:7b:f4:88:5e:89:fa:2c:9a:98:
df:3f:62:51:ad:d0:d9:e7:b4:40:48:69:0f:f5:a4:
a6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:04:F1:18:A8:5D:B8:E6:35:64:C6:A5:D1:E8:52:FA:1C:9D:14:B3
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/nQTxGKhduOY1ZMal0ehS-hydFLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.58.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:0e:0d:0f:7f:c7:df:27:0c:f7:ab:e8:2e:a7:8d:4f:64:9f:
43:01:1d:1c:d5:a7:06:f2:14:0d:75:cc:55:95:60:24:cd:c4:
ba:31:8f:01:21:6d:70:80:1b:c2:94:43:5c:14:bf:e8:95:eb:
15:fd:93:a2:10:aa:28:29:b6:99:17:a3:7d:78:1f:d5:90:02:
c4:72:a3:03:9a:06:66:f5:06:e0:42:5d:71:13:1e:86:48:06:
39:59:ad:ec:68:c0:42:0b:89:7e:68:b0:20:03:14:c5:ff:fb:
02:f6:52:04:ba:4c:ed:79:44:c8:63:22:d8:55:d4:2c:30:5a:
64:cb:86:70:f2:ad:d4:46:84:d4:ec:5b:b6:79:1f:54:a1:07:
cd:0d:a8:c6:ea:fb:67:66:26:2d:b6:cc:5f:de:f6:34:df:94:
2e:31:62:1b:c5:74:e9:a8:b2:01:8e:23:16:50:6d:de:83:5c:
3f:5a:64:b3:96:5a:0f:ac:28:a2:83:a3:4a:6b:83:c6:d2:b7:
fe:82:0b:92:1a:56:a2:95:e9:60:c3:de:3d:fd:e5:dd:bb:47:
e6:37:4e:5d:19:a6:aa:c2:06:1c:14:5f:56:d3:d7:14:27:55:
91:5f:a5:23:04:50:f6:e0:c0:27:41:8d:4d:60:0c:5a:29:0b:
c6:08:95:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-fra.rpki-client.org