Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/7cf43d-8c85-4817-bd75-230fda66abcb/1/DMeEm1YyaCMKRw0AtHx_E8ldU3w.roa
File: DMeEm1YyaCMKRw0AtHx_E8ldU3w.roa (raw, json)
Hash identifier: O081OKLEhRNpRALblKGeBeDYiZEwO31uBDUZndU5GfQ=
Subject key identifier: 0C:C7:84:9B:56:32:68:23:0A:47:0D:00:B4:7C:7F:13:C9:5D:53:7C
Certificate issuer: /CN=d78a4914d96009b6822d168a0ed53e936d3a41f8
Certificate serial: 173E74F0
Authority key identifier: D7:8A:49:14:D9:60:09:B6:82:2D:16:8A:0E:D5:3E:93:6D:3A:41:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14pJFNlgCbaCLRaKDtU-k206Qfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/7cf43d-8c85-4817-bd75-230fda66abcb/1/DMeEm1YyaCMKRw0AtHx_E8ldU3w.roa
Signing time: Sat 01 Jan 2022 14:56:49 +0000
ROA not before: Sat 01 Jan 2022 14:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206575
IP address blocks: 185.98.12.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389969136 (0x173e74f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d78a4914d96009b6822d168a0ed53e936d3a41f8
Validity
Not Before: Jan 1 14:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cc7849b563268230a470d00b47c7f13c95d537c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:02:30:c6:13:4a:76:d9:bc:d6:bb:1b:0b:7d:
ac:f5:f5:21:32:40:4d:9c:49:33:8e:2f:df:9f:1b:
7b:bd:5f:5f:09:f4:fb:b1:b7:3e:b4:12:fd:2e:6c:
d9:f9:21:3b:c1:bf:65:57:27:95:6e:71:d2:b4:6e:
d4:39:db:38:0d:cb:f1:a4:9c:96:ee:0e:b1:5e:b3:
b8:2f:70:0c:e6:d5:5e:00:be:3c:fe:42:15:47:05:
7a:f5:d3:aa:14:d2:48:94:43:29:76:14:7c:b8:e7:
3c:74:64:b5:70:ae:e9:93:3c:4d:eb:46:c8:3b:8b:
72:a1:4f:98:96:73:a1:07:75:89:c7:c4:89:1e:0e:
3b:91:bc:26:4b:cc:15:54:6b:c3:85:cf:ac:5a:0a:
58:5e:ee:ca:d9:f8:59:d7:f1:f6:97:f2:17:b0:b1:
04:98:c1:ef:0f:ab:73:a8:55:b2:3c:94:10:b8:e8:
e8:89:ac:0d:18:02:b1:b8:e0:53:09:d1:68:e5:60:
74:ee:af:54:30:18:cd:94:42:11:b6:09:b6:02:ba:
3b:7a:4d:87:aa:51:88:8d:21:89:84:cb:1e:a8:a5:
8b:dd:a5:bf:8f:0e:ec:18:46:13:d9:f1:1f:0d:99:
33:82:aa:a0:ad:3b:fc:e2:0c:ee:88:9c:a5:00:b0:
dc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C7:84:9B:56:32:68:23:0A:47:0D:00:B4:7C:7F:13:C9:5D:53:7C
X509v3 Authority Key Identifier:
keyid:D7:8A:49:14:D9:60:09:B6:82:2D:16:8A:0E:D5:3E:93:6D:3A:41:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14pJFNlgCbaCLRaKDtU-k206Qfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/7cf43d-8c85-4817-bd75-230fda66abcb/1/DMeEm1YyaCMKRw0AtHx_E8ldU3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/7cf43d-8c85-4817-bd75-230fda66abcb/1/14pJFNlgCbaCLRaKDtU-k206Qfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.12.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:81:04:25:00:f2:57:2a:ec:18:c4:26:01:00:cf:59:97:6d:
91:d8:e6:9c:d8:38:1f:56:85:88:bf:11:b1:f2:66:32:80:77:
95:e4:ef:90:49:eb:ae:fe:5f:1d:bd:db:8d:e2:d8:0d:7d:17:
f3:ac:c6:5d:bc:d2:a8:b2:fe:86:08:4e:30:d5:ea:c2:4b:b6:
56:94:c9:99:1f:0a:40:33:c0:43:46:c5:1a:80:15:c7:6b:25:
33:de:30:64:06:6b:2b:9c:42:07:7f:6b:58:c2:4a:80:9a:28:
6e:0c:97:62:8a:54:f0:f9:2a:c2:a4:07:fb:1d:0e:36:ed:71:
d0:a5:0d:43:76:72:81:a6:97:9c:d9:b7:b1:7b:4a:00:02:03:
ca:98:b7:89:33:b0:26:74:8c:41:78:21:72:90:d1:ad:37:80:
26:12:8b:f2:11:32:e2:e7:d3:d2:ae:ce:fe:69:07:bf:a0:d9:
33:0a:03:e7:24:3c:19:a6:50:4c:c3:e2:97:61:f0:5d:82:6b:
37:9d:4d:83:7c:0a:e0:5a:79:b2:ad:85:c1:bc:84:d8:51:0a:
4f:f8:16:e7:49:70:73:2f:2e:a2:b9:80:3b:c6:78:e5:c2:12:
52:41:6e:4c:81:2a:d4:62:2f:76:7e:3a:82:f1:1d:1a:82:39:
12:eb:98:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org