Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/2709c7-8297-43cf-8d89-7a4a8546f9f7/1/7ns7PVWjxRtAHp0IZVnZiDN6CXE.roa
File: 7ns7PVWjxRtAHp0IZVnZiDN6CXE.roa (raw, json)
Hash identifier: SFUh2e4hdRWNNx4Nskc9Q/oQXEifcFVzJbY7FB71n7A=
Subject key identifier: EE:7B:3B:3D:55:A3:C5:1B:40:1E:9D:08:65:59:D9:88:33:7A:09:71
Certificate issuer: /CN=d090785798cec6769f17cdd75cbfaaf2fc865ce6
Certificate serial: 15862874
Authority key identifier: D0:90:78:57:98:CE:C6:76:9F:17:CD:D7:5C:BF:AA:F2:FC:86:5C:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0JB4V5jOxnafF83XXL-q8vyGXOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/2709c7-8297-43cf-8d89-7a4a8546f9f7/1/7ns7PVWjxRtAHp0IZVnZiDN6CXE.roa
Signing time: Sat 01 Jan 2022 07:58:48 +0000
ROA not before: Sat 01 Jan 2022 07:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200811
IP address blocks: 185.98.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 361113716 (0x15862874)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d090785798cec6769f17cdd75cbfaaf2fc865ce6
Validity
Not Before: Jan 1 07:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee7b3b3d55a3c51b401e9d086559d988337a0971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a5:fd:7d:6c:ec:ad:39:8d:b6:51:ce:0c:41:
48:b8:86:3f:e7:67:61:d8:61:87:c8:8e:7f:52:44:
5b:bf:06:95:11:5e:72:ca:f9:91:02:7a:67:bd:e6:
6a:28:1a:98:6f:8f:cc:98:9c:d1:df:ec:f5:0b:6c:
f4:01:d9:f5:c8:c0:0e:f3:32:66:ae:8a:25:10:8e:
1a:01:5d:e4:20:9a:c2:5c:a1:73:d7:d4:85:3a:f0:
da:91:87:91:39:10:f3:22:c5:63:f9:b9:2b:30:a8:
7e:84:fb:a2:90:f3:20:af:57:09:8f:38:c2:a1:44:
ab:40:bf:56:0b:1e:68:92:8f:b4:7b:de:25:1b:1d:
07:4a:db:cf:48:4a:72:9e:6a:37:e8:28:f8:ef:2e:
b9:0c:dc:a3:a8:d4:0c:ef:1d:53:b4:3c:0f:ef:b4:
30:a4:00:61:30:3c:00:e0:ed:74:97:a2:aa:7d:ba:
e7:1d:da:e4:76:4e:ab:06:5b:70:42:b5:07:f0:91:
3e:99:03:b5:09:45:3e:55:0e:31:92:ac:71:e8:2f:
f1:fa:b3:47:60:12:d7:ef:6e:f7:a1:b4:7d:d2:23:
a7:fa:8b:33:96:65:90:c2:b6:61:a7:5f:93:09:2b:
ef:c4:d9:cf:83:07:2a:90:64:8b:23:49:37:e9:20:
7c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:7B:3B:3D:55:A3:C5:1B:40:1E:9D:08:65:59:D9:88:33:7A:09:71
X509v3 Authority Key Identifier:
keyid:D0:90:78:57:98:CE:C6:76:9F:17:CD:D7:5C:BF:AA:F2:FC:86:5C:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0JB4V5jOxnafF83XXL-q8vyGXOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/2709c7-8297-43cf-8d89-7a4a8546f9f7/1/7ns7PVWjxRtAHp0IZVnZiDN6CXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/2709c7-8297-43cf-8d89-7a4a8546f9f7/1/0JB4V5jOxnafF83XXL-q8vyGXOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.32.0/22
Signature Algorithm: sha256WithRSAEncryption
51:d8:14:7b:8c:0f:b3:f7:26:03:4e:5a:35:6c:7a:66:98:e8:
be:29:63:e5:d4:fe:44:58:e1:8f:0c:aa:7d:dc:98:45:c6:a4:
f6:0e:44:ef:11:b4:d3:b3:a9:b9:79:e1:97:11:1f:47:f1:b4:
cf:aa:a8:96:98:7d:af:9b:73:55:f0:fe:94:6b:3f:af:99:3f:
21:a5:b4:8a:41:c0:e2:08:eb:c7:9d:26:30:f3:08:5b:b9:67:
20:80:c1:09:39:e6:6c:b8:94:45:57:d2:dc:46:28:11:5a:28:
54:c5:09:4a:13:c8:81:e0:d2:22:de:cb:90:a3:ab:97:1c:fb:
b6:2a:dd:17:9d:9c:47:36:94:a6:ab:3c:5c:39:fe:26:ee:47:
54:bb:01:04:c0:23:d5:47:19:87:6c:01:d6:40:73:88:e8:d2:
56:5a:65:d3:d7:40:35:b2:f8:90:05:cc:21:3c:1b:ba:b1:a6:
31:14:23:92:1b:67:61:e2:02:42:31:aa:80:a1:b6:43:f8:0b:
52:7f:94:9c:1e:d7:9a:b2:78:c9:48:13:9b:b2:ce:e6:a8:76:
b8:b6:a6:ce:4d:be:3b:57:47:cf:f1:5d:45:a7:09:9a:6b:14:
78:25:03:ca:c4:a3:44:e8:88:8f:c9:3d:f0:f0:f0:ab:63:20:
d5:f4:51:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:47 2023 by rpki-client on console-ams.rpki-client.org