Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/58YIcLO6h8dx8yXxxSNWmM27rpY.roa
File: 58YIcLO6h8dx8yXxxSNWmM27rpY.roa (raw, json)
Hash identifier: qGENi73K/Thor1mzGkin+xYMfTlOj1saa/x7XRCeflU=
Subject key identifier: E7:C6:08:70:B3:BA:87:C7:71:F3:25:F1:C5:23:56:98:CD:BB:AE:96
Certificate issuer: /CN=1a349707197c73e414bf642c6042c7bfad600e54
Certificate serial: 0183C0DF951DDFD7F15768FF36486C28965B
Authority key identifier: 1A:34:97:07:19:7C:73:E4:14:BF:64:2C:60:42:C7:BF:AD:60:0E:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GjSXBxl8c-QUv2QsYELHv61gDlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/58YIcLO6h8dx8yXxxSNWmM27rpY.roa
Signing time: Mon 10 Oct 2022 07:50:21 +0000
ROA not before: Mon 10 Oct 2022 07:50:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.185.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c0:df:95:1d:df:d7:f1:57:68:ff:36:48:6c:28:96:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a349707197c73e414bf642c6042c7bfad600e54
Validity
Not Before: Oct 10 07:50:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7c60870b3ba87c771f325f1c5235698cdbbae96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cb:a4:ab:ce:f8:73:32:3e:42:65:c0:41:d2:
7a:a8:e3:eb:d9:4c:72:35:c8:ad:62:d0:6a:aa:53:
90:33:e8:87:02:09:b4:f3:1d:0d:b6:f6:28:d1:58:
b8:a0:cf:42:27:99:8d:17:ec:e2:7e:3a:a9:d7:1d:
5e:64:19:a3:18:02:19:bd:e6:15:6c:da:9d:3b:0b:
e5:7b:f6:22:ef:e6:36:d2:96:61:86:58:2d:5c:d3:
ec:7f:d6:b1:55:56:66:16:61:75:7d:46:a1:91:5d:
87:07:bd:4d:1c:b1:42:6c:05:85:32:65:0a:14:c0:
75:20:4b:b2:83:10:e6:4e:a7:47:1c:fa:c9:26:03:
75:64:24:69:58:f5:2d:e3:7d:ae:79:3e:43:e4:90:
fa:4a:94:b8:fa:96:28:b6:d4:02:87:57:a1:61:11:
49:79:ed:a0:ea:b4:c5:86:24:c7:db:e8:2f:cf:43:
52:3a:3b:0d:40:bc:7d:15:34:09:e7:9a:94:c7:ad:
0d:ad:2e:63:98:c3:c9:70:b5:90:53:38:6b:ca:75:
71:4b:16:eb:09:00:19:d7:a7:aa:22:50:88:c7:00:
49:67:73:a4:d4:19:85:f6:9f:c3:7b:3c:1d:7a:44:
4e:33:7a:4a:8d:85:ce:54:49:a5:7b:90:4b:12:2a:
46:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C6:08:70:B3:BA:87:C7:71:F3:25:F1:C5:23:56:98:CD:BB:AE:96
X509v3 Authority Key Identifier:
keyid:1A:34:97:07:19:7C:73:E4:14:BF:64:2C:60:42:C7:BF:AD:60:0E:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GjSXBxl8c-QUv2QsYELHv61gDlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/58YIcLO6h8dx8yXxxSNWmM27rpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/1b8cb9-e49d-434c-8c75-501628c5a7c8/1/GjSXBxl8c-QUv2QsYELHv61gDlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.92.0/22
Signature Algorithm: sha256WithRSAEncryption
03:d8:e6:30:bd:1c:98:69:fb:c8:6b:e6:fa:bd:c2:82:4c:15:
48:cb:ef:d2:2b:0b:0c:a0:63:6c:1e:91:ba:a9:9a:14:25:f4:
0d:6c:ad:07:e1:7f:0b:68:c0:fa:41:da:c9:b8:59:72:4e:2c:
cd:f8:4b:9c:a9:78:26:51:94:f3:d5:a0:85:2b:79:fb:92:cd:
b9:d0:3a:da:ce:57:69:50:57:e7:2d:11:31:13:0d:89:89:81:
fe:31:4a:8e:16:4f:3f:59:59:26:3f:23:c1:8f:60:83:1b:32:
62:e9:49:c9:01:2c:e3:c0:cd:8d:f2:37:ef:ca:38:15:ab:a3:
e9:b2:5e:9b:8b:c0:01:6c:46:f3:04:50:7f:19:94:ff:b6:53:
74:f3:2b:ed:c0:c8:50:0e:b7:cb:3d:4b:64:bd:bb:c6:aa:a0:
73:3e:8e:57:61:99:57:b6:47:e7:7a:90:a5:8f:47:2c:94:da:
3d:47:f8:e1:70:11:40:11:a6:43:84:a8:b1:40:bc:8b:ad:b4:
8e:e7:a6:5c:7f:eb:a8:47:d1:b3:ca:ef:4e:c6:f5:a0:21:43:
7d:c7:76:b4:33:89:96:7b:f5:4f:ed:47:a4:34:a7:15:de:1d:
13:54:41:60:72:ce:06:6c:d2:4f:ce:84:4a:28:4b:d8:43:31:
70:e3:ea:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:59 2023 by rpki-client on console-fra.rpki-client.org