Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/Fg7B7E3H4WSAfFeNH3Wo2s3re3o.roa
File: Fg7B7E3H4WSAfFeNH3Wo2s3re3o.roa (raw, json)
Hash identifier: hLuUGhpsQm0YD1eaEu5R6kTfTKSCbcyaVJIk1RZMUWQ=
Subject key identifier: 16:0E:C1:EC:4D:C7:E1:64:80:7C:57:8D:1F:75:A8:DA:CD:EB:7B:7A
Certificate issuer: /CN=1fa12d687c627a182f81d4cccb3f32201861f677
Certificate serial: 1955B5DE
Authority key identifier: 1F:A1:2D:68:7C:62:7A:18:2F:81:D4:CC:CB:3F:32:20:18:61:F6:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H6EtaHxiehgvgdTMyz8yIBhh9nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/Fg7B7E3H4WSAfFeNH3Wo2s3re3o.roa
Signing time: Mon 11 Apr 2022 11:34:40 +0000
ROA not before: Mon 11 Apr 2022 11:34:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212572
IP address blocks: 185.50.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 425047518 (0x1955b5de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fa12d687c627a182f81d4cccb3f32201861f677
Validity
Not Before: Apr 11 11:34:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=160ec1ec4dc7e164807c578d1f75a8dacdeb7b7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7a:17:6a:a6:77:eb:2c:90:29:25:25:a3:3d:
cf:88:fb:ca:b6:1b:9a:51:f3:76:ff:01:d6:37:f5:
90:2b:aa:c9:0c:ce:eb:43:ea:54:68:cf:ab:c5:b1:
97:a2:52:f6:e9:ad:29:55:89:9a:cc:f9:30:43:b3:
20:26:29:c7:98:b4:ef:b5:e3:be:74:5f:64:82:da:
74:1a:6b:55:01:a9:5a:b4:b9:e5:25:ee:13:8a:ab:
a9:c3:e6:c0:19:7c:31:0a:22:66:54:eb:49:c0:8b:
9f:96:f7:a1:8c:c5:94:48:70:0f:71:5a:b5:0e:f4:
dc:31:9b:22:fb:26:26:5e:23:89:43:e7:a0:1c:c3:
fc:6f:45:81:04:5d:64:f5:b3:01:05:32:7d:69:1d:
96:12:94:3b:f2:6f:95:11:95:9b:a0:b2:dc:8b:a2:
08:a7:77:59:9d:02:69:6f:d2:92:b6:ca:5d:7f:13:
6e:26:33:0f:18:5d:2b:ca:b6:e0:cf:dc:1a:69:a8:
ec:30:23:51:a3:43:e3:d8:17:de:9a:1d:23:11:2d:
76:c4:80:db:d5:49:c6:99:60:3e:b2:8a:6e:0e:23:
5b:c5:5f:03:3b:59:92:b6:bd:20:c7:04:70:d1:ca:
b9:e3:cc:69:76:ed:cf:b1:25:6d:42:ae:ec:97:a8:
aa:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0E:C1:EC:4D:C7:E1:64:80:7C:57:8D:1F:75:A8:DA:CD:EB:7B:7A
X509v3 Authority Key Identifier:
keyid:1F:A1:2D:68:7C:62:7A:18:2F:81:D4:CC:CB:3F:32:20:18:61:F6:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H6EtaHxiehgvgdTMyz8yIBhh9nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/Fg7B7E3H4WSAfFeNH3Wo2s3re3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/H6EtaHxiehgvgdTMyz8yIBhh9nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.50.56.0/22
Signature Algorithm: sha256WithRSAEncryption
73:58:6c:ce:00:18:86:b3:22:1b:1f:bf:9e:f9:29:17:17:6c:
ff:51:e1:0a:4c:b6:bc:49:6e:1c:ef:87:74:31:f8:8c:da:40:
4a:a7:45:23:56:f6:3e:df:0d:b3:ef:18:bb:c4:e9:6e:e2:97:
93:a7:2a:7a:22:e3:46:0f:66:5c:a0:12:ba:52:65:ca:94:ed:
7a:66:86:64:46:78:5e:be:65:28:16:5c:e5:e2:47:8a:0a:b5:
78:1f:5a:65:9b:91:d8:04:77:de:da:d3:7f:98:56:5c:95:6e:
af:30:b9:ef:3f:cc:cc:d5:f2:7b:69:2d:1a:73:9f:2a:f5:50:
c0:78:20:95:bf:96:c8:8c:fc:24:15:47:17:c2:e5:84:d6:19:
38:65:e7:40:7f:fd:90:ca:02:48:36:43:51:e4:90:0f:40:31:
64:97:9a:f6:89:a7:93:3d:1b:7e:86:c1:c3:83:68:b6:7e:8e:
a2:b1:48:00:2e:04:cf:99:6c:a7:8b:e2:5b:8b:82:af:a7:45:
7e:75:e5:94:d1:6d:3f:bd:28:ce:fd:ab:58:c3:b1:a2:19:f8:
e4:c3:61:22:38:42:97:d4:ba:db:a1:46:95:d3:46:41:31:7e:
fe:66:10:40:5c:8a:a9:53:38:98:d0:3c:4c:90:6a:75:91:c4:
12:85:81:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:20 2023 by rpki-client on console-ams.rpki-client.org