Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/o7jgK5jW8hoHn-hnD1owz9XRZuI.roa
File: o7jgK5jW8hoHn-hnD1owz9XRZuI.roa (raw, json)
Hash identifier: iqTIRanNLhPopz4cLa+6Fok5KfVpkKEcxA6aSLUbqIE=
Subject key identifier: A3:B8:E0:2B:98:D6:F2:1A:07:9F:E8:67:0F:5A:30:CF:D5:D1:66:E2
Certificate issuer: /CN=1fa12d687c627a182f81d4cccb3f32201861f677
Certificate serial: 1962C00F
Authority key identifier: 1F:A1:2D:68:7C:62:7A:18:2F:81:D4:CC:CB:3F:32:20:18:61:F6:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H6EtaHxiehgvgdTMyz8yIBhh9nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/o7jgK5jW8hoHn-hnD1owz9XRZuI.roa
Signing time: Tue 12 Apr 2022 20:05:44 +0000
ROA not before: Tue 12 Apr 2022 20:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9119
IP address blocks: 185.50.56.0/23 maxlen: 23
185.50.58.0/24 maxlen: 24
185.50.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 425902095 (0x1962c00f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fa12d687c627a182f81d4cccb3f32201861f677
Validity
Not Before: Apr 12 20:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3b8e02b98d6f21a079fe8670f5a30cfd5d166e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:02:b1:7e:d9:40:d1:35:82:61:be:78:e2:b0:
2c:0d:fb:bd:b2:dc:7b:02:50:c9:14:f7:8f:fe:31:
7a:93:64:23:1c:02:98:79:be:50:30:ea:0f:6c:53:
f3:56:3d:39:7a:88:69:03:08:24:05:3b:26:34:82:
1c:13:02:28:84:1d:fe:a4:be:d9:ad:60:b0:99:e4:
b0:60:71:c1:09:cd:ca:0b:dc:91:2b:71:47:e5:e6:
63:f1:b3:64:8d:c6:46:de:d5:9b:8e:90:bf:2b:4b:
9b:40:fc:36:71:39:ac:51:39:9f:86:ca:10:5f:bb:
34:22:75:3f:92:30:a0:81:39:d8:f8:2d:d7:21:2f:
9d:df:5f:68:00:32:82:2f:0f:51:4e:d9:12:9d:2e:
59:0f:78:e2:c4:27:ff:e2:8b:fc:46:45:2e:dc:40:
5c:13:a6:c7:16:38:be:0c:75:33:60:8b:ae:47:90:
de:8e:e5:27:7c:43:8f:65:e5:9d:27:e0:c5:6c:bd:
3f:17:b0:85:8b:d1:6e:8a:7f:a0:4e:12:ae:00:fd:
4d:88:d3:7a:b0:45:f3:1f:9c:68:08:dc:56:42:e3:
13:df:93:5b:b7:68:7a:3b:6e:a9:d0:98:5a:c4:11:
53:ff:2c:b0:9d:98:28:c6:da:11:3c:28:a1:bd:06:
ef:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B8:E0:2B:98:D6:F2:1A:07:9F:E8:67:0F:5A:30:CF:D5:D1:66:E2
X509v3 Authority Key Identifier:
keyid:1F:A1:2D:68:7C:62:7A:18:2F:81:D4:CC:CB:3F:32:20:18:61:F6:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H6EtaHxiehgvgdTMyz8yIBhh9nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/o7jgK5jW8hoHn-hnD1owz9XRZuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/H6EtaHxiehgvgdTMyz8yIBhh9nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.50.56.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:52:70:9e:c9:0a:d0:01:5c:45:67:2f:00:d9:61:46:a9:6f:
08:77:55:54:ee:7e:ec:e5:65:eb:16:85:3f:bc:d5:36:67:2e:
60:e3:b0:43:e4:be:73:9f:61:3e:c1:26:5f:38:ad:20:b6:d8:
e4:72:ca:b4:2e:58:d6:a8:62:b0:37:2f:07:a6:5e:46:ea:c3:
7c:f5:9c:a1:6c:1a:80:03:38:ad:f3:15:20:05:5f:ca:dc:82:
a1:48:95:90:20:70:0b:2c:74:0c:ab:db:7a:de:22:7f:b0:ec:
95:23:b4:87:4b:b4:b4:46:9f:37:fd:c2:e0:9b:53:10:37:e8:
30:d5:20:87:a7:43:f8:da:8e:23:34:c3:28:28:da:e5:63:98:
e9:0c:36:46:fa:a2:d1:ef:2c:47:f9:87:07:87:6d:63:f2:c8:
a1:7d:ef:0f:ed:aa:6e:65:ab:1c:61:96:47:45:3c:4b:a9:68:
4e:45:10:fa:19:4a:a0:9b:0d:65:b0:18:21:ec:87:d5:57:83:
fe:69:67:47:ab:38:6d:e2:9d:7d:7d:c7:fb:42:c4:1b:20:94:
2e:3e:65:bf:47:b6:55:34:91:41:12:2c:ff:6b:fa:89:d0:95:
a3:2f:2f:af:32:c9:59:9b:2f:ad:24:ce:6d:52:73:b8:35:d3:
1f:75:dd:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:20 2023 by rpki-client on console-ams.rpki-client.org