Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/whXOcSzkSnjYrTLeyutuFg8mt34.roa
File: whXOcSzkSnjYrTLeyutuFg8mt34.roa (raw, json)
Hash identifier: wzM/R7JieJ8nUqWtif5+Rll+Drmush/IGW1hAWOZ8s8=
Subject key identifier: C2:15:CE:71:2C:E4:4A:78:D8:AD:32:DE:CA:EB:6E:16:0F:26:B7:7E
Certificate issuer: /CN=1fa12d687c627a182f81d4cccb3f32201861f677
Certificate serial: 1954CE1C
Authority key identifier: 1F:A1:2D:68:7C:62:7A:18:2F:81:D4:CC:CB:3F:32:20:18:61:F6:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H6EtaHxiehgvgdTMyz8yIBhh9nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/whXOcSzkSnjYrTLeyutuFg8mt34.roa
Signing time: Mon 11 Apr 2022 11:16:08 +0000
ROA not before: Mon 11 Apr 2022 11:16:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9119
IP address blocks: 185.50.56.0/23 maxlen: 23
185.50.58.0/24 maxlen: 24
185.50.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 424988188 (0x1954ce1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fa12d687c627a182f81d4cccb3f32201861f677
Validity
Not Before: Apr 11 11:16:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c215ce712ce44a78d8ad32decaeb6e160f26b77e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1a:0e:ec:01:cd:ee:61:83:57:7b:8a:be:9f:
a9:ae:de:1f:65:87:44:bc:4a:5e:35:05:0f:98:80:
12:44:f2:84:e9:09:6a:be:66:b2:c0:96:4b:c9:44:
b3:37:be:85:d9:80:f8:6a:ba:05:8d:fa:39:53:da:
86:60:1a:8f:5a:a8:28:18:c7:51:00:d8:c4:6a:d5:
88:9a:0a:3d:57:84:7e:e3:84:c8:7b:65:25:93:4d:
0b:1b:81:33:cd:a5:55:35:93:00:5d:b1:91:f8:50:
0b:52:12:97:56:7f:1e:b2:c2:6a:58:ce:33:79:34:
12:42:59:64:18:99:2d:11:b8:f3:ea:e3:f8:aa:1a:
88:02:88:52:c7:31:83:0b:41:04:73:76:f4:51:e7:
a5:19:49:ea:a7:0f:b5:4f:d6:aa:cb:fa:34:04:74:
ba:d5:32:79:fd:d8:fd:98:34:d5:dc:de:42:8d:f1:
75:9e:af:c1:41:7d:19:8b:bb:05:34:95:5b:42:94:
41:aa:39:51:72:aa:03:ef:50:19:c0:c4:f3:70:3a:
e0:39:11:95:6b:bb:45:fd:8d:41:aa:af:b8:87:ed:
26:e3:b5:14:d9:c2:71:0a:a3:ef:c5:da:1e:e2:6c:
41:b2:63:eb:db:fd:e3:1b:ae:68:4c:13:ab:2b:cd:
f5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:15:CE:71:2C:E4:4A:78:D8:AD:32:DE:CA:EB:6E:16:0F:26:B7:7E
X509v3 Authority Key Identifier:
keyid:1F:A1:2D:68:7C:62:7A:18:2F:81:D4:CC:CB:3F:32:20:18:61:F6:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H6EtaHxiehgvgdTMyz8yIBhh9nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/whXOcSzkSnjYrTLeyutuFg8mt34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/4c29d0-58ea-48e8-bac7-89ccc2d4563b/1/H6EtaHxiehgvgdTMyz8yIBhh9nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.50.56.0/22
Signature Algorithm: sha256WithRSAEncryption
57:a2:27:5b:57:49:7e:da:f4:b4:b6:3d:68:05:6f:99:d5:f8:
6f:a6:39:ea:f9:04:51:96:50:93:e8:20:e1:59:e6:c1:f4:3f:
95:8c:cc:d2:95:9b:84:cc:11:af:14:59:c0:80:17:58:29:8e:
65:d6:0a:58:d8:53:dd:0e:3f:1f:0d:51:7d:0a:29:30:6b:99:
ec:6b:b8:d2:8e:0e:aa:ba:4c:5a:2f:47:68:27:0d:56:1e:04:
a0:dd:e2:d5:f6:3d:6a:cd:f9:46:57:88:11:30:a4:4a:53:35:
e5:f7:12:ab:9b:31:70:21:ef:27:d5:16:4a:46:ae:1a:9d:41:
3d:ed:0b:bd:54:b8:73:e4:be:a7:e0:cb:77:8c:7c:e5:2e:ba:
b5:13:d0:f9:08:67:9c:43:f1:4d:1f:d5:9d:cb:53:b8:a9:29:
da:10:86:58:dd:fd:a1:95:dc:c2:24:7a:a4:65:46:fc:d1:57:
6b:b8:83:1f:df:45:85:cb:0c:d1:97:e2:22:e4:68:c6:4e:53:
57:9d:f0:d2:7d:27:86:be:ee:87:0a:ed:cd:d1:1b:3d:f2:70:
e7:31:29:6c:b7:91:61:5d:ab:76:50:f7:36:5c:c9:4d:40:3e:
dc:c5:b2:33:3f:50:85:5d:2a:67:3a:92:14:e6:47:45:0e:14:
5e:df:19:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:25 2023 by rpki-client on console-fra.rpki-client.org