Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/ff4794-9e53-4f30-a987-8af7ae0a9ac7/1/qDpy_16ji45sSMFMY3uFuO0EaCw.roa
File: qDpy_16ji45sSMFMY3uFuO0EaCw.roa (raw, json)
Hash identifier: sslVH+nHLlytW6FsdmTN5BRH08aFx+MYGGp78yzXpIY=
Subject key identifier: A8:3A:72:FF:5E:A3:8B:8E:6C:48:C1:4C:63:7B:85:B8:ED:04:68:2C
Certificate issuer: /CN=be43d2710aad7c98c10f4d945dabdeea21c49d31
Certificate serial: 012D5657
Authority key identifier: BE:43:D2:71:0A:AD:7C:98:C1:0F:4D:94:5D:AB:DE:EA:21:C4:9D:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkPScQqtfJjBD02UXave6iHEnTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/ff4794-9e53-4f30-a987-8af7ae0a9ac7/1/qDpy_16ji45sSMFMY3uFuO0EaCw.roa
Signing time: Sat 01 Jan 2022 07:03:42 +0000
ROA not before: Sat 01 Jan 2022 07:03:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198965
IP address blocks: 185.116.120.0/22 maxlen: 22
37.221.224.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19748439 (0x12d5657)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be43d2710aad7c98c10f4d945dabdeea21c49d31
Validity
Not Before: Jan 1 07:03:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a83a72ff5ea38b8e6c48c14c637b85b8ed04682c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:dd:8b:b7:97:a8:3b:6b:fc:e9:cc:35:ca:f5:
ea:d5:46:85:69:60:97:d6:b9:0d:15:23:c6:e0:13:
51:4d:69:e7:ce:18:df:95:79:41:5d:de:8a:33:9f:
20:9f:4a:13:1d:f3:d0:86:22:6e:c0:fa:1a:fc:0f:
94:64:91:b7:f7:f5:6e:f6:5d:8c:63:65:6d:76:ee:
4f:5b:62:e1:e2:3c:2a:de:24:bf:0c:dc:47:11:d6:
3c:80:52:3e:7d:93:be:5c:cc:82:60:98:e3:96:82:
e6:c5:50:16:30:1c:f3:b3:60:f0:fd:01:2e:18:b1:
70:85:f6:22:13:91:e5:fc:94:3a:a1:6d:d8:8d:33:
c1:99:55:7e:12:63:87:28:02:db:ec:06:68:33:ca:
b8:23:1f:78:c9:22:00:15:d1:58:d9:3a:f5:27:d8:
dc:30:6c:f9:78:e7:1d:82:c8:95:62:cb:22:c6:e7:
5d:79:71:bd:ca:bb:8b:46:d6:15:e3:f9:c2:8d:7e:
9d:de:6e:b8:88:ec:50:ff:08:aa:d5:4c:27:e2:2f:
df:2c:7c:30:a9:4d:ba:db:5a:d0:da:74:d4:49:5e:
40:b1:65:dc:76:7d:de:78:bf:ba:95:15:ba:26:f2:
d5:a2:5e:d5:e7:3b:87:8f:8e:81:10:0e:e4:d8:b4:
2c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3A:72:FF:5E:A3:8B:8E:6C:48:C1:4C:63:7B:85:B8:ED:04:68:2C
X509v3 Authority Key Identifier:
keyid:BE:43:D2:71:0A:AD:7C:98:C1:0F:4D:94:5D:AB:DE:EA:21:C4:9D:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkPScQqtfJjBD02UXave6iHEnTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/ff4794-9e53-4f30-a987-8af7ae0a9ac7/1/qDpy_16ji45sSMFMY3uFuO0EaCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/ff4794-9e53-4f30-a987-8af7ae0a9ac7/1/vkPScQqtfJjBD02UXave6iHEnTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.221.224.0/21
185.116.120.0/22
Signature Algorithm: sha256WithRSAEncryption
37:30:25:92:0e:72:50:4f:a6:89:f0:3f:8a:84:06:be:5d:5b:
b7:ea:40:c3:3f:73:17:b3:b2:d4:80:fd:cc:17:52:90:98:b8:
e3:b6:0f:16:f5:e0:e2:f2:bf:cd:5e:85:06:9f:06:24:ee:56:
51:3d:1d:2c:7a:5d:ad:df:f6:c6:52:8c:2e:06:40:66:fe:4d:
84:40:70:bc:7a:02:e2:03:18:78:cd:d5:a2:01:ec:14:5c:a4:
87:b2:0f:2b:9d:d0:da:96:71:5e:d2:d2:a3:57:7e:aa:3e:6b:
55:45:13:39:88:eb:13:32:a7:4b:32:21:43:a3:76:8c:b4:44:
88:12:d8:3e:6b:7d:c8:e8:ca:2f:c8:ba:2e:0d:9d:45:ae:5e:
14:23:36:f8:63:44:35:8c:1f:b4:a0:22:11:38:b2:68:28:d9:
49:45:8a:e2:29:4b:d0:93:c2:a2:78:0f:08:4f:0f:c3:cc:09:
f1:08:d3:73:0a:80:76:a2:19:af:9d:1b:67:2c:b0:a0:79:78:
c6:90:6f:53:59:8a:96:41:9c:b6:a9:a0:ba:0f:25:ef:37:03:
a0:b4:dd:40:9c:e3:3a:31:59:21:2b:e2:27:4a:4e:05:3f:44:
5d:e4:1a:d9:1a:10:99:ca:e0:de:d2:bc:b3:c0:6a:6c:d9:8c:
5e:21:2b:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:07 2024 by rpki-client on console-fra.rpki-client.org