Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/qwDu1Y8xPAu6xn-QygGDt0kXRbA.roa
File: qwDu1Y8xPAu6xn-QygGDt0kXRbA.roa (raw, json)
Hash identifier: 1uGJZc1HegTdKn3j9gptWC/x+8MlOeq6EZQTkdfCth4=
Subject key identifier: AB:00:EE:D5:8F:31:3C:0B:BA:C6:7F:90:CA:01:83:B7:49:17:45:B0
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 056A5718
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/qwDu1Y8xPAu6xn-QygGDt0kXRbA.roa
Signing time: Sat 01 Jan 2022 15:07:20 +0000
ROA not before: Sat 01 Jan 2022 15:07:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39351
IP address blocks: 85.203.53.0/24 maxlen: 24
85.203.55.0/24 maxlen: 24
85.203.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90855192 (0x56a5718)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 1 15:07:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab00eed58f313c0bbac67f90ca0183b7491745b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:9a:1f:1e:2a:bd:f2:a0:9c:2b:e1:9d:be:11:
d2:b5:62:bf:9a:0c:31:71:b3:db:97:ea:0f:6c:b9:
a1:65:74:b6:2f:b3:d8:2b:fa:96:7c:f2:f8:85:40:
57:39:c8:1e:81:60:05:24:e9:1e:dd:a8:0e:d9:42:
2d:d5:17:2c:41:bc:30:5b:3c:49:52:1f:10:88:43:
cf:35:77:fe:58:9d:de:4c:3f:c0:08:c9:d0:b8:a0:
70:67:71:ed:be:aa:86:7a:3b:7a:c6:07:d4:bf:3a:
36:3e:25:5e:54:c4:e9:a9:35:9e:25:8d:49:b0:1c:
71:48:19:0e:fc:a4:d5:a2:44:81:9e:36:69:4f:cb:
88:28:20:53:5e:f2:33:e7:1b:f9:b3:23:0d:ab:79:
a5:c1:be:40:cc:de:ba:44:96:24:38:85:72:77:83:
3c:7c:c8:39:a1:ae:a5:73:f4:30:ff:e7:d5:9f:11:
3a:b8:6d:91:18:fc:6b:32:e8:c3:e1:b5:15:4e:fd:
66:7f:35:a3:66:67:fd:a8:b4:b8:3c:67:89:b0:f5:
8b:b2:68:3a:7a:1f:c9:69:c7:87:f4:b1:ab:fc:31:
ea:0a:df:b5:94:bb:ff:39:29:32:a7:90:1d:82:cc:
09:db:81:d0:64:96:30:2e:77:75:a1:e9:8a:70:40:
c3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:00:EE:D5:8F:31:3C:0B:BA:C6:7F:90:CA:01:83:B7:49:17:45:B0
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/qwDu1Y8xPAu6xn-QygGDt0kXRbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.53.0-85.203.55.255
Signature Algorithm: sha256WithRSAEncryption
96:31:10:c9:f2:d2:79:e7:ed:b8:5c:85:31:3d:6c:ce:10:67:
a7:4f:91:a7:44:1a:b8:36:d1:42:47:f0:5b:b7:27:c2:9b:1a:
fd:88:39:bc:34:73:62:2b:3a:32:ff:d8:3b:9b:62:9e:ca:96:
b5:8e:d3:86:3a:a9:9f:af:e8:0f:ce:56:cb:b5:0a:00:e2:f7:
a7:a6:2b:2c:6f:79:97:2a:06:fe:a3:80:43:c4:54:05:7d:e9:
7b:9e:ca:62:df:49:bd:91:3a:b9:08:a6:eb:14:34:f5:1a:d3:
d7:80:4c:08:22:16:93:06:8e:d8:59:f4:98:06:ce:5a:2d:d9:
e7:28:6e:62:48:38:28:1f:b6:e2:ab:98:4b:ab:84:89:bb:3a:
23:d2:39:01:2f:e0:f9:ea:46:20:20:ae:13:56:b0:dc:34:25:
8c:6c:90:ad:75:bc:a4:08:3a:fe:26:6c:dd:d3:35:72:d2:ef:
f8:dd:0d:d7:7d:f0:cd:11:77:38:a0:84:58:01:a8:90:eb:13:
ba:a3:6e:02:e9:f7:ca:4b:94:73:6d:1a:0a:b7:82:61:33:37:
d5:16:e6:8c:64:c6:25:70:f5:6d:03:19:a2:fc:19:21:e9:a5:
a8:50:8e:f6:2c:bb:92:4f:37:7a:07:cb:59:86:43:9a:f3:87:
88:c1:de:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:50 2023 by rpki-client on console-ams.rpki-client.org