Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5afb3d-0f37-44b1-811e-46610fa8d56e/1/QBHQeWYLj4Ol1Dd4wblL3T62PCQ.roa
File: QBHQeWYLj4Ol1Dd4wblL3T62PCQ.roa (raw, json)
Hash identifier: QlpoLG/uZIVA+yqffMk2RGxbIKM+8idpl8fTFiGGRwU=
Subject key identifier: 40:11:D0:79:66:0B:8F:83:A5:D4:37:78:C1:B9:4B:DD:3E:B6:3C:24
Certificate issuer: /CN=65dc6efa6b136b1e45e21e434e859a292d2e5e14
Certificate serial: 02B9B4
Authority key identifier: 65:DC:6E:FA:6B:13:6B:1E:45:E2:1E:43:4E:85:9A:29:2D:2E:5E:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zdxu-msTax5F4h5DToWaKS0uXhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5afb3d-0f37-44b1-811e-46610fa8d56e/1/QBHQeWYLj4Ol1Dd4wblL3T62PCQ.roa
Signing time: Fri 11 Feb 2022 15:33:41 +0000
ROA not before: Fri 11 Feb 2022 15:33:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42184
IP address blocks: 185.124.232.0/22 maxlen: 22
2a06:b600::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178612 (0x2b9b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65dc6efa6b136b1e45e21e434e859a292d2e5e14
Validity
Not Before: Feb 11 15:33:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4011d079660b8f83a5d43778c1b94bdd3eb63c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:57:84:9e:89:8d:e4:f6:12:d4:08:18:96:c4:
4e:9a:b9:01:fb:d4:a0:32:40:9f:1e:83:05:e3:6e:
c0:5f:33:d2:0e:9e:59:83:ef:2d:83:a5:26:61:ed:
fd:df:8b:4e:d9:b1:88:2b:da:ab:21:06:5c:3e:96:
7c:58:ef:96:e9:39:fc:7c:d7:2e:fb:7c:55:a1:c2:
15:a7:36:e1:f3:2e:dd:1e:e1:1c:14:0e:a9:eb:3f:
dc:c5:cc:26:bf:05:41:be:62:fe:32:c6:c6:53:16:
9f:f2:98:03:ac:31:db:d6:cb:04:5f:ea:e5:02:68:
14:5c:c4:21:43:09:99:97:1b:6b:ff:77:33:a9:41:
6c:e5:03:07:d6:29:88:08:ed:b1:1c:5a:71:15:b6:
92:18:06:6e:63:b6:b4:63:9f:bc:f6:ea:f8:42:77:
d3:c0:16:29:83:91:7e:bc:13:5f:1c:f8:fb:d1:06:
2a:c5:3a:12:b0:3a:92:50:15:97:88:be:ee:7c:a7:
78:62:1c:ac:10:5a:57:dc:7e:e1:84:06:93:92:b7:
1e:22:b3:d4:90:bc:3c:bb:86:d7:1e:9e:bb:7d:8a:
54:29:c7:d8:b7:1b:73:9d:86:b0:a7:7a:6a:6a:25:
00:6d:b5:a3:c6:f2:17:2f:19:b2:8f:c7:98:8f:6c:
76:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:11:D0:79:66:0B:8F:83:A5:D4:37:78:C1:B9:4B:DD:3E:B6:3C:24
X509v3 Authority Key Identifier:
keyid:65:DC:6E:FA:6B:13:6B:1E:45:E2:1E:43:4E:85:9A:29:2D:2E:5E:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zdxu-msTax5F4h5DToWaKS0uXhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5afb3d-0f37-44b1-811e-46610fa8d56e/1/QBHQeWYLj4Ol1Dd4wblL3T62PCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5afb3d-0f37-44b1-811e-46610fa8d56e/1/Zdxu-msTax5F4h5DToWaKS0uXhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.232.0/22
IPv6:
2a06:b600::/29
Signature Algorithm: sha256WithRSAEncryption
9b:52:e2:9f:03:6f:44:13:05:42:0b:50:68:d5:10:11:2f:21:
f8:bb:e2:d5:c0:11:aa:ec:b7:d7:a7:63:1a:65:4f:09:a1:6a:
96:f9:87:92:4b:d3:ef:6e:72:1a:90:c1:ac:02:a8:a5:2e:86:
11:e3:dc:40:3b:94:4a:bc:a0:d2:5f:ee:8e:9e:03:09:00:84:
9d:cd:a0:17:9b:a2:c1:ea:40:f2:5b:e2:11:94:5a:28:40:99:
05:bf:37:c8:27:59:cc:8b:2c:f8:85:79:cb:83:66:dc:82:a5:
b3:72:10:b1:5e:c6:d2:c6:33:2f:63:ad:55:53:89:69:fc:e8:
46:2a:54:99:f9:a9:06:36:60:e7:96:72:d4:4e:1d:73:4b:a9:
bf:08:d0:aa:6c:54:38:7c:60:76:1c:f4:af:94:b3:02:a5:c8:
1c:84:c8:7e:56:46:90:82:45:1e:30:a7:5c:2a:42:3d:04:f0:
f6:dd:2e:9d:04:92:08:d6:56:b5:5f:cf:00:a7:a7:c3:23:47:
1a:cb:5a:17:68:57:d8:8a:d8:90:26:02:58:e1:42:14:13:8f:
e8:20:92:d2:32:e9:df:99:cd:4e:06:e9:11:96:0b:94:3e:d4:
59:99:3c:cb:9e:3c:aa:e0:56:88:85:88:a6:22:af:3e:ef:7a:
06:fd:57:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:21 2024 by rpki-client on console-fra.rpki-client.org