Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/qq1FHW6opoz0bd4yZ37PJmQ-M3o.roa
File: qq1FHW6opoz0bd4yZ37PJmQ-M3o.roa (raw, json)
Hash identifier: 0j2n45gRCIftXSE/CWeJWZSN7Hi2Q0+cgElADvHSR9s=
Subject key identifier: AA:AD:45:1D:6E:A8:A6:8C:F4:6D:DE:32:67:7E:CF:26:64:3E:33:7A
Certificate issuer: /CN=77b8cf454b0962d16a4855808fd3abc15852bbd8
Certificate serial: 3DD9EAC7
Authority key identifier: 77:B8:CF:45:4B:09:62:D1:6A:48:55:80:8F:D3:AB:C1:58:52:BB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7jPRUsJYtFqSFWAj9OrwVhSu9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/qq1FHW6opoz0bd4yZ37PJmQ-M3o.roa
Signing time: Sat 01 Jan 2022 07:58:37 +0000
ROA not before: Sat 01 Jan 2022 07:58:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199269
IP address blocks: 185.22.164.0/22 maxlen: 22
185.22.164.0/23 maxlen: 23
185.22.166.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1037691591 (0x3dd9eac7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77b8cf454b0962d16a4855808fd3abc15852bbd8
Validity
Not Before: Jan 1 07:58:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aaad451d6ea8a68cf46dde32677ecf26643e337a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:43:25:08:0b:02:36:83:1c:38:3c:9b:c9:4c:
5d:81:0c:92:8a:fe:7b:5d:00:f2:87:2d:8f:6a:b5:
3f:eb:f8:15:4f:12:b6:5f:70:ee:68:83:b9:9a:bc:
12:55:8f:24:4b:e9:c3:49:ca:8d:c3:79:de:c5:79:
28:c5:5b:f3:d4:82:c2:2b:81:ba:d4:22:43:8f:15:
55:39:8b:80:05:95:40:3f:5b:6d:d2:72:0c:b1:1f:
43:d4:e4:89:99:be:35:4c:3c:25:ed:e8:8f:97:66:
9e:ce:6b:9e:69:09:e4:1e:55:e7:78:3e:46:2f:3b:
af:73:23:3d:22:c8:22:9f:88:a5:37:af:92:8a:f8:
e9:e2:bd:21:3c:92:d6:a2:a2:7f:2b:c1:0b:0a:f2:
27:36:5f:3b:2c:f5:23:2e:49:7f:1b:d1:be:e4:d4:
71:3f:bf:f3:bc:fb:96:87:b8:56:c8:a9:7e:92:d4:
3f:d9:1d:1e:c8:a6:28:bd:73:03:b8:fb:d1:60:34:
20:00:14:2c:bc:1f:33:a7:cd:a6:8c:9f:22:49:ed:
50:6b:b1:29:00:85:13:33:e9:b5:df:e8:a8:34:e3:
3f:5b:20:d1:bf:17:f0:40:11:64:0f:39:ca:f4:a1:
ce:04:ed:06:5d:6c:8c:93:83:3a:78:20:55:5a:2b:
a6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:AD:45:1D:6E:A8:A6:8C:F4:6D:DE:32:67:7E:CF:26:64:3E:33:7A
X509v3 Authority Key Identifier:
keyid:77:B8:CF:45:4B:09:62:D1:6A:48:55:80:8F:D3:AB:C1:58:52:BB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7jPRUsJYtFqSFWAj9OrwVhSu9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/qq1FHW6opoz0bd4yZ37PJmQ-M3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/c171ca-4b1b-4187-ba46-a4fc9e2458ec/1/d7jPRUsJYtFqSFWAj9OrwVhSu9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.164.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:cc:81:5b:53:cb:46:08:61:ca:55:32:a2:16:4d:68:c4:f7:
ad:7f:cb:2e:fb:e5:4d:9c:e6:c6:90:77:bd:9d:2c:a6:75:08:
f2:56:ae:98:a0:63:21:03:49:9e:3b:b1:5c:bd:06:11:e6:bc:
bb:47:f6:a3:5a:0a:98:ec:ad:ac:42:fd:d0:d8:b3:1b:f4:cf:
35:de:b1:e2:74:12:b5:50:89:9e:71:e1:67:4a:6f:40:e2:54:
c5:29:4b:0f:50:aa:d8:07:4b:34:f0:9d:2d:f2:8a:5f:2b:44:
bb:13:5a:a4:54:53:96:bd:b8:c6:fd:e5:64:f9:bb:a9:a4:aa:
6f:32:1c:77:d8:dc:05:99:40:62:04:e7:a2:e2:94:a1:da:7d:
9c:c2:32:cb:a1:e6:9c:0a:89:d1:38:5b:89:3b:28:c3:7a:7f:
ab:35:54:87:59:39:90:b5:6c:fc:49:d2:72:3b:f5:66:c7:72:
10:7e:fd:76:ac:09:c3:07:91:12:46:fb:07:b2:dd:09:af:2b:
dc:0f:5b:70:d9:d0:fd:b2:5b:27:6c:6f:8c:57:ac:6b:28:dd:
55:4b:17:d0:29:70:22:a7:fa:6c:8b:10:27:78:03:fc:27:d0:
84:e2:73:38:3c:87:78:31:4b:f3:18:ea:ff:33:c5:52:b4:18:
c6:57:ce:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:24 2024 by rpki-client on console-ams.rpki-client.org