Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qr26p0RSbDWXa3sLdhZEYsioNwk.roa
File: qr26p0RSbDWXa3sLdhZEYsioNwk.roa (raw, json)
Hash identifier: adgM1opKTEBXgw/bVNRURKEN3UbMLdV4K/L5tqOVbAg=
Subject key identifier: AA:BD:BA:A7:44:52:6C:35:97:6B:7B:0B:76:16:44:62:C8:A8:37:09
Certificate issuer: /CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Certificate serial: 0B4416F9
Authority key identifier: A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qr26p0RSbDWXa3sLdhZEYsioNwk.roa
Signing time: Tue 17 May 2022 09:02:29 +0000
ROA not before: Tue 17 May 2022 09:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3262
IP address blocks: 185.226.229.0/24 maxlen: 24
185.220.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189011705 (0xb4416f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Validity
Not Before: May 17 09:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aabdbaa744526c35976b7b0b76164462c8a83709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4f:61:80:bc:dc:f3:c0:b4:1c:bc:ef:c3:7b:
8a:c5:65:55:ad:4e:83:20:0d:da:6c:db:9d:48:f3:
22:48:55:23:4c:9f:17:ff:24:75:81:fa:17:c2:c2:
19:b8:29:46:0a:bb:82:25:79:43:87:43:a6:de:8f:
04:1c:46:3d:2b:43:ad:7c:ca:f9:6f:40:58:b9:43:
ca:08:96:4a:0b:d7:9b:7b:7c:b1:b0:d9:d4:f2:4f:
50:dc:e3:bd:dd:a4:fa:e3:86:48:e3:ea:a8:cc:2f:
c9:07:b1:6c:b8:30:8b:ec:5a:da:e6:ac:a4:60:d1:
27:4c:05:f1:50:2e:54:69:2c:4a:e8:30:1e:d4:8e:
4a:95:d6:ca:98:1d:72:9c:4a:12:35:88:97:32:44:
b9:e1:6a:e4:a4:8b:58:ec:ac:68:06:dd:aa:97:dd:
e6:db:64:6c:81:43:24:c6:3d:e0:82:ba:57:d7:57:
5d:8c:7c:16:0e:8f:d8:6f:e4:be:ac:30:da:97:41:
b9:15:4b:8d:01:14:ec:4a:a8:0e:06:de:a0:55:cc:
bf:cf:26:00:0e:30:77:d9:45:45:dc:71:13:17:3b:
ce:68:6d:1e:8f:a8:76:2d:4a:55:c5:cd:3f:8f:c1:
f9:91:65:bb:a9:37:96:98:c5:ae:1a:8f:37:50:09:
a2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:BD:BA:A7:44:52:6C:35:97:6B:7B:0B:76:16:44:62:C8:A8:37:09
X509v3 Authority Key Identifier:
keyid:A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qr26p0RSbDWXa3sLdhZEYsioNwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qEkgTKTw605W4I4Jn-N4XOBv_qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.166.0/24
185.226.229.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:49:9c:21:b4:07:64:ff:0c:1d:cf:19:5f:25:3a:0b:45:80:
a9:36:89:14:76:8b:53:ee:dc:4b:7c:5a:ff:30:0f:3d:d2:d3:
39:b9:b3:85:4a:64:dc:d4:ec:ea:62:d7:2c:e3:ea:eb:1a:e5:
ad:02:76:2a:b9:8e:e3:83:4f:99:d8:1b:bb:f7:e2:b8:67:6a:
27:9f:53:4c:68:57:7b:74:34:fa:b5:5c:00:48:5a:9b:c4:64:
4b:e8:83:a8:13:88:cd:fb:85:84:0c:1c:6e:35:33:bd:12:77:
1b:de:bf:8f:fc:a5:9b:b5:55:6e:a9:dd:d8:61:a4:b1:bf:83:
9d:aa:96:45:3b:56:c7:fd:cf:d2:8e:66:0a:1d:ae:9b:cc:c3:
dd:1d:5d:fd:cc:dd:4a:c2:89:85:f8:9b:73:02:58:e4:74:61:
f9:9b:62:96:eb:32:69:d2:9e:d3:8c:e5:20:85:63:fd:af:ca:
05:e2:5c:01:2d:fa:c9:31:48:8b:4a:a4:d7:b6:5d:2d:cd:3d:
9c:f5:6a:d5:02:f2:4d:ee:e7:34:7d:1b:dc:d9:fb:f7:20:66:
6c:d9:6c:07:2a:90:de:2c:4a:4e:41:69:4f:56:9e:48:0c:a8:
1c:bf:dc:47:e0:16:64:1c:ff:50:59:5b:76:8d:3c:8a:5c:e5:
5d:0a:08:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:02 2024 by rpki-client on console-fra.rpki-client.org