Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/Gq03X38Qw-6THPMLJiGpExkPdMg.roa
File: Gq03X38Qw-6THPMLJiGpExkPdMg.roa (raw, json)
Hash identifier: NFIUp0w3DfsJV/khM0zH/bi9rznBw8gdLnR132JWSnM=
Subject key identifier: 1A:AD:37:5F:7F:10:C3:EE:93:1C:F3:0B:26:21:A9:13:19:0F:74:C8
Certificate issuer: /CN=f3c86ea2995e934b65041911cb9eb65872c2289f
Certificate serial: 0583FF8E
Authority key identifier: F3:C8:6E:A2:99:5E:93:4B:65:04:19:11:CB:9E:B6:58:72:C2:28:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/88huoplek0tlBBkRy562WHLCKJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/Gq03X38Qw-6THPMLJiGpExkPdMg.roa
Signing time: Thu 03 Feb 2022 09:51:51 +0000
ROA not before: Thu 03 Feb 2022 09:51:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213063
IP address blocks: 185.159.144.0/22 maxlen: 24
185.226.165.0/24 maxlen: 24
2a0d:e200::/29 maxlen: 29
2a0f:d540::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92536718 (0x583ff8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3c86ea2995e934b65041911cb9eb65872c2289f
Validity
Not Before: Feb 3 09:51:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1aad375f7f10c3ee931cf30b2621a913190f74c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:dd:84:c5:b7:f1:1d:bf:6c:eb:14:bf:51:68:
4a:a7:8a:e5:e7:d9:68:71:b1:1f:bc:fc:9b:8c:9f:
f9:b9:f7:61:9a:fd:6b:aa:63:80:14:21:55:71:30:
b9:91:78:79:c5:21:b5:b9:a1:cb:b3:24:df:45:b7:
67:96:84:55:3a:68:90:f7:c3:d2:cd:f8:9c:8f:5d:
41:b3:8c:12:6b:69:ad:aa:8e:1d:84:74:f6:eb:4b:
26:51:69:7a:39:fe:96:5e:25:65:25:c0:1a:21:15:
eb:de:6c:fb:33:d6:0b:8b:4c:de:33:db:a1:7a:67:
7b:3e:39:e3:8a:56:16:47:93:bb:48:40:ab:ff:8e:
3e:86:37:f0:4a:e0:2c:a1:cf:ad:aa:af:5a:77:47:
9c:47:7a:6b:e3:7a:7d:7d:3d:63:88:fc:38:ec:04:
1c:17:1b:21:fc:2c:8b:73:7c:74:41:77:73:3a:93:
ed:4c:d0:41:f5:da:04:d9:51:91:4a:12:22:32:5e:
31:5a:7c:6b:df:24:03:40:62:b9:05:f0:fc:51:7e:
b5:e7:3d:b4:06:c4:61:1d:80:93:49:8f:44:dd:2b:
15:b4:a4:c0:82:f1:b5:e3:85:4e:9c:1f:84:7e:70:
d4:34:2b:2c:b9:76:ed:4f:ff:aa:36:16:70:ac:bc:
51:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:AD:37:5F:7F:10:C3:EE:93:1C:F3:0B:26:21:A9:13:19:0F:74:C8
X509v3 Authority Key Identifier:
keyid:F3:C8:6E:A2:99:5E:93:4B:65:04:19:11:CB:9E:B6:58:72:C2:28:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/88huoplek0tlBBkRy562WHLCKJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/Gq03X38Qw-6THPMLJiGpExkPdMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e554aa-e4ed-4948-b6fc-c635d8eed447/1/88huoplek0tlBBkRy562WHLCKJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.144.0/22
185.226.165.0/24
IPv6:
2a0d:e200::/29
2a0f:d540::/29
Signature Algorithm: sha256WithRSAEncryption
5d:62:93:ff:34:62:f8:bd:04:44:58:65:12:d1:c2:fe:95:11:
97:9e:05:46:04:71:25:ce:c4:a7:ea:21:41:11:59:d5:eb:7a:
58:48:90:a4:e7:41:ad:be:f9:b1:a0:13:c0:55:47:91:12:b3:
9f:11:e6:2c:8f:bf:0b:9c:61:26:81:55:19:44:1a:4d:82:3e:
f8:00:b6:cb:a3:63:8d:0e:45:42:e4:19:38:6e:eb:7c:77:c5:
49:54:0b:23:23:d5:a4:20:d3:ae:68:d8:01:9c:29:15:2e:83:
19:21:90:e2:31:29:48:da:02:0a:d6:8a:f7:92:ab:10:1f:b1:
a5:4a:bf:04:a5:17:a0:86:b8:7e:c2:e1:26:c8:ca:2d:d4:7b:
7b:65:f4:f6:f7:94:f4:3a:d8:d8:22:61:7e:cd:43:7f:62:7e:
42:36:da:6c:93:2a:42:82:a2:be:f9:49:bf:5d:ee:5d:9c:ac:
89:da:11:3e:a1:88:b1:54:b5:21:67:95:61:33:f1:21:82:0f:
6b:8a:ce:41:4b:e7:d9:8e:a1:51:ad:c4:85:c0:cc:b9:4f:0f:
dc:aa:09:ad:29:c4:e1:0e:84:27:d7:39:f8:50:77:5a:5a:48:
fa:0f:aa:e8:c8:70:72:07:4f:f6:96:da:dd:b7:09:8c:64:d0:
13:f2:6e:ac
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:06 2024 by rpki-client on console-fra.rpki-client.org