Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/93620e-7528-4aac-9212-c7857a033962/1/qAdque3w4ipAQ7ln5tcJqgv9bbk.roa
File: qAdque3w4ipAQ7ln5tcJqgv9bbk.roa (raw, json)
Hash identifier: 1OWWsVYwCuDYEfz5eb3Z+vOr7dx5xk0i6Gf2GdHToCw=
Subject key identifier: A8:07:6A:B9:ED:F0:E2:2A:40:43:B9:67:E6:D7:09:AA:0B:FD:6D:B9
Certificate issuer: /CN=c3a882b10f1ba9ea4ba1fa7706db64747e62a413
Certificate serial: 0A262CC2
Authority key identifier: C3:A8:82:B1:0F:1B:A9:EA:4B:A1:FA:77:06:DB:64:74:7E:62:A4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6iCsQ8bqepLofp3BttkdH5ipBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/93620e-7528-4aac-9212-c7857a033962/1/qAdque3w4ipAQ7ln5tcJqgv9bbk.roa
Signing time: Sat 01 Jan 2022 02:00:00 +0000
ROA not before: Sat 01 Jan 2022 02:00:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205373
IP address blocks: 185.220.160.0/22 maxlen: 24
2a0b:f940::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170273986 (0xa262cc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3a882b10f1ba9ea4ba1fa7706db64747e62a413
Validity
Not Before: Jan 1 02:00:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8076ab9edf0e22a4043b967e6d709aa0bfd6db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4b:5a:a6:80:71:cb:23:83:93:12:21:04:0e:
e3:9f:20:a3:1b:6d:a2:03:00:0c:1e:cf:07:6f:b5:
48:e4:c1:81:5a:bb:cf:69:5f:e0:45:66:50:46:b2:
6d:3d:0c:7f:4e:9b:fb:7a:e3:67:dc:92:e0:31:99:
5d:b4:0d:97:1a:4d:47:a4:4e:a2:c3:b8:12:e4:66:
a9:69:f8:e3:81:1d:ad:ae:fa:d0:1c:35:10:ee:70:
40:ef:54:76:88:37:fa:6c:0f:4c:af:23:54:a9:d8:
4c:6b:9d:55:ca:b3:57:ef:3e:a8:aa:da:76:b7:43:
ed:6c:5c:a6:77:62:1b:8a:9f:c5:ca:bd:55:69:5c:
67:03:56:cf:7c:5c:81:15:20:97:0f:dd:9a:36:94:
69:33:b2:f3:d3:46:47:c8:57:bb:32:18:32:80:87:
00:bd:7b:76:91:c5:7c:87:b7:60:16:ec:27:03:8f:
89:75:28:03:a1:3d:b6:e0:60:a6:bf:73:66:25:0a:
13:3b:86:3a:02:cf:2a:9d:e1:4a:6b:2c:4e:28:51:
ac:94:c5:63:4d:36:65:86:3d:21:fd:65:f3:a5:91:
34:29:52:ba:4f:8a:0f:b4:43:44:16:89:1b:9b:52:
74:7d:5f:b0:bc:b1:0a:41:e1:7c:3a:bf:75:44:2a:
72:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:07:6A:B9:ED:F0:E2:2A:40:43:B9:67:E6:D7:09:AA:0B:FD:6D:B9
X509v3 Authority Key Identifier:
keyid:C3:A8:82:B1:0F:1B:A9:EA:4B:A1:FA:77:06:DB:64:74:7E:62:A4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6iCsQ8bqepLofp3BttkdH5ipBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/93620e-7528-4aac-9212-c7857a033962/1/qAdque3w4ipAQ7ln5tcJqgv9bbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/93620e-7528-4aac-9212-c7857a033962/1/w6iCsQ8bqepLofp3BttkdH5ipBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.160.0/22
IPv6:
2a0b:f940::/32
Signature Algorithm: sha256WithRSAEncryption
1a:9a:b5:0e:ad:af:64:cc:f3:dd:10:22:e9:a7:76:af:8d:6b:
b3:08:7d:a5:0a:30:7b:df:4f:08:b8:c4:d3:fe:cf:63:97:a6:
50:f8:ef:82:bb:d8:1c:96:45:c8:4c:43:4c:90:1e:4d:71:73:
53:5f:93:f3:93:a0:45:c2:f3:b6:e3:97:9d:e9:5d:a3:f1:58:
bc:04:f3:2a:6a:db:52:e9:e1:ec:68:e2:5e:42:82:bf:37:d8:
a0:c5:1c:e9:f6:4c:c3:53:8b:ce:69:dd:1e:45:9c:eb:88:08:
57:df:71:30:e1:79:79:51:9c:2f:41:c4:b3:94:8f:fe:e2:6f:
35:aa:8c:e3:7d:20:16:33:0a:b5:4c:a2:be:c3:83:b4:bb:a5:
30:f2:b3:43:34:a2:2d:5c:43:a8:7a:8c:28:6a:50:5d:5c:3b:
b1:61:01:d8:04:65:e0:5f:50:15:1b:0f:f4:c4:9d:43:07:e0:
b7:88:d1:7e:20:7c:3e:95:eb:6c:41:27:ea:1a:6f:7b:e9:90:
49:db:d4:b5:92:87:69:ce:c5:ba:e2:23:95:c0:6b:e1:7b:b0:
8e:80:8f:6d:a4:49:b5:c9:d2:5f:a8:30:8c:da:41:5e:bb:86:
ee:ce:bb:e5:dd:87:ca:38:b2:e8:67:f1:31:b3:c0:a6:10:95:
10:71:fd:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:09 2024 by rpki-client on console-fra.rpki-client.org