Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/QUo4Ry68wGgJYhM9OnuzdugUg2I.roa
File: QUo4Ry68wGgJYhM9OnuzdugUg2I.roa (raw, json)
Hash identifier: 1VwRgYmohLGe0K67jreDKDmHEWXNBfm1MYNFtSr3kGs=
Subject key identifier: 41:4A:38:47:2E:BC:C0:68:09:62:13:3D:3A:7B:B3:76:E8:14:83:62
Certificate issuer: /CN=5393ab93e85701a73ef4d5e00ed6eb9893937394
Certificate serial: 0181F288F1A30F74BFAEA04020AA678DAFF3
Authority key identifier: 53:93:AB:93:E8:57:01:A7:3E:F4:D5:E0:0E:D6:EB:98:93:93:73:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U5Ork-hXAac-9NXgDtbrmJOTc5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/QUo4Ry68wGgJYhM9OnuzdugUg2I.roa
Signing time: Tue 12 Jul 2022 13:11:09 +0000
ROA not before: Tue 12 Jul 2022 13:11:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 185.16.132.0/22 maxlen: 22
185.77.162.0/24 maxlen: 24
185.77.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f2:88:f1:a3:0f:74:bf:ae:a0:40:20:aa:67:8d:af:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5393ab93e85701a73ef4d5e00ed6eb9893937394
Validity
Not Before: Jul 12 13:11:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=414a38472ebcc0680962133d3a7bb376e8148362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:99:48:6e:46:77:22:c6:5b:4e:6f:e0:82:5c:
cd:b0:fe:0c:df:c2:ef:4b:15:44:7f:33:74:e9:df:
8c:90:09:bb:00:b5:3e:b6:48:b1:c3:c6:05:ae:af:
96:e4:89:b9:85:94:67:aa:46:7e:15:08:d7:ed:33:
05:42:22:1d:50:15:5a:c9:62:37:ca:71:a2:5b:59:
38:34:14:c5:c5:cb:5e:8b:2b:7e:63:d0:12:1a:52:
bf:4d:c0:19:0c:29:ae:a2:ed:1f:7e:c3:b7:73:cd:
53:4b:76:32:0a:75:4d:4b:ba:0d:b3:3f:39:88:d2:
77:6a:8a:ea:ef:b4:04:db:23:65:82:74:16:de:e6:
4b:b8:ef:bf:f3:0d:3d:61:0e:a9:6f:bd:43:76:53:
d8:b1:d3:fc:25:59:19:9f:68:c7:41:55:c8:3e:92:
08:97:41:51:92:c5:60:84:4f:45:2f:d1:0a:8c:13:
70:3b:b2:a0:f5:7a:1e:cb:27:aa:a3:6b:5a:a1:f6:
8b:c4:2f:77:65:f7:23:d4:af:ed:69:30:5d:5a:0e:
22:83:87:3f:bf:8b:f6:28:c2:7b:a4:48:89:e1:19:
71:b3:22:a8:8d:df:92:35:b2:77:e6:b1:65:a4:f8:
29:01:a6:41:01:1d:dc:01:63:5e:ad:a6:66:ce:41:
01:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4A:38:47:2E:BC:C0:68:09:62:13:3D:3A:7B:B3:76:E8:14:83:62
X509v3 Authority Key Identifier:
keyid:53:93:AB:93:E8:57:01:A7:3E:F4:D5:E0:0E:D6:EB:98:93:93:73:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U5Ork-hXAac-9NXgDtbrmJOTc5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/QUo4Ry68wGgJYhM9OnuzdugUg2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/ad7662-73ff-4594-8e30-59a7efd384c0/1/U5Ork-hXAac-9NXgDtbrmJOTc5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.132.0/22
185.77.160.0/24
185.77.162.0/24
Signature Algorithm: sha256WithRSAEncryption
07:05:b9:b9:8e:0f:b5:c6:26:cf:0b:cf:7d:a6:d4:ba:72:5f:
ef:bc:5c:12:92:2b:3d:69:ed:1b:36:a1:2b:4e:dd:5b:92:ac:
bd:7d:83:8b:3e:96:55:2e:c1:26:67:07:77:1d:53:77:6b:bb:
4a:17:42:8f:f4:15:35:f7:46:6f:dc:2c:44:69:75:c6:35:a1:
11:7a:67:28:cb:b0:83:50:77:14:c2:a8:44:92:ec:4e:48:db:
66:7a:fc:17:68:1a:22:84:33:db:bc:01:c5:9e:2f:7d:c5:e3:
02:cb:20:19:3e:96:e3:ba:9d:ff:0c:ff:6c:ca:67:c5:95:a4:
5d:11:5e:18:8c:1a:5d:ac:95:ff:a9:99:11:b1:61:b7:c7:6e:
01:01:1c:82:16:29:70:6e:53:e7:61:06:d3:ed:d9:2c:86:09:
99:a0:86:16:20:ac:45:86:37:fb:ca:93:d9:07:61:c3:7f:b7:
26:da:20:41:77:22:2a:a7:af:71:6c:a9:e7:dd:92:c9:c7:0d:
03:5d:7b:ae:68:b0:c7:c8:85:b8:a9:00:8b:c5:6e:32:e7:d3:
8a:08:54:cf:05:35:e0:ca:97:96:10:46:0c:3e:30:70:fd:fd:
d1:07:7c:4f:97:ce:3c:dc:2d:4f:d3:5c:c9:3d:7d:bb:2a:32:
dc:29:d8:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:28 2024 by rpki-client on console-ams.rpki-client.org