Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/mQwPgDX6DJy9VgcZyGp08FCbeOI.roa
File: mQwPgDX6DJy9VgcZyGp08FCbeOI.roa (raw, json)
Hash identifier: zQH3Y87IceRcsoq8vILwlx4g/MIgDn2Fbz1io7XegZE=
Subject key identifier: 99:0C:0F:80:35:FA:0C:9C:BD:56:07:19:C8:6A:74:F0:50:9B:78:E2
Certificate issuer: /CN=8afc31f36c97777f906b93e83ae657f00aeb3099
Certificate serial: 0D7ECB42
Authority key identifier: 8A:FC:31:F3:6C:97:77:7F:90:6B:93:E8:3A:E6:57:F0:0A:EB:30:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivwx82yXd3-Qa5PoOuZX8ArrMJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/mQwPgDX6DJy9VgcZyGp08FCbeOI.roa
Signing time: Sat 01 Jan 2022 03:57:40 +0000
ROA not before: Sat 01 Jan 2022 03:57:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205164
IP address blocks: 185.214.192.0/22 maxlen: 32
2a0c:f600::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226413378 (0xd7ecb42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8afc31f36c97777f906b93e83ae657f00aeb3099
Validity
Not Before: Jan 1 03:57:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=990c0f8035fa0c9cbd560719c86a74f0509b78e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:75:a0:62:9e:79:0b:a2:1a:b5:24:6b:21:17:
ca:be:a7:9f:9d:6c:8b:ea:9d:fd:e6:63:f3:2d:78:
90:f2:a1:ff:05:56:97:4a:53:0a:6c:65:58:3a:d6:
c7:3b:24:01:99:10:02:d6:0d:46:0b:72:f5:39:d3:
6a:8f:34:88:1e:84:f7:5e:a2:74:c1:04:ac:17:69:
ef:3f:b9:e1:c8:53:28:47:a0:93:3e:13:fc:ec:65:
a0:72:d7:ce:db:cb:45:3b:25:10:24:8c:b9:bf:3a:
76:71:cb:8a:93:22:f9:83:24:11:65:12:02:2d:8f:
01:65:80:0e:c3:3c:d3:8a:39:58:50:1a:28:67:43:
f2:9b:ae:67:e0:ea:bf:9f:aa:3e:e3:db:9f:9e:fa:
ee:44:37:df:da:e5:b0:da:94:db:ad:35:6e:88:13:
ca:5a:21:25:fc:27:bf:22:7f:86:12:f5:06:ac:f8:
15:bd:cd:b2:2d:ff:38:8a:2c:13:2b:d9:c1:b4:6b:
77:85:0d:df:02:20:35:5f:78:d4:4a:d1:30:9e:57:
df:15:fa:1d:69:58:85:dc:1e:a0:64:68:9f:40:af:
97:16:26:42:99:5d:35:7e:fb:32:a0:fb:ab:46:05:
a1:00:70:47:95:fe:33:b9:d3:23:b8:0a:df:57:3c:
86:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0C:0F:80:35:FA:0C:9C:BD:56:07:19:C8:6A:74:F0:50:9B:78:E2
X509v3 Authority Key Identifier:
keyid:8A:FC:31:F3:6C:97:77:7F:90:6B:93:E8:3A:E6:57:F0:0A:EB:30:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivwx82yXd3-Qa5PoOuZX8ArrMJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/mQwPgDX6DJy9VgcZyGp08FCbeOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/d9a004-b953-4c73-81e4-0711694000a0/1/ivwx82yXd3-Qa5PoOuZX8ArrMJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.192.0/22
IPv6:
2a0c:f600::/29
Signature Algorithm: sha256WithRSAEncryption
66:34:8f:4c:fe:3e:e4:94:45:a7:31:f9:15:6b:88:fd:00:ff:
72:fb:72:f8:76:0c:de:c5:38:a5:68:1d:e0:94:08:b5:97:ed:
e3:f6:13:aa:ba:35:aa:15:85:9a:ce:c1:38:e2:3c:a4:2a:ed:
0c:f9:ac:7e:fe:64:d8:0c:9b:4e:b4:5f:86:03:22:8d:ce:b3:
7f:21:03:d3:86:0d:1d:1b:00:51:06:01:1f:3b:9b:9d:33:c5:
67:95:11:3d:84:90:4d:ff:59:0e:ff:20:b0:ab:d2:94:a8:2f:
65:34:13:ab:d0:c7:61:97:98:db:4c:a1:51:0f:6b:28:9d:f4:
09:e7:39:77:9f:99:7d:09:c7:5f:a0:31:97:77:d5:42:01:fb:
26:ae:15:b5:8b:54:76:d5:a0:a3:f9:92:91:d5:91:ac:b0:8f:
3c:5c:a0:dc:14:a6:4c:f8:21:98:f0:b1:00:ff:6c:10:02:fe:
d2:b9:79:da:c0:97:ed:3c:6d:e4:90:9d:c2:be:98:14:e8:7b:
4d:18:3c:16:e1:05:84:28:60:b1:0f:ac:7f:da:e7:bd:77:bb:
dc:95:5e:c8:0a:1e:58:d3:b7:2f:f7:17:53:0a:96:a5:24:ba:
e9:99:31:ef:5d:bd:7f:91:26:8c:6a:c5:19:0f:f0:c6:8d:15:
e5:2a:85:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:33 2024 by rpki-client on console-ams.rpki-client.org