Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/qwojmIBxZ14zhOkneyiK-50Mh58.roa
File: qwojmIBxZ14zhOkneyiK-50Mh58.roa (raw, json)
Hash identifier: C8LGKm54YqZddg6l852eVIHNPTQ6R4XK/yoTeVOI+38=
Subject key identifier: AB:0A:23:98:80:71:67:5E:33:84:E9:27:7B:28:8A:FB:9D:0C:87:9F
Certificate issuer: /CN=8323b9731b196b1acbc829f5b28b325fd9d3e3d4
Certificate serial: 0476F999
Authority key identifier: 83:23:B9:73:1B:19:6B:1A:CB:C8:29:F5:B2:8B:32:5F:D9:D3:E3:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyO5cxsZaxrLyCn1sosyX9nT49Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/qwojmIBxZ14zhOkneyiK-50Mh58.roa
Signing time: Sat 01 Jan 2022 14:00:26 +0000
ROA not before: Sat 01 Jan 2022 14:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206332
IP address blocks: 185.171.201.0/24 maxlen: 24
185.146.47.0/24 maxlen: 24
185.146.46.0/24 maxlen: 24
2a07:4d80::/32 maxlen: 32
2a10:55c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74906009 (0x476f999)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8323b9731b196b1acbc829f5b28b325fd9d3e3d4
Validity
Not Before: Jan 1 14:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab0a23988071675e3384e9277b288afb9d0c879f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:12:60:94:1e:d1:04:76:00:62:96:14:ed:77:
59:7d:11:56:4c:12:e2:b5:2d:f1:b3:74:22:ef:2c:
ca:3b:47:6b:75:ca:c8:55:7b:ad:96:10:d2:27:da:
a7:4f:57:0a:c3:42:53:2a:1f:44:ae:08:c3:a7:28:
1f:f3:0a:16:44:8c:1e:9c:01:42:50:a1:27:48:d7:
fb:41:0d:11:c4:78:7a:f5:84:31:f8:1b:a7:e7:bd:
e0:23:cc:b5:c1:e6:ca:b1:49:d0:78:87:b3:88:c7:
c0:f5:53:65:80:e9:54:f7:2f:c4:5f:f7:90:b7:f3:
a2:a2:43:55:ae:f3:98:a4:99:ae:70:8b:d4:20:56:
3b:4f:97:51:ac:92:70:95:26:88:48:3a:48:67:7d:
85:94:8f:ce:06:b3:5a:01:9a:a7:b4:86:15:74:f7:
98:23:f1:63:7c:69:cf:49:ce:6c:e2:2d:83:06:43:
86:08:48:e4:90:c8:c9:97:76:13:36:86:c9:84:43:
02:c4:42:de:8e:f2:dc:13:4d:a2:43:6c:2b:0a:a7:
ea:54:ad:f4:a3:1d:bc:32:97:70:fc:95:bf:6b:56:
b9:15:ee:e5:80:00:38:69:9b:ec:9f:88:58:48:73:
92:cc:8e:fc:de:94:5d:5a:de:9d:f9:21:fd:b8:51:
ae:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:0A:23:98:80:71:67:5E:33:84:E9:27:7B:28:8A:FB:9D:0C:87:9F
X509v3 Authority Key Identifier:
keyid:83:23:B9:73:1B:19:6B:1A:CB:C8:29:F5:B2:8B:32:5F:D9:D3:E3:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyO5cxsZaxrLyCn1sosyX9nT49Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/qwojmIBxZ14zhOkneyiK-50Mh58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/gyO5cxsZaxrLyCn1sosyX9nT49Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.46.0/23
185.171.201.0/24
IPv6:
2a07:4d80::/32
2a10:55c0::/29
Signature Algorithm: sha256WithRSAEncryption
c2:ac:4b:b8:c4:57:37:88:21:40:de:83:64:87:ab:4f:ad:76:
98:82:6f:31:a8:de:ee:58:6b:a4:ba:a8:1f:c8:0e:59:1a:d6:
51:03:72:e2:1f:7e:40:74:69:67:8b:35:67:76:b1:d7:53:71:
0e:d9:82:39:55:3b:c5:49:b7:75:f6:2f:a0:df:9c:ff:b9:cd:
ea:6e:b8:f2:ba:8f:ad:a3:be:55:75:4b:1e:08:32:a0:6f:e9:
e2:42:7b:3b:9e:2d:8d:fb:e2:86:c0:62:65:c1:2c:3d:bb:f8:
d3:19:e1:4f:56:d6:aa:9c:dd:2f:b1:f3:9c:d7:e4:d5:07:94:
f8:41:4e:92:67:46:72:b2:46:29:86:79:5b:9a:5d:72:5b:2c:
53:3d:40:a7:fc:fc:ea:09:b7:14:c7:4c:f8:e5:b3:90:f8:0c:
24:95:52:0f:ba:e8:33:19:10:9a:ff:76:c8:94:7a:5a:ca:03:
6d:48:2e:b0:50:ee:63:3e:af:db:11:6a:76:2f:b0:7a:6e:cb:
d5:d5:6c:ea:71:36:64:07:d5:d4:1f:12:2d:bc:60:0b:ed:5b:
aa:f4:6d:d1:b8:ea:68:0f:b5:1e:9d:08:f2:4f:6b:55:cb:b2:
11:3f:fd:5b:a0:4d:8f:a1:a0:2b:12:77:a5:62:d9:4f:ae:b2:
09:b7:19:34
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:23 2024 by rpki-client on console-fra.rpki-client.org