Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/SqFe-cWi6-iuKHUgb_m1Od04B6Y.roa
File: SqFe-cWi6-iuKHUgb_m1Od04B6Y.roa (raw, json)
Hash identifier: QKYfs6L7HU/TNy2t5ocVbl92D+JzHPwHNGR0aW+E4qk=
Subject key identifier: 4A:A1:5E:F9:C5:A2:EB:E8:AE:28:75:20:6F:F9:B5:39:DD:38:07:A6
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 388EC9AB
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/SqFe-cWi6-iuKHUgb_m1Od04B6Y.roa
Signing time: Sat 01 Jan 2022 05:54:24 +0000
ROA not before: Sat 01 Jan 2022 05:54:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200709
IP address blocks: 85.254.72.0/24 maxlen: 24
159.148.186.0/24 maxlen: 24
2a02:610:fffa::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948881835 (0x388ec9ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4aa15ef9c5a2ebe8ae2875206ff9b539dd3807a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:99:5d:be:2c:35:25:dc:e1:4e:0e:3c:53:47:
18:e4:af:ea:c3:c9:ff:cc:fd:45:4a:92:39:f9:16:
10:1c:8c:01:f6:79:86:eb:46:fa:ff:3f:2a:f5:bc:
4d:d4:2e:c6:4b:ba:25:32:d2:82:6b:1c:c7:9b:e7:
cf:3b:a4:0a:a7:a5:b6:0b:e5:e0:3b:dd:f6:e9:e6:
0e:e0:fb:f7:d8:8f:51:a3:fb:b9:07:a5:7d:1e:d3:
14:eb:1a:c3:d3:8e:21:7b:f9:2f:84:94:20:f2:99:
a6:2e:0f:3f:01:90:0b:b8:36:60:12:a6:ee:ec:e8:
df:81:1d:ec:03:24:4a:13:39:ea:b7:3a:38:15:32:
94:b3:9f:4d:86:7c:4b:dd:51:27:11:c7:04:38:c5:
a2:35:77:91:1d:ed:98:80:63:40:ba:6d:06:f4:4b:
4e:b9:9d:9c:c8:9b:6f:3c:c1:c4:f3:75:d6:25:0e:
9d:7b:74:14:a4:b9:66:05:6a:85:d5:2a:70:86:a9:
fe:94:14:da:72:3b:e0:f4:69:5f:19:fb:dc:d9:2d:
66:57:d3:29:6e:d7:b3:48:25:58:d9:6a:11:e2:89:
97:47:d1:36:37:a0:22:8f:ad:17:76:b2:a1:67:19:
59:d2:78:6f:8e:70:83:30:11:32:39:fa:b3:e2:a0:
0f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A1:5E:F9:C5:A2:EB:E8:AE:28:75:20:6F:F9:B5:39:DD:38:07:A6
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/SqFe-cWi6-iuKHUgb_m1Od04B6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.72.0/24
159.148.186.0/24
IPv6:
2a02:610:fffa::/48
Signature Algorithm: sha256WithRSAEncryption
2b:83:3b:99:ad:f5:11:ab:cb:fc:96:39:31:00:a8:95:0d:c2:
9e:b7:cf:3c:22:61:7f:78:e9:5d:65:a5:15:c3:93:da:bf:71:
e4:4c:65:6c:40:55:10:d1:91:14:52:fe:5e:07:fd:3b:03:d3:
8e:4f:9a:67:7b:76:55:db:47:3b:2f:bc:cd:df:ba:c9:a6:d4:
cd:6a:01:38:c4:b3:7f:10:7b:80:bc:eb:4b:f8:2f:5b:8c:fe:
a5:ee:6a:d1:fa:f6:65:66:e9:43:52:e7:d2:3c:6a:e2:de:7c:
83:15:bc:d7:62:96:07:d6:cf:b9:26:f1:3b:53:19:4b:31:8a:
da:e2:2b:90:3f:00:7d:07:e8:d2:48:1e:32:18:d2:b8:5e:51:
c5:fd:da:9c:f3:70:a3:3b:d5:f8:dd:a7:32:0f:01:77:0f:d8:
f4:61:9b:77:cb:df:7f:9d:9c:70:d5:a8:65:6a:b4:f0:af:d6:
3f:2a:27:89:a1:53:33:e5:b8:a1:82:ac:70:bf:70:d4:4e:0d:
74:f6:d1:ef:02:f9:aa:e4:c1:85:a9:95:cc:74:78:12:81:11:
3b:77:f3:fa:cf:d5:ce:80:35:88:08:56:21:59:79:ea:be:6a:
60:15:1a:b4:3c:d5:20:d5:a3:97:05:4b:10:7d:93:a6:d8:ad:
62:c5:70:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:45 2023 by rpki-client on console-fra.rpki-client.org