Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/q1oJnGQKzIG0zbHYP-Y197OW_rw.roa
File: q1oJnGQKzIG0zbHYP-Y197OW_rw.roa (raw, json)
Hash identifier: v+lQaWvNBIlPdcmmeI51EDmx9J/MA4ZBUScD9tuVoHo=
Subject key identifier: AB:5A:09:9C:64:0A:CC:81:B4:CD:B1:D8:3F:E6:35:F7:B3:96:FE:BC
Certificate issuer: /CN=034b0eed2c5a787ad87fb49f04d3fdf3d0f49d4c
Certificate serial: 01835A6D3CACD5CCD6E3EAFF78BAD5EFB14B
Authority key identifier: 03:4B:0E:ED:2C:5A:78:7A:D8:7F:B4:9F:04:D3:FD:F3:D0:F4:9D:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A0sO7SxaeHrYf7SfBNP989D0nUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/q1oJnGQKzIG0zbHYP-Y197OW_rw.roa
Signing time: Tue 20 Sep 2022 10:24:11 +0000
ROA not before: Tue 20 Sep 2022 10:24:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57428
IP address blocks: 185.57.44.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5a:6d:3c:ac:d5:cc:d6:e3:ea:ff:78:ba:d5:ef:b1:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=034b0eed2c5a787ad87fb49f04d3fdf3d0f49d4c
Validity
Not Before: Sep 20 10:24:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab5a099c640acc81b4cdb1d83fe635f7b396febc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:86:1c:01:8b:52:1e:aa:88:d6:ac:4d:8c:62:
79:b2:c7:5e:70:08:96:83:a4:e5:e1:66:7e:b2:3d:
19:15:08:80:4c:bd:70:ef:09:6d:4a:d2:00:8c:64:
33:aa:13:97:c0:04:d3:e4:d8:0e:03:05:37:95:ce:
ad:f1:da:bd:4d:64:80:ea:d4:56:6b:c9:93:5e:53:
60:c3:74:f2:64:8b:ce:4c:b0:bf:2e:cf:3b:6d:0a:
00:01:5f:5c:54:d6:a4:3b:2f:00:ad:51:51:6a:5f:
31:c0:ba:3d:09:50:c9:1d:77:df:99:6c:60:47:e1:
14:63:08:79:c6:20:8a:56:1a:86:05:b2:25:40:fa:
53:3f:2a:79:e0:c0:fc:8e:27:f5:c0:05:66:a1:ed:
8a:87:83:87:ac:6c:75:85:f5:97:37:65:66:44:9f:
3a:f1:7b:9b:58:2f:77:ff:64:22:c4:63:68:70:e5:
81:8e:e1:b4:ce:b0:e5:9d:00:c5:17:6f:99:22:3b:
66:ae:db:25:d2:2d:b0:60:d9:eb:59:1b:4e:b1:84:
0d:cd:01:7b:da:11:d9:10:f4:5a:c3:2c:27:b3:f5:
db:f6:dc:d6:9f:0b:3e:df:8a:79:87:88:9d:40:2b:
74:65:2e:09:2c:42:57:89:d2:bd:05:54:85:7b:07:
49:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5A:09:9C:64:0A:CC:81:B4:CD:B1:D8:3F:E6:35:F7:B3:96:FE:BC
X509v3 Authority Key Identifier:
keyid:03:4B:0E:ED:2C:5A:78:7A:D8:7F:B4:9F:04:D3:FD:F3:D0:F4:9D:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A0sO7SxaeHrYf7SfBNP989D0nUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/q1oJnGQKzIG0zbHYP-Y197OW_rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/A0sO7SxaeHrYf7SfBNP989D0nUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.44.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:6f:5e:e6:c2:b4:a4:44:64:8e:43:2a:1b:96:6a:0e:6a:4d:
21:da:21:dc:f8:42:18:f5:bb:d6:45:0c:de:68:c1:52:5e:e3:
87:b2:15:d0:cf:43:d4:58:3c:4f:40:d5:46:98:18:89:c4:10:
a0:27:b9:ca:90:be:f3:1b:cb:c1:6f:2a:3c:50:8b:93:f6:82:
f7:db:cd:40:09:ad:cd:0a:8a:dd:99:fa:97:03:56:25:58:b1:
59:31:07:60:d9:ba:76:89:8f:e4:a4:da:87:47:13:e1:1f:ae:
18:77:5e:cd:d7:01:cf:77:a3:58:57:40:0e:c8:67:1d:dd:d5:
7b:d9:b8:af:50:9a:e5:ba:6c:26:0e:5d:db:f2:ea:c8:14:7c:
53:4a:50:8b:25:6f:9a:32:72:d6:78:a8:b1:28:74:61:e4:fb:
61:10:09:53:96:7e:1d:f3:0c:38:cc:71:52:e4:12:17:f5:55:
b4:82:a3:fe:64:24:a5:92:d2:02:2f:93:04:43:00:b1:61:e6:
fd:48:d5:7c:1c:2e:db:2b:eb:13:27:64:25:0c:a0:67:c1:a4:
9b:04:51:5d:ef:56:fc:de:0b:9c:db:df:eb:4a:e7:17:e1:c9:
df:df:e7:53:ad:bf:a0:1c:55:96:c3:78:a3:0f:f2:67:d8:09:
ec:b2:98:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:51 2023 by rpki-client on console-fra.rpki-client.org