Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/qhspG3t-efchWN_HEf7Vn0uWYJ8.roa
File: qhspG3t-efchWN_HEf7Vn0uWYJ8.roa (raw, json)
Hash identifier: YvFQ5zu2xxYDXpHjT35WOD0477+HwhcS3lio5m0jViI=
Subject key identifier: AA:1B:29:1B:7B:7E:79:F7:21:58:DF:C7:11:FE:D5:9F:4B:96:60:9F
Certificate issuer: /CN=70f5d9eeefa305aecaee31e6fcb4e22321b2804a
Certificate serial: 09CBE35D
Authority key identifier: 70:F5:D9:EE:EF:A3:05:AE:CA:EE:31:E6:FC:B4:E2:23:21:B2:80:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPXZ7u-jBa7K7jHm_LTiIyGygEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/qhspG3t-efchWN_HEf7Vn0uWYJ8.roa
Signing time: Sat 01 Jan 2022 08:59:40 +0000
ROA not before: Sat 01 Jan 2022 08:59:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48402
IP address blocks: 185.141.128.0/22 maxlen: 22
2a07:2400::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164356957 (0x9cbe35d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f5d9eeefa305aecaee31e6fcb4e22321b2804a
Validity
Not Before: Jan 1 08:59:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa1b291b7b7e79f72158dfc711fed59f4b96609f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:74:b0:ef:04:22:d4:e6:8d:48:63:5b:d3:93:
40:fd:1a:85:54:4f:82:a3:c9:f9:79:4b:c1:61:92:
79:2c:60:f1:cf:14:af:09:7b:b5:ab:69:52:05:af:
d1:b3:e8:5c:7e:52:8a:44:d3:e8:48:3b:88:00:ac:
da:d5:3f:5e:29:62:ee:1d:a4:80:af:65:f8:88:90:
35:37:c6:ad:5b:ea:f2:de:b4:81:00:4d:97:f2:fc:
4e:7c:25:2b:74:54:b1:cc:13:33:7b:8e:d5:af:83:
f4:a3:d1:5f:da:b1:53:40:8e:78:5a:23:bc:1f:32:
66:40:41:be:b3:6d:f9:ea:fa:8d:f2:a0:cd:fa:51:
45:4e:de:a2:32:f5:f9:c9:20:48:87:09:f1:92:b1:
6b:4c:ec:62:eb:b4:9e:70:c1:55:2b:88:ac:10:1e:
a7:0b:7f:ac:a8:09:66:78:ce:cb:1f:3a:2a:ba:39:
ac:62:ca:db:5e:e0:3c:29:f0:20:b8:d3:86:01:8f:
29:36:19:4a:74:0f:1e:41:e0:28:73:7c:a4:f9:7e:
d5:b0:11:ec:54:28:af:31:d4:c7:62:8d:12:b4:56:
59:fb:b0:52:29:c3:b7:2a:ee:6d:0b:ab:16:f3:27:
e2:f2:32:ad:07:66:69:0d:ff:e0:2b:d7:c2:26:85:
6f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:1B:29:1B:7B:7E:79:F7:21:58:DF:C7:11:FE:D5:9F:4B:96:60:9F
X509v3 Authority Key Identifier:
keyid:70:F5:D9:EE:EF:A3:05:AE:CA:EE:31:E6:FC:B4:E2:23:21:B2:80:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPXZ7u-jBa7K7jHm_LTiIyGygEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/qhspG3t-efchWN_HEf7Vn0uWYJ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/cPXZ7u-jBa7K7jHm_LTiIyGygEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.128.0/22
IPv6:
2a07:2400::/29
Signature Algorithm: sha256WithRSAEncryption
b2:ac:6c:e5:53:ac:40:d7:fc:a2:0e:0a:51:ba:c2:ca:02:49:
3d:57:e1:c0:b9:73:c8:8a:ae:db:65:b2:0f:6e:6d:40:a8:54:
3a:21:da:80:bb:59:11:1c:3d:ce:61:f0:15:c3:cd:ff:e5:63:
77:a4:5c:e1:48:83:47:36:f4:2d:75:5f:7b:07:b1:0f:3d:4d:
0c:dc:58:08:1e:97:8f:09:1d:43:a4:9d:51:fc:c6:86:07:7b:
a7:30:79:4d:bf:a4:b6:0e:d6:4a:e4:3d:bf:95:ef:ea:a1:e2:
04:81:4d:a7:52:38:a1:d1:6d:95:6e:9e:de:62:60:bb:80:5a:
5b:3f:b3:5e:ff:a8:49:b0:8e:b7:11:5a:04:86:06:ff:a3:d8:
b4:b7:a2:a2:8c:4b:a8:ea:5f:bf:a8:f9:51:25:1c:37:ce:b9:
cc:27:45:2d:26:90:25:10:d3:c3:aa:78:b1:f7:66:7a:00:3f:
61:23:07:1c:2a:c9:95:3c:4e:ee:a1:90:21:3a:60:87:64:91:
c1:5e:10:6a:60:d8:ad:53:28:3e:67:8e:35:bb:22:4c:8f:53:
4c:a8:c4:a1:d5:d0:60:ce:4a:f0:74:cb:f0:79:c8:a1:a6:de:
4d:8e:cb:6b:34:45:93:53:71:05:e9:f0:fa:af:a4:0b:a0:1a:
7c:9a:ff:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:27 2024 by rpki-client on console-fra.rpki-client.org