Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/4560e9-7173-429c-b6f1-5f4a15cb9054/1/Q7273u3m7Pcu2es3C-r81598Ix4.roa
File: Q7273u3m7Pcu2es3C-r81598Ix4.roa (raw, json)
Hash identifier: sd5KMZBLTaM9dgfwElbivWiTC2oT25mdWIJCOVRyC84=
Subject key identifier: 43:BD:BB:DE:ED:E6:EC:F7:2E:D9:EB:37:0B:EA:FC:D7:9F:7C:23:1E
Certificate issuer: /CN=a0e049d00ba8421e4c45a948492945c78fd9e16d
Certificate serial: 0BC2BE18
Authority key identifier: A0:E0:49:D0:0B:A8:42:1E:4C:45:A9:48:49:29:45:C7:8F:D9:E1:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOBJ0AuoQh5MRalISSlFx4_Z4W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/4560e9-7173-429c-b6f1-5f4a15cb9054/1/Q7273u3m7Pcu2es3C-r81598Ix4.roa
Signing time: Sat 01 Jan 2022 05:00:33 +0000
ROA not before: Sat 01 Jan 2022 05:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59419
IP address blocks: 185.141.84.0/22 maxlen: 24
2a0b:aa00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 197312024 (0xbc2be18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e049d00ba8421e4c45a948492945c78fd9e16d
Validity
Not Before: Jan 1 05:00:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43bdbbdeede6ecf72ed9eb370beafcd79f7c231e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:db:5c:55:1f:e3:35:45:51:77:2d:73:3d:2c:
aa:e5:63:93:ba:95:77:c1:c2:0e:2b:34:b0:05:63:
69:a5:bd:51:55:02:ba:a9:4a:d0:cc:e8:82:33:88:
fc:c4:9e:0b:39:73:41:e2:e3:90:69:ae:bc:31:e9:
c4:9d:3e:8d:b3:eb:76:94:b8:ee:4f:f6:2e:a5:ab:
16:3c:20:d7:27:a9:24:2f:7e:69:2d:1b:1d:1f:d5:
07:c8:70:2a:0e:58:0b:6f:4e:64:d7:18:9e:e9:c9:
15:32:61:97:16:56:49:0b:48:34:07:54:7c:49:9d:
7d:a9:92:b5:f2:9a:be:58:e1:f3:dd:a7:56:15:d1:
ac:29:6f:33:bb:4a:08:73:2f:6c:83:6b:3a:63:cf:
06:b6:ee:c7:1c:63:0e:24:eb:9f:05:68:65:f5:e4:
94:d0:05:9f:cc:fa:d9:4f:5b:51:66:41:4c:2c:0f:
ad:97:0c:64:e0:9f:07:bf:e9:f4:41:c0:c2:04:8f:
0f:3c:8e:10:ba:b1:e7:22:61:99:e7:0f:5c:c7:43:
47:80:e2:bc:10:46:57:29:5c:39:a6:aa:b4:b6:d8:
fb:19:1e:3e:28:08:e8:c7:ab:00:18:3c:6a:71:4f:
2c:96:1b:e2:f3:84:71:fa:2d:f6:3d:06:ed:19:3a:
77:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BD:BB:DE:ED:E6:EC:F7:2E:D9:EB:37:0B:EA:FC:D7:9F:7C:23:1E
X509v3 Authority Key Identifier:
keyid:A0:E0:49:D0:0B:A8:42:1E:4C:45:A9:48:49:29:45:C7:8F:D9:E1:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOBJ0AuoQh5MRalISSlFx4_Z4W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4560e9-7173-429c-b6f1-5f4a15cb9054/1/Q7273u3m7Pcu2es3C-r81598Ix4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/4560e9-7173-429c-b6f1-5f4a15cb9054/1/oOBJ0AuoQh5MRalISSlFx4_Z4W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.84.0/22
IPv6:
2a0b:aa00::/29
Signature Algorithm: sha256WithRSAEncryption
17:23:d4:0c:88:27:b9:58:2e:72:93:ac:50:ce:c3:2d:24:19:
bf:4b:6f:4a:66:63:67:3a:c2:1a:fc:d6:79:b1:23:e6:c7:69:
36:22:ae:a4:a7:d3:d1:6c:1e:b7:60:5f:4f:20:46:c3:39:5c:
41:66:8a:31:37:e2:6c:97:cc:14:a7:6c:2e:7e:6f:e5:43:9b:
27:dc:fb:a1:e5:0c:aa:65:f7:ae:74:7c:f3:49:3f:b9:28:36:
b5:67:0c:52:cf:99:7b:ec:7c:f5:3b:8c:01:2e:6d:ac:ad:7c:
79:86:6b:da:00:12:92:32:2b:8e:22:84:fb:5f:91:5a:25:95:
1b:7f:06:cf:3d:47:d3:83:54:b5:f1:49:95:d2:f7:72:d8:d7:
45:ca:e1:79:82:7a:a3:0e:55:58:d0:d7:6b:68:41:51:84:78:
e8:ce:44:56:04:13:87:c6:7e:d5:c3:0c:cb:20:14:ee:2f:95:
68:5c:1b:7a:99:d7:dc:bf:f8:1a:04:b5:f1:69:62:56:47:b0:
f9:81:cc:09:e7:2c:73:dc:51:01:4f:b9:41:56:1a:6e:f4:2f:
26:e1:d2:e6:2a:37:b9:04:37:d3:d8:62:e1:22:f1:c0:28:1f:
40:de:b5:80:9f:6f:fa:73:48:a5:23:68:ec:80:95:51:95:52:
cd:a6:27:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:57 2023 by rpki-client on console-fra.rpki-client.org