Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/qSZW-_AAOLhF9MiQE5FQ6j0ihFM.roa
File: qSZW-_AAOLhF9MiQE5FQ6j0ihFM.roa (raw, json)
Hash identifier: pMSS6YNhYfIEHfLjCo82rIxpqJgzKNd5OHRESkRwmJA=
Subject key identifier: A9:26:56:FB:F0:00:38:B8:45:F4:C8:90:13:91:50:EA:3D:22:84:53
Certificate issuer: /CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Certificate serial: 0185729EDD3941F97316459734A1C39BF65D
Authority key identifier: 30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/qSZW-_AAOLhF9MiQE5FQ6j0ihFM.roa
Signing time: Mon 02 Jan 2023 13:14:52 +0000
ROA not before: Mon 02 Jan 2023 13:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47891
IP address blocks: 85.14.142.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:dd:39:41:f9:73:16:45:97:34:a1:c3:9b:f6:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307d887c02e07c9e474d1f8e21049caa6ce3fbd3
Validity
Not Before: Jan 2 13:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a92656fbf00038b845f4c890139150ea3d228453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:81:4b:34:73:29:35:03:db:e5:6a:d6:a5:93:
ba:41:13:92:99:6e:0b:fd:99:c1:bc:c5:68:01:ac:
ad:11:22:48:d1:1b:54:23:11:53:ef:70:0c:b6:35:
da:10:62:c0:d9:00:55:d5:1b:90:e5:b5:0d:da:ef:
aa:35:3e:8f:20:7b:3e:e2:14:9e:eb:5c:80:80:de:
8d:a5:ad:44:c3:ee:ed:17:32:84:b6:b6:cf:41:e3:
4f:44:16:ac:64:e5:93:31:93:d1:41:e8:a4:8e:f5:
37:aa:ac:49:5f:63:20:f1:5d:7b:81:8a:89:f1:b3:
3c:82:ba:5a:91:a0:5f:0d:19:a1:59:19:06:4d:8b:
84:1f:cc:1d:0e:1e:99:3e:a6:5d:77:6b:94:3b:a4:
48:1b:82:7c:b0:4f:28:dc:89:db:74:1f:e1:3f:53:
86:d9:16:74:87:95:b8:51:59:7e:00:d5:c9:b2:c3:
82:35:12:4c:62:d4:c7:0b:6e:f8:c3:a4:47:bd:98:
b6:a0:a9:f7:d7:e0:c0:92:d1:89:95:bf:dd:3c:c1:
79:cb:b4:40:38:a5:b7:6a:1b:f0:ab:9c:f4:b2:77:
53:8c:98:e8:97:2d:54:75:06:c6:89:3c:d9:ec:19:
ce:c6:d3:de:40:54:95:02:35:3d:1e:8e:dc:33:20:
99:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:26:56:FB:F0:00:38:B8:45:F4:C8:90:13:91:50:EA:3D:22:84:53
X509v3 Authority Key Identifier:
keyid:30:7D:88:7C:02:E0:7C:9E:47:4D:1F:8E:21:04:9C:AA:6C:E3:FB:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH2IfALgfJ5HTR-OIQScqmzj-9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/qSZW-_AAOLhF9MiQE5FQ6j0ihFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b20d83-612c-4b62-97a3-1a5e5f191bfa/1/MH2IfALgfJ5HTR-OIQScqmzj-9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.14.142.0/23
Signature Algorithm: sha256WithRSAEncryption
80:b3:73:01:a4:c2:84:e3:11:9c:39:26:e8:22:88:ad:d1:4f:
65:da:a4:6d:ec:a4:5a:3c:a0:fe:9d:bd:d2:4f:b2:4a:27:73:
d3:ac:96:33:7a:47:d1:07:f5:3a:57:98:e8:c0:79:a4:d7:17:
75:fa:ff:87:33:64:24:99:56:fd:70:e4:80:e9:cb:2f:64:04:
ce:a5:c9:07:6e:1a:14:b6:17:7d:f5:d6:50:d8:34:36:d8:ca:
76:f4:de:3f:69:ab:72:2f:46:e8:18:d4:89:f7:a1:b8:39:56:
e2:fe:7e:71:5e:ec:73:8f:69:a3:cc:97:d6:b3:65:0a:d8:9f:
f3:1f:8c:ed:2d:bf:2f:cf:ab:ef:5d:63:23:40:ad:25:ff:50:
6d:30:3c:81:1c:47:9c:78:0b:25:3a:64:2c:a4:01:ed:9b:e9:
a7:98:86:36:53:f6:56:aa:5c:aa:15:5c:a8:54:7e:53:be:41:
5c:e4:df:50:ab:bc:01:83:ab:88:1b:9c:20:7b:14:b1:17:ab:
23:a1:95:24:6c:ef:81:51:0e:8f:bf:c7:af:dc:31:a5:5b:c9:
79:6c:2e:47:f2:cb:6f:31:87:08:95:12:5a:7e:f4:33:2f:f1:
ef:81:52:a0:0a:e4:71:cd:b5:a0:41:d3:71:22:84:7d:54:92:
53:5f:e2:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVynt05QflzFkWXNKHDm/ZdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Q4ODdjMDJlMDdjOWU0NzRkMWY4ZTIxMDQ5Y2FhNmNl
M2ZiZDMwHhcNMjMwMTAyMTMxNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOTI2NTZmYmYwMDAzOGI4NDVmNGM4OTAxMzkxNTBlYTNkMjI4NDUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4FLNHMpNQPb5WrWpZO6QROSmW4L
/ZnBvMVoAaytESJI0RtUIxFT73AMtjXaEGLA2QBV1RuQ5bUN2u+qNT6PIHs+4hSe
61yAgN6Npa1Ew+7tFzKEtrbPQeNPRBasZOWTMZPRQeikjvU3qqxJX2Mg8V17gYqJ
8bM8grpakaBfDRmhWRkGTYuEH8wdDh6ZPqZdd2uUO6RIG4J8sE8o3InbdB/hP1OG
2RZ0h5W4UVl+ANXJssOCNRJMYtTHC274w6RHvZi2oKn31+DAktGJlb/dPMF5y7RA
OKW3ahvwq5z0sndTjJjoly1UdQbGiTzZ7BnOxtPeQFSVAjU9Ho7cMyCZgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKkmVvvwADi4RfTIkBORUOo9IoRTMB8GA1UdIwQY
MBaAFDB9iHwC4HyeR00fjiEEnKps4/vTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUgySWZBTGdmSjVIVFItT0lRU2NxbXpqLTlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9iMjBkODMtNjEyYy00YjYyLTk3YTMt
MWE1ZTVmMTkxYmZhLzEvcVNaVy1fQUFPTGhGOU1pUUU1RlE2ajBpaEZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9iMjBkODMtNjEyYy00YjYyLTk3YTMtMWE1ZTVmMTkxYmZh
LzEvTUgySWZBTGdmSjVIVFItT0lRU2NxbXpqLTlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBVQ6OMA0G
CSqGSIb3DQEBCwUAA4IBAQCAs3MBpMKE4xGcOSboIoit0U9l2qRt7KRaPKD+nb3S
T7JKJ3PTrJYzekfRB/U6V5jowHmk1xd1+v+HM2QkmVb9cOSA6csvZATOpckHbhoU
thd99dZQ2DQ22Mp29N4/aatyL0boGNSJ96G4OVbi/n5xXuxzj2mjzJfWs2UK2J/z
H4ztLb8vz6vvXWMjQK0l/1BtMDyBHEeceAslOmQspAHtm+mnmIY2U/ZWqlyqFVyo
VH5TvkFc5N9Qq7wBg6uIG5wgexSxF6sjoZUkbO+BUQ6Pv8ev3DGlW8l5bC5H8stv
MYcIlRJafvQzL/HvgVKgCuRxzbWgQdNxIoR9VJJTX+JF
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:51 2025 by rpki-client