Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/001edf-bffc-4960-a02c-d26d7d4c2505/1/rQUd6otTTY8QIbjzAyGENhWMaJQ.roa
File: rQUd6otTTY8QIbjzAyGENhWMaJQ.roa (raw, json)
Hash identifier: T5LvouMgYMad0dXDCRegzmXOGc4IoN5NJTbUKrSYid4=
Subject key identifier: AD:05:1D:EA:8B:53:4D:8F:10:21:B8:F3:03:21:84:36:15:8C:68:94
Certificate issuer: /CN=7eeb0aec63949f4125c73aa6177ea0b721d527bb
Certificate serial: 0270B7
Authority key identifier: 7E:EB:0A:EC:63:94:9F:41:25:C7:3A:A6:17:7E:A0:B7:21:D5:27:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fusK7GOUn0ElxzqmF36gtyHVJ7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/001edf-bffc-4960-a02c-d26d7d4c2505/1/rQUd6otTTY8QIbjzAyGENhWMaJQ.roa
Signing time: Thu 17 Mar 2022 19:39:00 +0000
ROA not before: Thu 17 Mar 2022 19:39:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61177
IP address blocks: 185.16.97.0/24 maxlen: 24
185.16.98.0/24 maxlen: 24
185.16.96.0/24 maxlen: 24
185.16.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159927 (0x270b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7eeb0aec63949f4125c73aa6177ea0b721d527bb
Validity
Not Before: Mar 17 19:39:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad051dea8b534d8f1021b8f303218436158c6894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:62:27:fe:81:8b:dd:ae:61:34:d8:2e:d3:ad:
ce:83:43:50:d8:7e:61:58:f5:c1:1c:98:9d:1f:03:
fb:08:da:81:c3:4e:92:ec:43:98:95:1d:f2:b8:8d:
b9:0d:62:6c:bb:23:ad:c3:db:ef:40:f6:06:0d:ad:
ae:e5:3c:ef:23:50:15:71:70:fa:dc:40:2f:4b:a3:
fa:fc:ce:ac:5e:c1:03:6a:52:d8:d3:21:e7:03:48:
15:9e:0d:a0:13:28:fc:2e:40:74:66:ac:1b:0a:c9:
19:6a:87:b1:93:47:fe:51:a6:d3:3d:a1:7e:57:e2:
4d:cf:76:cc:0a:68:64:cf:fd:88:3c:09:b0:2f:f5:
d1:fd:bb:96:62:36:3e:e2:6d:21:2d:ba:8c:57:1b:
49:4d:0f:61:90:6a:c1:1d:29:46:40:4b:fc:5d:0a:
76:e7:75:af:70:4b:11:7e:33:56:13:e0:3e:30:b0:
ae:e4:9d:af:27:66:19:c1:25:b0:b5:b3:2a:20:93:
e3:88:25:14:70:4a:47:d6:d2:4c:2f:7a:6b:07:26:
62:03:a9:8f:ad:af:e2:fc:c2:bb:71:4d:d1:42:bd:
ff:51:2e:02:af:f6:4b:f5:05:7e:ee:56:b9:f1:ee:
e5:a4:ff:dd:39:89:79:6a:ed:c3:da:06:30:1f:06:
eb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:05:1D:EA:8B:53:4D:8F:10:21:B8:F3:03:21:84:36:15:8C:68:94
X509v3 Authority Key Identifier:
keyid:7E:EB:0A:EC:63:94:9F:41:25:C7:3A:A6:17:7E:A0:B7:21:D5:27:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fusK7GOUn0ElxzqmF36gtyHVJ7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/001edf-bffc-4960-a02c-d26d7d4c2505/1/rQUd6otTTY8QIbjzAyGENhWMaJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/001edf-bffc-4960-a02c-d26d7d4c2505/1/fusK7GOUn0ElxzqmF36gtyHVJ7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.16.96.0/22
Signature Algorithm: sha256WithRSAEncryption
89:3a:87:bb:cc:a9:18:84:3b:1a:25:77:35:cb:f7:1f:01:07:
82:ef:16:d5:b6:0d:1e:04:ed:fa:54:79:8b:15:10:6e:ce:2b:
fe:61:e2:b8:f4:c2:0d:4a:a5:ad:a1:0a:c8:9f:84:67:f2:d7:
a5:57:bc:21:ca:00:e5:e7:92:a9:3f:5b:17:5a:88:1a:6f:3b:
be:5a:ef:f2:17:a1:a6:7d:7d:05:fc:6f:58:42:68:ba:3f:80:
39:5c:ba:50:c4:c7:b3:39:7e:15:af:d3:d8:58:b3:72:37:50:
a6:35:59:34:2c:7a:73:a8:f7:b4:6d:46:df:b0:f1:2e:4b:38:
ae:61:52:20:a9:fd:1b:a5:c9:18:bc:c1:33:d4:a7:0a:b5:99:
02:9a:b8:e2:47:6e:46:05:53:92:1d:42:50:1c:a2:97:55:38:
f9:33:31:f1:04:dc:9d:58:36:84:64:7c:61:76:5c:c5:fd:40:
7d:65:f5:1f:46:3b:c9:4a:32:3a:6d:73:b1:e1:84:0f:04:08:
ca:7b:ac:00:ec:59:2b:90:03:09:c7:f3:63:b6:f8:58:15:70:
5a:c3:aa:47:74:94:19:09:c4:95:5c:e8:ca:7c:60:dc:4a:e4:
a1:f6:37:31:e5:1e:44:78:29:2d:fd:ab:c9:f0:89:8e:08:a9:
11:d0:6a:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:38 2024 by rpki-client on console-fra.rpki-client.org