Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/QLiCX5U_-reeP44HSLkQxhWirKA.roa
File: QLiCX5U_-reeP44HSLkQxhWirKA.roa (raw, json)
Hash identifier: QzaSWEc/VB7ckBWz+Bg7lKa20Q8dJQWL47U2UOQbt4w=
Subject key identifier: 40:B8:82:5F:95:3F:FA:B7:9E:3F:8E:07:48:B9:10:C6:15:A2:AC:A0
Certificate issuer: /CN=e2c137106c1a46aea07c24b11729fd7d216a24f5
Certificate serial: 10492B
Authority key identifier: E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/QLiCX5U_-reeP44HSLkQxhWirKA.roa
Signing time: Fri 24 Jun 2022 11:35:58 +0000
ROA not before: Fri 24 Jun 2022 11:35:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204456
IP address blocks: 185.222.233.0/24 maxlen: 24
185.222.235.0/24 maxlen: 24
185.222.234.0/24 maxlen: 24
2a0d:800::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1067307 (0x10492b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c137106c1a46aea07c24b11729fd7d216a24f5
Validity
Not Before: Jun 24 11:35:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40b8825f953ffab79e3f8e0748b910c615a2aca0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:78:fe:87:01:e6:65:48:26:55:a6:bf:c7:de:
38:89:52:80:62:6c:a2:e5:c8:fa:5a:98:95:a0:be:
0a:23:b8:88:da:59:c6:c3:23:15:7b:c9:cd:68:ca:
66:7e:01:5e:0b:5e:58:24:33:de:c0:0e:ec:18:b6:
9c:50:a2:86:a3:82:11:d1:1b:93:10:8b:f2:1b:2e:
a0:7c:76:4b:df:ec:0e:94:d0:ff:06:bd:70:bf:c1:
f2:d9:dd:74:42:c5:b4:a4:c4:c8:62:7c:35:47:58:
00:0c:04:bf:49:f1:61:b9:e5:62:1c:a7:22:24:08:
69:ca:62:0c:ad:d0:94:9f:8a:da:5b:67:e8:8f:d0:
0f:82:00:79:0a:32:59:61:bd:73:6d:ba:e6:20:ef:
57:d8:ce:4d:fd:90:12:8c:c8:e2:ee:e5:6b:21:a2:
b6:9e:c2:3f:44:6b:fb:ba:ab:22:37:76:f2:60:c2:
ba:2e:e7:50:43:52:34:af:f0:91:ca:de:75:29:93:
fb:65:a0:31:35:3f:89:5c:07:88:92:93:88:10:c2:
67:c4:ed:7a:5f:a1:9e:76:da:e2:5e:1a:eb:58:d4:
45:bf:9d:72:e7:cf:88:77:39:7b:c3:67:01:fd:4f:
46:3d:2e:65:95:af:e3:fc:20:1a:14:49:61:72:48:
77:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B8:82:5F:95:3F:FA:B7:9E:3F:8E:07:48:B9:10:C6:15:A2:AC:A0
X509v3 Authority Key Identifier:
keyid:E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/QLiCX5U_-reeP44HSLkQxhWirKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/4sE3EGwaRq6gfCSxFyn9fSFqJPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.233.0-185.222.235.255
IPv6:
2a0d:800::/29
Signature Algorithm: sha256WithRSAEncryption
34:29:09:5b:19:59:8c:cc:ed:98:b2:ea:ee:a3:79:b6:e4:0a:
39:fe:24:4b:3d:ef:d7:2a:18:6f:95:ae:f4:aa:0e:1f:c5:f3:
72:56:8a:29:b8:bc:34:a0:b0:ca:ed:e2:52:62:a3:51:7d:e4:
87:43:bf:2e:e4:d9:d7:d4:cb:1d:11:e6:d7:a0:d2:86:c8:17:
c2:5f:d3:b6:01:d3:4a:5e:82:2b:b2:8e:68:a4:62:2f:35:04:
90:4b:0d:76:d0:e6:4c:b0:96:eb:15:96:a6:e0:5b:54:a3:df:
20:df:8a:3c:a5:3e:04:f5:5c:67:88:c6:68:eb:a7:7b:70:e7:
ec:d4:c3:0a:22:c1:6c:5e:5a:ae:06:68:b1:53:1e:43:6f:d5:
8c:af:67:9c:97:3f:5d:c9:9f:b7:61:da:63:1b:b6:e4:bc:c3:
f0:db:a8:f5:73:50:ff:fe:ed:3f:47:4a:df:a8:a7:20:a9:d3:
43:1e:4c:43:34:0f:2b:c0:20:7f:b8:c0:0f:4b:b2:93:97:11:
8d:db:4e:c5:2f:1a:a3:86:95:14:e4:db:5c:c5:35:23:28:84:
3c:09:15:25:2c:db:94:f1:df:73:bf:6b:e6:b4:a6:64:8b:3d:
57:b3:f0:69:dd:97:1f:ee:61:bd:f2:d9:b9:a9:1e:74:9a:d3:
65:c6:5a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:48 2023 by rpki-client on console-ams.rpki-client.org