Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/3d3b27-f786-41e0-ac54-bfc0ff97a190/1/uQwGt9Go902-zTN5wPU78MYkGtQ.roa
File: uQwGt9Go902-zTN5wPU78MYkGtQ.roa (raw, json)
Hash identifier: f/a/QQXnkIf7FK8M4+zen3w+TU7zG1U6mmp1nwymcqE=
Subject key identifier: B9:0C:06:B7:D1:A8:F7:4D:BE:CD:33:79:C0:F5:3B:F0:C6:24:1A:D4
Certificate issuer: /CN=58788f38426e0362b34dd567343fe8461a58babe
Certificate serial: 03D5AA14
Authority key identifier: 58:78:8F:38:42:6E:03:62:B3:4D:D5:67:34:3F:E8:46:1A:58:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WHiPOEJuA2KzTdVnND_oRhpYur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/3d3b27-f786-41e0-ac54-bfc0ff97a190/1/uQwGt9Go902-zTN5wPU78MYkGtQ.roa
Signing time: Sat 01 Jan 2022 04:56:44 +0000
ROA not before: Sat 01 Jan 2022 04:56:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205837
IP address blocks: 185.203.162.0/24 maxlen: 24
185.203.161.0/24 maxlen: 24
185.203.160.0/24 maxlen: 24
185.203.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64334356 (0x3d5aa14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58788f38426e0362b34dd567343fe8461a58babe
Validity
Not Before: Jan 1 04:56:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b90c06b7d1a8f74dbecd3379c0f53bf0c6241ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:64:5c:e8:10:8f:cf:fd:0f:11:fa:71:c9:75:
78:4e:8d:dc:76:a5:f4:a2:10:22:93:6e:71:48:e9:
4c:1a:f9:a4:13:2e:e2:53:7b:90:3f:2a:85:8d:c2:
2e:9d:d0:41:4b:ed:c0:d0:3d:19:42:ac:57:33:1e:
86:93:b5:3d:78:fe:9e:b0:f4:2c:2e:36:3f:52:90:
fe:1e:03:4e:81:5e:5d:ec:7e:f8:a3:ac:65:d4:f8:
32:2e:41:fa:fc:f2:61:06:4b:21:00:bc:f4:4b:87:
65:58:a3:31:f5:a4:90:2d:5d:ce:0d:22:31:79:6e:
72:26:de:db:bb:e7:27:36:1d:bc:0f:d5:15:50:ca:
7b:b4:59:7d:73:67:b5:5e:44:56:0f:6b:6a:cd:be:
a8:c7:89:d9:da:ba:06:de:33:6c:59:df:d3:47:b3:
ca:19:76:53:f5:62:46:69:a5:f6:b1:40:08:36:55:
6d:c7:03:0e:85:b6:5e:47:d1:ef:b0:fc:ba:2c:c6:
33:65:4d:6c:8f:e0:e0:f9:c0:3a:62:c2:ed:07:55:
35:2a:62:0f:7c:74:55:f7:00:99:91:bb:3c:b7:0f:
bc:2c:6c:0a:aa:b5:56:a7:32:b6:1f:8f:4c:89:85:
84:ac:3e:b7:3b:b9:90:77:0e:fa:d4:d9:af:9e:98:
54:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0C:06:B7:D1:A8:F7:4D:BE:CD:33:79:C0:F5:3B:F0:C6:24:1A:D4
X509v3 Authority Key Identifier:
keyid:58:78:8F:38:42:6E:03:62:B3:4D:D5:67:34:3F:E8:46:1A:58:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WHiPOEJuA2KzTdVnND_oRhpYur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/3d3b27-f786-41e0-ac54-bfc0ff97a190/1/uQwGt9Go902-zTN5wPU78MYkGtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/3d3b27-f786-41e0-ac54-bfc0ff97a190/1/WHiPOEJuA2KzTdVnND_oRhpYur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.160.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:0b:b3:73:2d:63:fd:ad:81:6f:e6:85:e6:2f:89:40:f8:a2:
aa:a4:aa:a9:d9:aa:76:5f:7b:2e:40:b1:fd:ae:9e:f7:f0:bd:
30:98:90:dd:7f:d2:4a:99:7b:b4:0a:5a:af:fb:69:41:f4:8e:
c9:1b:80:5e:69:31:1f:95:16:cb:de:f4:9b:e3:bc:33:6c:63:
81:96:73:c4:8b:8b:6d:b8:e4:eb:28:cf:cf:aa:e7:e3:dd:74:
1b:c1:66:97:fd:44:e0:f0:e9:4d:b9:d5:8f:16:3c:7f:56:79:
f4:df:bb:23:c0:9f:27:38:ba:66:f9:9f:ba:c2:d1:80:2f:84:
21:1f:12:22:ed:1d:71:66:8a:e8:0f:23:36:7e:cd:c1:ee:f3:
58:8a:1e:8f:14:c7:d9:d4:2e:2a:b8:67:03:e1:65:7b:c1:df:
85:25:da:5c:ba:6c:e0:42:44:10:2b:10:84:4c:17:ae:52:39:
9c:b1:56:d9:9b:55:f6:6e:6f:22:6f:39:87:d2:02:9f:51:df:
8d:0c:7a:96:88:c5:e1:f3:f7:be:c6:01:ef:83:f5:9a:2e:2f:
3c:84:ea:10:6f:1a:63:df:9f:9e:61:71:ac:75:d1:6e:79:b9:
57:ce:06:96:c0:24:c7:a4:b0:bc:b7:6a:57:f9:40:41:8f:dd:
34:f6:eb:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:08 2024 by rpki-client on console-ams.rpki-client.org