Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/YQf7CPHpR9zrHYxtFZ0I9n76xsk.roa
File: YQf7CPHpR9zrHYxtFZ0I9n76xsk.roa (raw, json)
Hash identifier: qZq4hOIBbilKROQMMaecj2ajDAwf9y2BvbBjmiRZEHg=
Subject key identifier: 61:07:FB:08:F1:E9:47:DC:EB:1D:8C:6D:15:9D:08:F6:7E:FA:C6:C9
Certificate issuer: /CN=41251342e05d58b3b7fc93a15cba1eb71e542385
Certificate serial: 018326093CBFB8F5C5473740F9AF9F4004D4
Authority key identifier: 41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/YQf7CPHpR9zrHYxtFZ0I9n76xsk.roa
Signing time: Sat 10 Sep 2022 06:14:43 +0000
ROA not before: Sat 10 Sep 2022 06:14:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59441
IP address blocks: 185.165.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:09:3c:bf:b8:f5:c5:47:37:40:f9:af:9f:40:04:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41251342e05d58b3b7fc93a15cba1eb71e542385
Validity
Not Before: Sep 10 06:14:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6107fb08f1e947dceb1d8c6d159d08f67efac6c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4a:72:42:4a:ef:05:59:53:91:0e:2b:2c:9f:
f1:73:8b:bd:98:f4:c5:d5:a2:5c:fe:6c:70:89:d8:
24:dd:87:95:80:da:dd:aa:7d:d2:9e:45:8f:40:bc:
f3:c5:ab:7a:05:6d:dd:90:4b:04:98:6c:d3:a6:57:
55:3e:02:cb:98:59:ca:30:e8:74:e9:34:55:f6:ce:
30:f7:6e:2c:d3:9e:48:fc:1a:5e:9b:36:4a:fc:3b:
d5:c0:e2:34:ee:40:6e:a9:8c:2d:47:c9:c3:cc:c8:
6a:fc:1e:b1:92:c4:7e:7b:b3:24:ec:dd:cb:ab:7d:
2c:e1:cc:38:82:5c:b7:1d:85:2c:83:92:73:87:0d:
ca:cd:8f:0b:01:30:97:f0:fe:4a:4e:e3:43:40:9c:
91:f1:02:c3:68:14:09:9e:55:7b:81:c9:48:ff:a8:
d9:ba:f2:b3:f8:b6:b2:eb:13:0c:59:9f:94:3a:9f:
f2:3c:9c:c1:c5:6c:87:82:e4:4d:40:e9:7d:0a:8b:
02:4c:06:1a:ea:87:24:91:5a:d5:0f:76:01:c9:ed:
0b:4f:8a:73:cf:1e:36:3f:b4:fb:2c:95:91:22:4a:
8b:dd:ab:c3:a8:df:5e:e7:63:ad:dc:a7:0b:a1:57:
48:27:77:52:62:ce:a8:fc:67:0b:5f:25:2b:65:79:
70:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:07:FB:08:F1:E9:47:DC:EB:1D:8C:6D:15:9D:08:F6:7E:FA:C6:C9
X509v3 Authority Key Identifier:
keyid:41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/YQf7CPHpR9zrHYxtFZ0I9n76xsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/QSUTQuBdWLO3_JOhXLoetx5UI4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.29.0/24
Signature Algorithm: sha256WithRSAEncryption
77:01:8e:72:20:b8:38:30:99:d4:3e:30:71:3d:1c:ec:f8:2e:
77:fc:c5:eb:97:ff:93:a5:02:ab:f3:d2:95:c3:cb:2e:54:8e:
10:b6:d7:07:7c:49:8a:57:5c:79:8f:42:14:88:18:ad:88:c5:
e3:3b:9b:d1:aa:ec:73:db:31:6b:b5:03:0c:a1:21:26:ee:c6:
8d:5b:2c:cd:b7:51:1b:3d:b4:79:d3:01:2f:65:1f:53:ae:d5:
9b:fe:28:05:de:75:aa:dd:59:f6:af:99:21:14:34:50:55:52:
ac:68:d4:76:ad:75:66:d2:c7:b3:eb:4b:62:e5:3a:e7:81:64:
89:4f:54:a3:c5:85:e8:b3:b6:b4:af:67:36:81:98:16:22:9d:
86:b0:a8:ac:9e:3e:74:68:28:98:3c:af:9a:ef:1d:2e:14:eb:
75:9c:04:4e:be:8a:76:f6:d0:c1:02:68:16:23:2c:80:c4:6d:
c8:79:82:3e:2e:d9:b8:54:c8:c6:38:44:f5:2f:39:a9:5b:c5:
22:0c:ef:7e:0c:f7:9b:38:37:5f:2f:3a:cf:e4:54:ec:99:a7:
6f:50:89:fc:24:a4:cb:91:2a:34:d5:94:17:61:ab:12:70:ca:
9d:88:56:69:fc:ff:85:56:4f:5a:57:17:3f:4f:fb:98:ae:e9:
a7:11:94:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:59 2024 by rpki-client on console-fra.rpki-client.org