Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/u3OR6g9ltmll9wC7zoXbn9vhVOI.roa
File: u3OR6g9ltmll9wC7zoXbn9vhVOI.roa (raw, json)
Hash identifier: onGBAP8qyi48BUj9QfJFNroewwr2nuvyXTM5nCy678Q=
Subject key identifier: BB:73:91:EA:0F:65:B6:69:65:F7:00:BB:CE:85:DB:9F:DB:E1:54:E2
Certificate issuer: /CN=41251342e05d58b3b7fc93a15cba1eb71e542385
Certificate serial: 01852F552386F40280041F1F910C0A06CBE9
Authority key identifier: 41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/u3OR6g9ltmll9wC7zoXbn9vhVOI.roa
Signing time: Tue 20 Dec 2022 11:39:46 +0000
ROA not before: Tue 20 Dec 2022 11:39:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64434
IP address blocks: 185.165.30.0/24 maxlen: 24
185.165.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:55:23:86:f4:02:80:04:1f:1f:91:0c:0a:06:cb:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41251342e05d58b3b7fc93a15cba1eb71e542385
Validity
Not Before: Dec 20 11:39:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb7391ea0f65b66965f700bbce85db9fdbe154e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c7:96:26:92:e4:b9:3b:78:c3:81:b2:7c:97:
ed:63:00:a0:34:c9:6a:04:41:7c:a9:ea:95:08:68:
64:58:ab:c5:66:d7:cf:95:b5:24:2e:99:2a:c4:e8:
0d:6e:bd:c2:e6:ce:da:3e:c2:87:bf:03:7c:72:6b:
94:9c:c4:11:71:b2:a6:48:af:62:20:5b:b0:0c:06:
b9:45:bc:f9:09:a6:71:d8:5e:6b:a8:40:1a:22:20:
15:99:7e:0e:4e:71:8d:3a:c4:44:73:a0:64:c6:a2:
40:d6:d7:64:43:c8:2f:ba:2f:63:c4:68:b7:d4:be:
80:9a:c5:21:13:9c:ad:ef:30:9d:4a:f4:bb:24:66:
4f:ef:3c:a8:6f:b2:e8:55:6f:de:21:a4:d6:c2:4f:
1a:01:c8:03:8d:cc:9a:1a:8f:55:81:0b:a4:06:48:
a9:cd:31:bd:92:49:fa:87:6d:81:95:24:6b:1d:cc:
35:db:51:65:66:d2:68:d3:ac:ee:1d:25:f7:b5:b3:
83:40:52:a9:1a:b0:cb:90:4e:75:c3:7a:e5:ca:b3:
71:e5:b9:7c:b2:34:8c:ee:0a:6d:77:cb:6c:d5:74:
21:5d:93:c3:12:80:11:a7:46:23:83:cc:1f:68:45:
45:ee:28:9d:77:6e:e8:04:6a:7a:f9:ba:d7:f6:bf:
e8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:73:91:EA:0F:65:B6:69:65:F7:00:BB:CE:85:DB:9F:DB:E1:54:E2
X509v3 Authority Key Identifier:
keyid:41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/u3OR6g9ltmll9wC7zoXbn9vhVOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/QSUTQuBdWLO3_JOhXLoetx5UI4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.28.0/24
185.165.30.0/24
Signature Algorithm: sha256WithRSAEncryption
05:aa:9b:6f:c9:3a:67:92:49:e3:24:79:4d:01:b0:8c:42:8f:
09:f2:0a:5f:d3:dd:80:36:ed:22:74:18:72:12:7c:c0:9d:de:
13:10:99:a0:60:c8:6b:5d:b4:53:b0:12:30:df:b9:72:45:ad:
fe:13:bf:38:39:cb:16:79:63:55:ac:42:cb:66:78:ef:59:75:
95:a6:34:d3:fa:e2:7f:4c:ca:a4:3a:e0:12:be:d3:f6:c1:2f:
17:87:02:e6:c5:59:31:6a:30:69:27:ad:52:b8:0c:3d:33:5b:
7a:29:7c:49:d7:18:e6:b6:7b:32:c7:41:1d:3b:2b:18:0a:f8:
32:1c:16:95:d8:8f:ee:46:b8:45:5e:45:7c:02:81:ea:a2:60:
6e:a3:05:d0:ee:cc:06:3f:18:fd:1d:0a:e2:63:5f:18:88:d0:
32:cb:40:6e:d9:53:7b:11:61:81:bf:18:cc:d9:04:bd:ed:40:
dc:ca:75:22:f9:5e:bc:60:29:f7:7d:6c:84:f1:6e:ce:ba:02:
08:a6:25:c6:a4:ec:47:67:4a:8a:a3:cd:98:29:e6:6f:d0:2b:
4c:2a:84:b2:10:d4:0c:1b:ec:cc:e7:67:ab:63:c2:57:a3:01:
58:c9:22:4e:6d:62:ce:22:7d:50:f8:98:5a:da:89:4f:e3:de:
77:50:eb:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:07 2023 by rpki-client on console-fra.rpki-client.org