Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/QdvJIJhyrsdA7wqe_nlaaV7ls0M.roa
File: QdvJIJhyrsdA7wqe_nlaaV7ls0M.roa (raw, json)
Hash identifier: PxN/HcDT4t4wlfipWN8jInmh6UYomvzV4qBKmZzRTKU=
Subject key identifier: 41:DB:C9:20:98:72:AE:C7:40:EF:0A:9E:FE:79:5A:69:5E:E5:B3:43
Certificate issuer: /CN=3433ae1c60672c7591a8f97d68f79fb2a5ee8da7
Certificate serial: 17CF7B9E
Authority key identifier: 34:33:AE:1C:60:67:2C:75:91:A8:F9:7D:68:F7:9F:B2:A5:EE:8D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NDOuHGBnLHWRqPl9aPefsqXujac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/QdvJIJhyrsdA7wqe_nlaaV7ls0M.roa
Signing time: Fri 17 Jun 2022 06:44:46 +0000
ROA not before: Fri 17 Jun 2022 06:44:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204770
IP address blocks: 185.8.106.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399473566 (0x17cf7b9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3433ae1c60672c7591a8f97d68f79fb2a5ee8da7
Validity
Not Before: Jun 17 06:44:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41dbc9209872aec740ef0a9efe795a695ee5b343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d6:66:df:b8:9f:02:0d:2e:84:6b:85:1e:d4:
7f:05:36:c0:56:09:ab:fa:ac:25:da:3a:65:2c:a1:
ce:e1:03:01:c8:0c:c4:3a:47:4e:e9:e0:79:a4:3c:
d9:0f:2e:e8:0d:55:9f:d2:d5:db:4f:16:8b:e6:52:
e8:d6:ba:f2:94:04:c0:94:b3:4d:87:37:d2:74:d1:
ca:ea:02:d9:51:f5:a2:22:35:d4:e0:f0:9a:68:4d:
22:54:17:78:96:82:fa:6f:66:0d:7a:08:11:d3:53:
55:12:65:0b:b3:c9:08:73:ff:35:be:ef:81:05:6f:
89:d6:09:b2:21:08:b7:0e:3c:b6:01:e7:fd:99:80:
2f:27:24:0b:b0:fb:06:57:b1:32:38:eb:fb:0e:fc:
b2:a3:4f:96:4f:d7:31:52:9b:13:16:28:06:76:fc:
9e:eb:69:54:7a:d2:f7:ce:c0:51:74:bf:f8:78:1d:
17:7f:f0:91:6d:df:6f:63:bb:4c:fc:c2:f2:0f:e6:
bd:93:e1:30:ab:ef:b3:96:3e:eb:7c:26:35:e4:7f:
83:df:56:10:9b:be:d0:64:47:ca:b6:03:ba:c3:c7:
5e:8b:f1:3c:cc:5a:63:98:f0:68:ef:dc:81:cc:9b:
d3:f1:c7:3b:46:96:a2:ed:c8:74:85:a5:b1:b3:49:
bb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:DB:C9:20:98:72:AE:C7:40:EF:0A:9E:FE:79:5A:69:5E:E5:B3:43
X509v3 Authority Key Identifier:
keyid:34:33:AE:1C:60:67:2C:75:91:A8:F9:7D:68:F7:9F:B2:A5:EE:8D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NDOuHGBnLHWRqPl9aPefsqXujac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/QdvJIJhyrsdA7wqe_nlaaV7ls0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/9ca446-fc5c-4746-b26f-30ce83701b39/1/NDOuHGBnLHWRqPl9aPefsqXujac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.106.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:72:72:74:3b:a2:70:9a:ec:4a:9f:ad:6b:61:aa:a6:61:76:
56:96:5a:b8:87:c8:20:e8:8f:f8:81:ea:e4:82:a1:57:43:be:
2e:c5:63:42:a9:02:62:87:ba:03:30:30:15:dd:87:e9:b4:97:
51:be:07:56:ff:ae:47:ce:a9:8e:3c:ca:55:bd:4a:28:09:d6:
dc:66:dc:84:91:d9:f2:3f:d4:6a:5d:3d:2a:8f:38:21:46:ca:
4e:8b:b9:eb:23:87:6e:05:d8:1b:3f:e4:34:58:73:7a:95:8b:
75:e9:54:ab:7b:5a:2e:b5:c6:98:76:e8:f5:91:07:6a:ce:93:
be:ed:3f:93:2e:0b:65:ee:40:92:9d:a7:a9:c0:85:00:ec:52:
39:a1:f2:b2:20:d9:9c:ac:9b:fb:3d:6e:7d:29:68:e0:7d:81:
d3:61:ae:f4:b4:a0:b9:0b:40:bc:71:cb:2d:43:08:14:c8:b2:
0a:dd:6e:21:3f:05:d3:19:9a:e4:0d:d4:75:c1:6e:a0:48:86:
50:38:38:f1:45:07:1e:77:25:eb:d7:64:ab:fc:41:a2:7a:02:
d3:93:e0:93:81:06:42:1f:b1:fe:19:99:80:a5:ab:bb:fa:41:
a9:22:a3:f9:e7:d9:8b:8a:e9:c5:24:00:9c:5b:cc:eb:d9:8c:
cc:18:35:6f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEF897njANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDMzYWUxYzYwNjcyYzc1OTFhOGY5N2Q2OGY3OWZiMmE1ZWU4ZGE3MB4XDTIyMDYx
NzA2NDQ0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDFkYmM5MjA5ODcy
YWVjNzQwZWYwYTllZmU3OTVhNjk1ZWU1YjM0MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMTWZt+4nwINLoRrhR7UfwU2wFYJq/qsJdo6ZSyhzuEDAcgM
xDpHTungeaQ82Q8u6A1Vn9LV208Wi+ZS6Na68pQEwJSzTYc30nTRyuoC2VH1oiI1
1ODwmmhNIlQXeJaC+m9mDXoIEdNTVRJlC7PJCHP/Nb7vgQVvidYJsiEItw48tgHn
/ZmALyckC7D7BlexMjjr+w78sqNPlk/XMVKbExYoBnb8nutpVHrS987AUXS/+Hgd
F3/wkW3fb2O7TPzC8g/mvZPhMKvvs5Y+63wmNeR/g99WEJu+0GRHyrYDusPHXovx
PMxaY5jwaO/cgcyb0/HHO0aWou3IdIWlsbNJu6MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRB28kgmHKux0DvCp7+eVppXuWzQzAfBgNVHSMEGDAWgBQ0M64cYGcsdZGo
+X1o95+ype6NpzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05ET3VIR0JuTEhXUnFQbDlhUGVmc3FYdWphYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDMvOWNhNDQ2LWZjNWMtNDc0Ni1iMjZmLTMwY2U4MzcwMWIzOS8x
L1FkdkpJSmh5cnNkQTd3cWVfbmxhYVY3bHMwTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMv
OWNhNDQ2LWZjNWMtNDc0Ni1iMjZmLTMwY2U4MzcwMWIzOS8xL05ET3VIR0JuTEhX
UnFQbDlhUGVmc3FYdWphYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbkIajANBgkqhkiG9w0BAQsFAAOC
AQEAt3JydDuicJrsSp+ta2GqpmF2VpZauIfIIOiP+IHq5IKhV0O+LsVjQqkCYoe6
AzAwFd2H6bSXUb4HVv+uR86pjjzKVb1KKAnW3GbchJHZ8j/Ual09Ko84IUbKTou5
6yOHbgXYGz/kNFhzepWLdelUq3taLrXGmHbo9ZEHas6Tvu0/ky4LZe5Akp2nqcCF
AOxSOaHysiDZnKyb+z1ufSlo4H2B02Gu9LSguQtAvHHLLUMIFMiyCt1uIT8F0xma
5A3UdcFuoEiGUDg48UUHHncl69dkq/xBonoC05Pgk4EGQh+x/hmZgKWru/pBqSKj
+efZi4rpxSQAnFvM69mMzBg1bw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:13 2024 by rpki-client on console-fra.rpki-client.org