Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/QLv9Y_WKJxeh5u_5DeHH8bhvfm4.roa
File: QLv9Y_WKJxeh5u_5DeHH8bhvfm4.roa (raw, json)
Hash identifier: hWKddWQOc/2nSVmc1tqvTgsJjwXGt3qxmTz67Rwf0zE=
Subject key identifier: 40:BB:FD:63:F5:8A:27:17:A1:E6:EF:F9:0D:E1:C7:F1:B8:6F:7E:6E
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0C01789B
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/QLv9Y_WKJxeh5u_5DeHH8bhvfm4.roa
Signing time: Wed 04 May 2022 15:14:13 +0000
ROA not before: Wed 04 May 2022 15:14:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 185.254.28.0/24 maxlen: 24
193.160.143.0/24 maxlen: 24
193.160.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201423003 (0xc01789b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: May 4 15:14:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40bbfd63f58a2717a1e6eff90de1c7f1b86f7e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:30:63:81:47:58:16:b3:ec:b2:d3:d2:ee:b8:
bd:82:87:af:0c:f3:79:d4:9a:5c:3e:24:95:14:95:
38:d7:d5:44:bc:7f:ef:27:59:4f:e0:a8:2e:cf:40:
4d:2b:df:91:83:35:a8:ed:77:f9:16:a4:51:60:b3:
63:76:93:9b:64:1c:ac:d9:58:ff:c9:45:22:3e:35:
b2:ff:e2:7f:c2:82:63:cf:9f:12:97:4f:ec:0c:14:
f7:71:c9:ef:70:af:45:ca:34:b9:69:96:8c:67:dc:
f5:8d:a7:75:2b:11:15:c9:eb:6d:b4:31:54:0f:60:
6d:38:ee:a6:c2:50:a7:ba:01:80:8e:1d:c5:08:f3:
f3:cb:8a:a7:f4:0b:bb:45:da:0a:eb:ac:5b:77:98:
ff:e0:53:d0:73:ef:df:3f:df:5b:ef:60:c2:f7:59:
99:91:6f:48:d6:cc:16:0d:79:6b:e1:79:69:9f:c2:
e9:5c:d7:12:25:66:ee:78:a6:e3:11:7f:84:38:99:
cd:98:f2:f4:c7:bb:a0:15:cf:12:65:b4:40:54:2e:
00:ae:e9:68:9b:61:52:ec:ad:15:7e:ee:01:87:9b:
09:1a:51:44:c0:82:43:ef:1a:d8:d4:05:90:2f:b5:
aa:17:06:db:ab:00:02:64:c0:28:33:a5:cb:3e:f9:
19:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:BB:FD:63:F5:8A:27:17:A1:E6:EF:F9:0D:E1:C7:F1:B8:6F:7E:6E
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/QLv9Y_WKJxeh5u_5DeHH8bhvfm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.28.0/24
193.160.141.0/24
193.160.143.0/24
Signature Algorithm: sha256WithRSAEncryption
00:28:f3:e4:18:16:8c:65:db:37:2e:b0:be:95:7e:06:d9:ae:
fd:25:65:97:30:f6:33:a7:cb:09:cf:6e:2c:a0:83:14:2d:55:
e0:5a:42:51:bc:aa:6d:7f:0f:64:3b:f8:0b:6a:4b:c7:49:14:
6f:33:3d:9d:81:6f:6f:e9:01:34:2d:45:1c:9e:21:04:cc:6e:
92:56:47:e7:99:36:66:3f:d4:9d:14:8d:b3:84:2d:0d:e6:c4:
af:d3:8a:04:10:71:57:1f:0f:75:e1:dd:bd:30:46:29:ff:7c:
85:5c:99:23:fa:66:4d:6b:be:33:3c:4e:88:ec:dc:d9:c8:04:
a0:a5:37:7b:e1:bb:26:b6:3d:12:8c:c0:6e:80:cb:fe:56:9e:
85:09:ea:d9:09:45:67:0c:5b:ef:fb:b1:b6:6e:03:aa:c7:a0:
e6:ab:e8:a7:12:70:70:07:1c:e5:73:b7:e1:e5:e8:cf:ae:e9:
cc:34:dc:09:b6:5b:a2:b3:58:31:1f:39:37:fe:74:74:6a:79:
95:c1:e6:6b:07:f3:4e:7b:f3:19:8c:be:09:b2:f9:78:63:6e:
e6:15:de:94:97:c4:bb:bb:9d:38:73:89:6e:b7:a0:7b:17:47:
aa:d6:20:9a:70:d8:81:32:b1:27:31:d4:69:ca:18:75:70:9c:
36:1a:e7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org