Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/3799fa-9db9-4fc8-8fd6-2d9e99f4722c/1/q1yo6nX4X7qPovvko9FdiV8reik.roa
File: q1yo6nX4X7qPovvko9FdiV8reik.roa (raw, json)
Hash identifier: cGSqC7ZcEP4JfYvFJoAgTbbRr7/4ROS2qw1scy3ctUY=
Subject key identifier: AB:5C:A8:EA:75:F8:5F:BA:8F:A2:FB:E4:A3:D1:5D:89:5F:2B:7A:29
Certificate issuer: /CN=0ac98267a5db26c65e41e646648f1016636e544e
Certificate serial: 121FA50A
Authority key identifier: 0A:C9:82:67:A5:DB:26:C6:5E:41:E6:46:64:8F:10:16:63:6E:54:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CsmCZ6XbJsZeQeZGZI8QFmNuVE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/3799fa-9db9-4fc8-8fd6-2d9e99f4722c/1/q1yo6nX4X7qPovvko9FdiV8reik.roa
Signing time: Sat 01 Jan 2022 15:57:35 +0000
ROA not before: Sat 01 Jan 2022 15:57:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203457
IP address blocks: 185.132.136.0/22 maxlen: 23
185.132.136.0/23 maxlen: 23
185.132.138.0/23 maxlen: 23
2a03:a320::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304063754 (0x121fa50a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ac98267a5db26c65e41e646648f1016636e544e
Validity
Not Before: Jan 1 15:57:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab5ca8ea75f85fba8fa2fbe4a3d15d895f2b7a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:29:14:24:bc:8e:06:75:51:b2:9a:84:dd:3a:
95:42:06:03:1d:b4:b2:c3:69:e8:0d:88:4d:25:85:
4d:33:57:d6:55:9f:1d:4b:b7:6c:85:95:87:c8:51:
49:fa:24:5c:31:eb:fb:31:79:96:49:85:8f:14:da:
32:6a:3c:00:fb:94:73:68:8e:08:4c:6f:02:9f:59:
43:65:27:f3:bc:cd:6b:ed:47:79:9f:aa:8e:a0:55:
3d:6f:c2:76:10:e8:05:99:f3:6d:5b:70:3e:5f:a6:
66:36:76:4b:73:b3:5d:38:23:a5:de:98:be:48:e7:
11:31:b8:1a:f3:36:bd:7d:e1:c9:1b:d4:1b:38:74:
d9:aa:af:5a:72:cc:6e:7b:e9:37:55:82:ee:65:4f:
19:4d:10:4a:60:67:6d:56:da:77:a0:6e:28:51:43:
47:32:cd:0b:1c:1c:73:66:79:a6:3f:e7:9d:d3:2a:
54:f9:b0:74:17:e0:c0:72:66:a2:a6:db:a4:a1:08:
2f:8c:5f:0f:ed:ac:5e:72:c4:06:c4:4e:4a:b4:57:
88:74:75:0b:04:26:3d:40:95:c7:99:46:a0:07:34:
28:80:c0:03:e1:32:34:0d:db:04:34:42:fe:f5:fa:
12:52:43:63:7d:a8:e4:f2:96:f2:87:1a:4e:9f:3a:
16:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5C:A8:EA:75:F8:5F:BA:8F:A2:FB:E4:A3:D1:5D:89:5F:2B:7A:29
X509v3 Authority Key Identifier:
keyid:0A:C9:82:67:A5:DB:26:C6:5E:41:E6:46:64:8F:10:16:63:6E:54:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CsmCZ6XbJsZeQeZGZI8QFmNuVE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3799fa-9db9-4fc8-8fd6-2d9e99f4722c/1/q1yo6nX4X7qPovvko9FdiV8reik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/3799fa-9db9-4fc8-8fd6-2d9e99f4722c/1/CsmCZ6XbJsZeQeZGZI8QFmNuVE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.136.0/22
IPv6:
2a03:a320::/32
Signature Algorithm: sha256WithRSAEncryption
33:79:17:3c:87:2b:3d:4d:39:3a:70:c0:5d:44:3f:0c:89:e6:
94:2d:8a:5d:f5:aa:c0:14:ea:b0:b8:22:ff:98:6a:db:52:08:
79:e6:f8:28:05:7c:bb:62:52:9d:a2:98:ee:f3:5b:a3:e1:d3:
3f:c3:32:9e:7e:f8:20:cb:a6:04:bd:e6:fb:86:a3:42:8e:d1:
63:93:d0:31:0e:0a:58:22:1d:63:46:b7:79:ed:fa:a0:94:30:
2e:b1:9f:80:ce:37:3d:71:6a:c8:3e:be:23:58:d6:74:31:6e:
40:4a:9e:71:f9:20:96:46:c9:e0:cf:d7:b3:3f:70:53:35:7a:
3e:1d:51:58:2a:f1:2a:3c:69:aa:9f:a0:1d:26:0e:9c:32:15:
6e:3a:4c:52:d3:dc:fe:db:52:4d:bb:93:ce:57:15:30:8c:14:
0f:cc:cb:28:4e:7c:d0:04:85:bd:ae:80:54:ca:76:b1:5d:87:
e2:e7:6b:d1:9d:cf:2b:5c:7e:73:6f:e7:ab:62:ed:28:1e:75:
8d:ac:d5:c2:b7:7f:78:47:41:4b:53:3e:ef:42:b5:31:ca:93:
0f:27:02:19:a0:5e:63:f4:6b:a8:b7:5d:00:24:b5:78:f2:08:
f8:f0:5b:32:f3:14:d1:76:8b:08:c9:2d:a6:a9:de:dd:a0:c1:
65:63:e0:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:13 2024 by rpki-client on console-fra.rpki-client.org