Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/58fee9-3830-4da4-b144-915175e36e8e/1/qx83-1cWTXc-YBnhwPd80o7Fyqg.roa
File: qx83-1cWTXc-YBnhwPd80o7Fyqg.roa (raw, json)
Hash identifier: y1s3KivejiRn+8l47ldf2A8VoeiRdm6NEFy6zkK59EE=
Subject key identifier: AB:1F:37:FB:57:16:4D:77:3E:60:19:E1:C0:F7:7C:D2:8E:C5:CA:A8
Certificate issuer: /CN=79c98cbb37fea2e9c9a6eb6f92887c05a4c50691
Certificate serial: 1152D5A8
Authority key identifier: 79:C9:8C:BB:37:FE:A2:E9:C9:A6:EB:6F:92:88:7C:05:A4:C5:06:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ecmMuzf-ounJputvkoh8BaTFBpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/58fee9-3830-4da4-b144-915175e36e8e/1/qx83-1cWTXc-YBnhwPd80o7Fyqg.roa
Signing time: Sat 01 Jan 2022 09:56:14 +0000
ROA not before: Sat 01 Jan 2022 09:56:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1836
IP address blocks: 185.169.60.0/22 maxlen: 22
2a0a:3d00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290641320 (0x1152d5a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79c98cbb37fea2e9c9a6eb6f92887c05a4c50691
Validity
Not Before: Jan 1 09:56:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab1f37fb57164d773e6019e1c0f77cd28ec5caa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:93:9f:9f:76:ab:35:03:94:5d:c0:90:45:ad:
49:17:1e:de:50:d9:40:2a:75:06:d5:8a:aa:8d:63:
39:0a:dc:af:4e:2e:b2:2d:a2:8c:72:af:41:95:17:
ed:02:88:b5:5d:53:94:a7:44:30:17:8e:fb:6c:1b:
65:f0:de:df:c8:f6:b0:5d:e6:c3:fb:72:dd:81:e9:
1d:ac:38:07:f8:df:ab:e0:21:80:40:a5:42:78:23:
1f:2d:27:db:8e:67:59:73:38:aa:54:97:43:c8:e6:
ac:3b:5d:37:d7:ce:e7:8a:b3:f1:1f:33:9b:88:87:
fb:e9:ff:3c:35:0e:77:2c:53:2f:d1:bd:b7:82:52:
8a:5b:65:99:dd:74:29:db:c6:d7:64:cf:a6:17:96:
56:b7:bd:48:d8:9e:31:33:f6:3f:46:7b:c1:1b:70:
bf:93:0c:27:a7:9a:cb:bd:09:fa:6d:9b:08:33:a7:
8f:fc:d7:e8:31:c9:b4:d2:9d:ac:67:dd:60:80:68:
36:19:0d:2d:ed:39:10:d1:e3:91:c2:68:90:47:35:
e6:de:83:92:6c:a2:db:84:15:ee:00:5b:37:44:fa:
9c:f9:a7:43:d0:12:28:10:03:7e:b4:34:c7:96:6b:
95:c3:a7:e9:f8:2c:e2:39:bd:f5:03:75:88:bf:a6:
3c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:1F:37:FB:57:16:4D:77:3E:60:19:E1:C0:F7:7C:D2:8E:C5:CA:A8
X509v3 Authority Key Identifier:
keyid:79:C9:8C:BB:37:FE:A2:E9:C9:A6:EB:6F:92:88:7C:05:A4:C5:06:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ecmMuzf-ounJputvkoh8BaTFBpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/58fee9-3830-4da4-b144-915175e36e8e/1/qx83-1cWTXc-YBnhwPd80o7Fyqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/58fee9-3830-4da4-b144-915175e36e8e/1/ecmMuzf-ounJputvkoh8BaTFBpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.60.0/22
IPv6:
2a0a:3d00::/48
Signature Algorithm: sha256WithRSAEncryption
8f:a7:2a:45:b6:e0:79:0b:b9:69:f4:5c:3b:06:6d:c7:48:53:
e9:3e:b6:e2:69:39:83:49:83:25:fb:ff:34:0a:44:a8:97:97:
0e:27:f2:21:da:3f:25:1f:e0:fa:be:e1:b0:2b:5d:5f:c8:99:
94:f8:7d:eb:52:a1:c3:a8:2a:f3:17:ad:2c:ff:50:29:d5:ca:
3c:18:3d:16:6c:c5:f8:64:dc:9c:f2:b7:dd:dc:b2:19:91:1d:
25:6a:69:34:bc:5c:f3:bf:09:b9:d3:5e:5e:0b:4c:4c:9a:b6:
45:89:10:ff:be:b1:6c:72:0e:73:74:e5:f3:59:a4:4d:a8:a6:
ef:f5:17:b8:11:12:37:24:ca:96:bf:3a:2c:44:3f:0b:7b:15:
0c:63:37:6f:29:60:5d:75:34:54:92:2c:fa:2c:b5:7a:45:07:
4a:13:46:43:1b:a8:9c:b2:3c:5b:13:0a:bf:69:a2:71:a2:00:
4a:df:75:0b:0f:a6:de:af:b8:89:4b:90:35:20:60:95:dc:f4:
d4:6b:b1:a8:08:cc:86:23:40:f0:3e:89:c5:44:4a:f6:f4:34:
e1:73:ba:22:21:ab:9e:dd:a9:bb:10:4e:35:91:f8:f0:71:4c:
46:af:38:cb:5a:26:3c:43:41:e8:f0:ef:a3:95:ba:a1:5f:4d:
62:86:10:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:11 2023 by rpki-client on console-ams.rpki-client.org