Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/1-qhtqWzHwk5wVR-lL-HEF4r_5SY.roa
File: 1-qhtqWzHwk5wVR-lL-HEF4r_5SY.roa (raw, json)
Hash identifier: Nn+WmnPfzKKLZifoY4Jc+c3hO3LJzgWlhRcyrRZcS/I=
Subject key identifier: FA:A8:6D:A9:6C:C7:C2:4E:70:55:1F:A5:2F:E1:C4:17:8A:FF:E5:26
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03E92797
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/1-qhtqWzHwk5wVR-lL-HEF4r_5SY.roa
Signing time: Sat 01 Jan 2022 13:04:13 +0000
ROA not before: Sat 01 Jan 2022 13:04:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211441
IP address blocks: 185.226.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65611671 (0x3e92797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=faa86da96cc7c24e70551fa52fe1c4178affe526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:20:28:c0:85:29:a1:cd:47:37:3b:24:6e:aa:
d4:ef:e5:d7:f8:76:f6:4e:13:61:19:8e:6f:63:fc:
19:77:69:ef:18:b2:52:b6:de:45:62:39:84:8a:ee:
55:bb:30:9d:79:4f:c3:80:41:15:18:de:f3:99:d9:
1b:d9:2a:26:f9:5b:1f:d6:b1:b6:20:e9:8b:ec:cb:
a8:72:3f:43:05:3d:c3:e7:a7:7b:02:c9:d0:1c:c3:
23:dd:17:35:cb:6d:14:0f:4e:47:b0:70:0c:e5:96:
bc:9f:ad:3c:de:bb:f0:31:df:84:df:40:61:80:66:
ad:9d:e3:a2:1e:4c:c9:5a:02:c3:d5:18:85:5f:7a:
5f:4d:ba:43:d3:81:aa:1d:f4:71:50:22:0f:f4:46:
c1:19:dc:db:a1:87:b6:58:77:21:76:4a:91:52:0e:
ff:3d:c7:16:ab:f9:df:c1:88:87:8b:2f:01:6e:e2:
13:8a:7c:48:2a:52:33:72:7f:3c:99:80:eb:9d:1c:
0a:1a:58:f4:06:15:95:47:89:c4:b0:27:e2:59:f8:
7b:52:6d:f5:c0:d8:b0:b9:2e:32:19:22:f8:0d:78:
4d:e0:df:98:75:e9:ae:d4:f5:69:27:e4:64:36:6a:
24:9b:1e:8f:54:88:9b:08:ae:e8:4b:23:08:2d:89:
0f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A8:6D:A9:6C:C7:C2:4E:70:55:1F:A5:2F:E1:C4:17:8A:FF:E5:26
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/1-qhtqWzHwk5wVR-lL-HEF4r_5SY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.226.195.0/24
Signature Algorithm: sha256WithRSAEncryption
76:20:89:fc:9f:cb:d9:0e:9d:bb:27:7e:09:22:24:f6:bb:1b:
43:82:97:36:53:ae:8f:9c:d3:fb:fb:8c:d8:36:87:05:8a:aa:
f7:6c:f5:ff:cf:bb:31:72:19:11:b0:df:7f:55:99:7c:df:51:
4f:76:11:61:82:5f:c7:09:da:76:79:87:3a:a7:bd:c3:04:7b:
5b:bc:1e:e6:0e:e9:bb:8b:70:1a:72:20:d2:34:59:f1:48:f3:
14:d6:e8:4b:3f:cb:6a:e8:cf:80:96:f6:44:d9:b2:29:7e:3d:
34:b3:cb:67:a5:8d:b2:ed:58:26:04:84:72:c5:08:8f:28:4b:
38:60:78:dd:04:60:1d:78:4c:e3:1d:fd:de:ea:21:01:80:d3:
41:49:89:56:3b:eb:0e:bc:5f:35:5b:30:13:0a:98:42:60:fa:
be:1a:89:28:29:36:d3:18:e0:50:ad:4d:ff:67:d3:27:1a:79:
07:65:e0:11:3e:9a:d1:dc:c9:85:ae:b8:6f:03:c7:70:32:bf:
cf:37:9c:38:e6:db:83:12:24:34:06:b2:ed:18:47:ae:fa:00:
06:08:8e:82:ce:4a:bc:20:7f:09:f0:96:a3:73:d3:ca:72:cb:
4b:50:b2:14:b4:5f:53:3e:0c:01:c6:4a:b4:ae:58:73:a1:82:
19:a6:65:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org