Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/qJVuWG8DfzKppLzWoK5rMiwDGY0.roa
File: qJVuWG8DfzKppLzWoK5rMiwDGY0.roa (raw, json)
Hash identifier: a+zhca/lWZXY/jO3H9fo1chQJdIBeRRU7vs2BwcvYyg=
Subject key identifier: A8:95:6E:58:6F:03:7F:32:A9:A4:BC:D6:A0:AE:6B:32:2C:03:19:8D
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018512281270FC0182A70E2B98AA9C72AE04
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/qJVuWG8DfzKppLzWoK5rMiwDGY0.roa
Signing time: Wed 14 Dec 2022 19:41:34 +0000
ROA not before: Wed 14 Dec 2022 19:41:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271957
IP address blocks: 185.181.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:12:28:12:70:fc:01:82:a7:0e:2b:98:aa:9c:72:ae:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Dec 14 19:41:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8956e586f037f32a9a4bcd6a0ae6b322c03198d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d0:e8:27:9c:2e:b6:d8:f9:cb:65:f9:99:45:
1d:1f:e6:21:bd:2e:b5:ae:08:ac:cd:2a:8b:26:4c:
f7:eb:47:90:71:51:00:91:fd:3f:ba:22:66:2e:8a:
90:c2:28:01:d9:0c:a9:12:3e:3e:0d:6e:73:ea:ce:
51:b5:b6:2d:70:f6:c8:31:ac:18:36:53:10:bd:7f:
4c:69:bd:a1:d9:59:a2:86:40:93:f9:c0:f4:9b:c6:
10:81:8b:62:45:ba:c5:71:1d:e7:cb:df:a7:de:5c:
47:e8:79:5c:a6:88:eb:78:1d:67:b6:01:33:62:42:
b0:f3:7a:db:b2:ff:b5:f9:07:73:a5:c7:e8:21:a1:
f1:28:29:48:7e:fd:ed:a9:ea:46:21:4e:18:27:ce:
8e:d8:f9:49:10:e8:b8:6c:e1:a8:da:f9:ec:40:08:
7a:e1:f6:73:97:03:e3:e5:b4:ba:12:b8:07:0f:ec:
dd:64:ad:0b:98:43:10:d3:cb:f4:eb:ad:e5:eb:40:
ff:34:9b:6a:07:34:d9:ca:41:cf:23:44:a9:54:17:
b6:1d:4e:71:9c:ee:ab:94:83:2f:71:bc:bf:d8:fb:
6e:aa:cc:57:b7:63:71:b5:0d:e0:62:8c:5d:c6:71:
13:3f:0c:81:90:98:ca:60:19:49:d8:9c:32:cc:0d:
c9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:95:6E:58:6F:03:7F:32:A9:A4:BC:D6:A0:AE:6B:32:2C:03:19:8D
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/qJVuWG8DfzKppLzWoK5rMiwDGY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.32.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:8d:fb:72:2f:22:3a:5b:dc:f8:a0:f0:50:d8:fe:e3:51:ae:
8c:13:f7:f6:c1:35:ad:47:a7:ef:c0:b2:96:16:c8:04:16:30:
e7:f9:dc:85:a8:29:64:03:9e:06:17:71:b0:c4:32:47:c8:70:
c7:54:c7:32:c0:59:48:5c:87:b1:f7:bc:1c:1a:c5:3a:26:22:
ae:96:74:46:55:48:f6:f9:61:c4:2d:1f:ec:5a:31:1c:d0:1e:
c2:e5:1a:67:b5:c7:cd:93:21:dc:cc:6a:88:fd:0c:b5:1f:75:
1f:5f:41:e1:3c:0f:37:67:e2:11:1c:cf:19:2a:76:a1:3b:51:
60:e7:99:e0:f4:2d:a9:4d:0f:96:b4:4c:08:7c:61:fa:16:bf:
bf:dd:93:bf:cb:55:9e:2c:31:a2:c9:b7:7a:ba:4d:75:4a:9e:
95:8f:b5:e9:cc:7b:81:82:2a:ea:cb:cb:b7:74:d0:a5:be:20:
4e:9c:c8:8a:b7:6f:59:b6:3a:46:43:e3:43:26:b7:c0:3c:78:
ce:3a:8b:b4:f5:a8:b7:6f:6b:64:b9:8f:86:7f:5d:12:40:af:
ff:ed:c2:40:4d:49:d1:f2:6a:13:1c:c3:6c:fb:6e:8c:cf:5e:
44:6e:f3:36:fa:a4:3c:e9:95:ba:ed:ca:2e:ed:48:21:cf:c2:
d3:6f:ae:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:36 2023 by rpki-client on console-ams.rpki-client.org