Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/QDLdFRZPFx4UelVkJwjhGzIkQgo.roa
File: QDLdFRZPFx4UelVkJwjhGzIkQgo.roa (raw, json)
Hash identifier: P3WkAc/GUdi4tH97ejMM42Hs2linMOvvPnXvlWzLPSc=
Subject key identifier: 40:32:DD:15:16:4F:17:1E:14:7A:55:64:27:08:E1:1B:32:24:42:0A
Certificate issuer: /CN=93dc45ffe13f841f188af743bd7dc34ed54805d4
Certificate serial: 01837DFCE2535076430CD38EE71F093FFCB4
Authority key identifier: 93:DC:45:FF:E1:3F:84:1F:18:8A:F7:43:BD:7D:C3:4E:D5:48:05:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9xF_-E_hB8YivdDvX3DTtVIBdQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/QDLdFRZPFx4UelVkJwjhGzIkQgo.roa
Signing time: Tue 27 Sep 2022 08:07:48 +0000
ROA not before: Tue 27 Sep 2022 08:07:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206063
IP address blocks: 185.188.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7d:fc:e2:53:50:76:43:0c:d3:8e:e7:1f:09:3f:fc:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93dc45ffe13f841f188af743bd7dc34ed54805d4
Validity
Not Before: Sep 27 08:07:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4032dd15164f171e147a55642708e11b3224420a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c2:01:cc:44:f6:3d:f8:c7:5a:c1:ca:ed:c5:
f5:c0:e2:3a:98:fb:7f:1b:da:7f:e2:17:82:bd:42:
4a:9f:1a:af:20:ba:a2:19:58:04:04:1e:f2:68:01:
ba:3a:93:9b:4d:b2:e9:c3:bc:c7:50:61:f1:01:19:
d5:60:95:a7:eb:26:68:ba:54:7d:3f:69:bd:37:a1:
da:42:23:de:9f:c0:b9:f5:0f:ab:14:83:e7:c7:77:
e3:00:95:ad:ff:e6:c5:40:fa:04:38:5b:76:29:5d:
0b:c1:92:3a:31:48:66:dc:2a:d9:f4:39:0b:f9:1e:
3e:f4:a2:2a:ba:e3:47:fe:6b:62:6d:98:b7:5f:71:
ba:e5:4d:36:e9:52:cb:1b:4d:cb:eb:57:b7:6a:42:
27:d1:5a:2a:65:2b:d0:b5:5a:0e:0e:a2:dc:81:64:
fc:c1:a7:22:58:42:15:cb:f6:d5:e3:0c:ba:91:7e:
b9:5b:8f:61:87:32:f5:45:3a:f7:f8:74:2f:c7:78:
0f:d3:8d:a3:15:42:96:b2:dd:b6:2c:19:9e:3e:cc:
72:84:9b:4e:f8:d1:c2:5e:4b:0c:e3:04:c1:14:64:
18:4f:41:2a:5c:d7:bb:8b:3a:af:a6:aa:42:52:05:
69:25:fc:b9:b5:ce:73:54:e0:7f:ae:a7:be:47:38:
06:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:32:DD:15:16:4F:17:1E:14:7A:55:64:27:08:E1:1B:32:24:42:0A
X509v3 Authority Key Identifier:
keyid:93:DC:45:FF:E1:3F:84:1F:18:8A:F7:43:BD:7D:C3:4E:D5:48:05:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9xF_-E_hB8YivdDvX3DTtVIBdQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/QDLdFRZPFx4UelVkJwjhGzIkQgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/2d0b19-0aff-412f-a2fd-21895728ba4e/1/k9xF_-E_hB8YivdDvX3DTtVIBdQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.0.0/23
Signature Algorithm: sha256WithRSAEncryption
81:72:97:68:b4:09:73:e6:be:4c:a5:ea:57:92:3a:53:2d:7d:
13:10:84:b7:35:1d:f5:5e:78:6e:1a:bf:b0:b1:06:18:54:74:
63:a3:33:35:27:65:3b:c9:82:d0:55:0e:c5:8e:ae:ba:91:28:
fe:6e:48:4c:0a:bd:52:12:83:e3:6d:17:7a:10:22:6f:3e:33:
57:7e:78:57:f7:27:5a:e7:8b:fc:c6:12:7d:6d:af:d2:e2:5b:
83:90:b0:a9:b1:a8:be:9e:5f:9c:32:91:3a:97:ae:54:b5:cc:
52:8f:86:4b:fc:f2:2f:9c:e6:df:b4:27:fc:b4:a7:b0:56:f8:
95:9a:81:71:71:44:aa:52:90:f1:9a:f0:57:7f:05:b5:d8:3c:
a1:93:4a:d3:cb:76:f7:bf:5c:c0:e6:0a:50:14:09:db:58:28:
9a:b8:98:03:23:ca:9a:4e:24:1b:fc:ac:c7:1b:52:7a:85:7d:
83:cc:3b:bb:34:b2:a1:c2:35:b4:bb:fc:a0:34:bb:8d:e3:20:
ce:e7:d7:8d:37:94:0b:ed:70:4a:21:3a:99:ae:16:f9:39:ce:
9b:96:c4:7a:d6:1a:f8:5a:9c:af:09:01:27:9c:a0:8d:7a:c4:
cb:de:af:0b:61:3b:35:5d:b1:7b:34:23:ea:d7:16:a9:45:00:
42:a3:df:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYN9/OJTUHZDDNOO5x8JP/y0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZGM0NWZmZTEzZjg0MWYxODhhZjc0M2JkN2RjMzRlZDU0
ODA1ZDQwHhcNMjIwOTI3MDgwNzQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDMyZGQxNTE2NGYxNzFlMTQ3YTU1NjQyNzA4ZTExYjMyMjQ0MjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsIBzET2PfjHWsHK7cX1wOI6mPt/
G9p/4heCvUJKnxqvILqiGVgEBB7yaAG6OpObTbLpw7zHUGHxARnVYJWn6yZoulR9
P2m9N6HaQiPen8C59Q+rFIPnx3fjAJWt/+bFQPoEOFt2KV0LwZI6MUhm3CrZ9DkL
+R4+9KIquuNH/mtibZi3X3G65U026VLLG03L61e3akIn0VoqZSvQtVoODqLcgWT8
waciWEIVy/bV4wy6kX65W49hhzL1RTr3+HQvx3gP042jFUKWst22LBmePsxyhJtO
+NHCXksM4wTBFGQYT0EqXNe7izqvpqpCUgVpJfy5tc5zVOB/rqe+RzgGAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEAy3RUWTxceFHpVZCcI4RsyJEIKMB8GA1UdIwQY
MBaAFJPcRf/hP4QfGIr3Q719w07VSAXUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazl4Rl8tRV9oQjhZaXZkRHZYM0RUdFZJQmRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8yZDBiMTktMGFmZi00MTJmLWEyZmQt
MjE4OTU3MjhiYTRlLzEvUURMZEZSWlBGeDRVZWxWa0p3amhHeklrUWdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8yZDBiMTktMGFmZi00MTJmLWEyZmQtMjE4OTU3MjhiYTRl
LzEvazl4Rl8tRV9oQjhZaXZkRHZYM0RUdFZJQmRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBubwAMA0G
CSqGSIb3DQEBCwUAA4IBAQCBcpdotAlz5r5MpepXkjpTLX0TEIS3NR31XnhuGr+w
sQYYVHRjozM1J2U7yYLQVQ7Fjq66kSj+bkhMCr1SEoPjbRd6ECJvPjNXfnhX9yda
54v8xhJ9ba/S4luDkLCpsai+nl+cMpE6l65UtcxSj4ZL/PIvnObftCf8tKewVviV
moFxcUSqUpDxmvBXfwW12Dyhk0rTy3b3v1zA5gpQFAnbWCiauJgDI8qaTiQb/KzH
G1J6hX2DzDu7NLKhwjW0u/ygNLuN4yDO59eNN5QL7XBKITqZrhb5Oc6blsR61hr4
WpyvCQEnnKCNesTL3q8LYTs1XbF7NCPq1xapRQBCo98T
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:21 2024 by rpki-client on console-fra.rpki-client.org