Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/5b43b8-5cfa-4407-8b63-baa0a30e371f/1/QSWklIDWnnh6uZNOgr6SaNPOi60.roa
File: QSWklIDWnnh6uZNOgr6SaNPOi60.roa (raw, json)
Hash identifier: s5fTfXr3Ruk5HFiPr0AxBUqeLXIumeOaxfeXEAmtL6Y=
Subject key identifier: 41:25:A4:94:80:D6:9E:78:7A:B9:93:4E:82:BE:92:68:D3:CE:8B:AD
Certificate issuer: /CN=dc432b427a84b541164a2fcb6c34b54fba79ec9a
Certificate serial: 0A887EF1
Authority key identifier: DC:43:2B:42:7A:84:B5:41:16:4A:2F:CB:6C:34:B5:4F:BA:79:EC:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EMrQnqEtUEWSi_LbDS1T7p57Jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/5b43b8-5cfa-4407-8b63-baa0a30e371f/1/QSWklIDWnnh6uZNOgr6SaNPOi60.roa
Signing time: Sat 01 Jan 2022 16:06:39 +0000
ROA not before: Sat 01 Jan 2022 16:06:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15879
IP address blocks: 185.138.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176717553 (0xa887ef1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc432b427a84b541164a2fcb6c34b54fba79ec9a
Validity
Not Before: Jan 1 16:06:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4125a49480d69e787ab9934e82be9268d3ce8bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:31:ea:5e:ae:e4:93:90:27:8a:27:75:a1:42:
bf:96:c0:12:69:04:0b:d4:b8:b6:e1:23:6c:92:f9:
f6:53:b6:cf:59:fc:eb:9e:c4:4f:39:ed:70:f3:87:
b9:40:7a:61:25:89:c1:f0:5b:c6:32:80:d6:e1:40:
e0:0a:a5:ae:da:1b:19:93:a3:50:65:e7:53:65:ac:
59:7d:fd:70:1a:07:ff:91:13:e9:08:8d:29:bd:a1:
80:54:b1:c3:6a:b1:3c:c2:98:03:ab:a2:bc:36:a1:
86:5b:ef:df:96:2f:3d:e1:e5:b9:fa:42:2c:a4:a1:
50:c8:ca:0b:da:14:43:86:29:2f:a8:79:20:67:84:
31:08:2a:9a:43:fc:0e:0d:11:96:2d:a2:8c:c4:98:
7b:25:f8:66:bb:6a:d0:21:7f:dc:2b:7a:15:be:96:
de:a5:77:68:d0:11:d0:3c:f3:3c:3f:2c:33:38:e4:
14:41:22:6e:22:68:c7:73:c6:5a:7b:d1:82:6e:9b:
c7:c7:d1:86:25:99:1e:dc:d4:d6:3f:18:40:a1:fb:
df:d7:b3:b7:12:b5:db:ac:89:5e:55:53:29:fc:50:
6e:53:42:2b:01:88:03:b7:de:a6:11:65:63:a2:2a:
33:84:b3:97:fb:b7:45:b5:76:bc:16:7e:99:3a:27:
af:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:25:A4:94:80:D6:9E:78:7A:B9:93:4E:82:BE:92:68:D3:CE:8B:AD
X509v3 Authority Key Identifier:
keyid:DC:43:2B:42:7A:84:B5:41:16:4A:2F:CB:6C:34:B5:4F:BA:79:EC:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EMrQnqEtUEWSi_LbDS1T7p57Jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5b43b8-5cfa-4407-8b63-baa0a30e371f/1/QSWklIDWnnh6uZNOgr6SaNPOi60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/5b43b8-5cfa-4407-8b63-baa0a30e371f/1/3EMrQnqEtUEWSi_LbDS1T7p57Jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.248.0/22
Signature Algorithm: sha256WithRSAEncryption
95:b1:cd:40:cc:41:92:d3:a7:d7:b0:80:5d:7c:fb:73:02:be:
da:1e:c4:7e:d9:45:f4:e5:fa:5d:be:e4:bb:75:32:40:56:85:
f7:e2:e1:98:ae:26:28:c9:38:fe:32:e3:02:f2:2e:a3:67:87:
4d:4c:8c:07:5a:b5:da:1b:c9:d2:76:32:2d:8b:cc:e6:fc:5a:
e7:f1:08:70:d8:97:5f:d7:64:a0:3f:dd:f4:99:34:6c:89:c6:
1f:2b:c3:6a:1e:8b:25:94:72:42:bb:6d:5a:5e:92:02:07:e2:
fa:3c:62:50:1e:50:f9:d3:5b:91:d2:b7:8d:18:01:31:db:1e:
20:2a:1a:d1:9c:cf:31:b1:3a:84:24:3a:cc:d3:ce:55:f2:df:
16:d6:06:8f:62:2f:b8:9b:28:63:09:df:4a:46:0e:46:0e:d9:
1e:0b:e5:69:91:ee:c3:4d:55:25:bb:2d:9b:1f:01:bd:40:be:
6c:70:99:fa:57:2b:a1:20:b5:6c:c3:20:08:dc:37:db:a2:92:
bc:45:d6:cd:de:97:72:6e:f8:43:f0:e9:af:b1:0e:ca:e4:bc:
ae:43:f6:dc:34:25:ee:49:6c:a6:8d:c6:76:fd:ed:0b:85:7c:
44:50:3e:46:cd:2a:3b:9e:5a:bd:f3:9d:05:c1:ba:22:0f:d0:
1b:b1:7f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:49 2023 by rpki-client on console-fra.rpki-client.org