Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/sQN4MW7fiNfrhC6WdKtjVOjQl1U.roa
File: sQN4MW7fiNfrhC6WdKtjVOjQl1U.roa (raw, json)
Hash identifier: /m7+O2AAClu7soeoxeLp0ynS5zcLpPCjuixbIAFbyE4=
Subject key identifier: B1:03:78:31:6E:DF:88:D7:EB:84:2E:96:74:AB:63:54:E8:D0:97:55
Certificate issuer: /CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Certificate serial: 0249EAC4
Authority key identifier: 57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/sQN4MW7fiNfrhC6WdKtjVOjQl1U.roa
Signing time: Tue 01 Feb 2022 07:42:05 +0000
ROA not before: Tue 01 Feb 2022 07:42:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.132.187.0/24 maxlen: 24
185.212.206.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38398660 (0x249eac4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=570fb0f1d8b8c198b0dc86158afbcbc529cf16be
Validity
Not Before: Feb 1 07:42:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b10378316edf88d7eb842e9674ab6354e8d09755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:93:6f:89:65:61:fa:05:a5:5e:02:36:dc:71:
0b:cf:29:2f:a0:3f:ae:fc:01:1e:e3:df:4f:e0:70:
1e:c9:80:99:a8:c2:10:c0:e8:95:d0:7c:cd:94:a4:
d1:cc:2f:ce:44:31:2c:39:c4:bf:0b:55:68:41:21:
f7:15:1c:fc:79:34:12:42:51:75:06:74:16:59:9e:
2c:d9:f5:5c:bb:28:5e:f7:33:d7:c3:0b:f7:5a:f5:
38:c4:99:66:cb:8b:40:83:ae:96:cb:ce:a2:b0:f7:
aa:92:02:3b:8b:89:a7:6c:16:6f:ba:a4:8d:64:aa:
4d:4a:37:18:b4:f2:c2:4b:46:4f:c7:fa:7e:de:d3:
ab:8e:bc:0f:ca:12:90:06:53:57:91:41:e8:8c:de:
98:33:37:9a:83:03:d3:97:80:13:f0:46:de:c5:28:
19:85:43:f7:8e:78:61:a6:c9:fe:bb:87:6d:16:d4:
6e:07:2e:0e:1a:ae:5c:f6:ee:61:7e:c9:3d:22:92:
57:6e:d2:17:35:ac:f6:00:5b:21:70:df:31:30:cd:
57:5b:15:34:a5:e7:fa:05:d1:76:29:78:5b:4d:31:
be:17:e0:57:c4:fa:09:7b:77:70:5e:af:87:9e:c9:
ba:84:04:78:97:05:63:b9:f0:a3:e6:8f:c8:10:fc:
74:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:03:78:31:6E:DF:88:D7:EB:84:2E:96:74:AB:63:54:E8:D0:97:55
X509v3 Authority Key Identifier:
keyid:57:0F:B0:F1:D8:B8:C1:98:B0:DC:86:15:8A:FB:CB:C5:29:CF:16:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vw-w8di4wZiw3IYVivvLxSnPFr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/sQN4MW7fiNfrhC6WdKtjVOjQl1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0949fc-accd-471f-a9cd-97243e316272/1/Vw-w8di4wZiw3IYVivvLxSnPFr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.187.0/24
185.212.206.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:36:82:0d:a5:db:eb:77:1e:03:66:78:39:46:4f:75:4b:ed:
d0:97:cb:f7:5f:18:f2:3f:95:07:0c:af:13:f7:0c:db:ed:f1:
c2:0b:dc:70:6a:c9:6b:a9:4f:88:db:bb:eb:5c:8d:5e:5c:29:
2a:d3:90:ed:3a:4d:29:4d:d2:c6:34:c8:da:e3:ef:c9:c2:38:
17:5e:d3:a1:cb:82:4b:4c:e9:f8:3c:a6:6d:a8:3d:13:4c:20:
90:4e:cc:ee:89:0d:82:91:9f:39:3a:6a:6a:d8:7e:8a:b2:02:
e8:a8:1f:30:83:7c:92:85:47:a4:46:6c:46:7e:90:11:47:69:
51:7f:3d:d9:c7:7d:c7:db:f4:90:ae:e3:8c:8d:8a:c9:15:c0:
e5:19:be:00:38:31:49:6d:be:45:e9:2b:bb:a6:9a:6b:ef:79:
ac:41:92:33:e2:b7:e5:4e:34:06:1b:c1:61:5f:9e:7a:81:e3:
ed:16:2f:34:50:5a:1e:7a:46:56:ea:e1:3e:e7:2b:e5:55:cc:
25:e5:d2:c4:6a:ef:12:e1:3f:0f:0c:e9:a5:c5:c5:d4:d6:87:
f4:f4:89:b6:6a:18:4e:b7:4a:94:01:54:e9:f9:a4:44:a5:31:
fe:69:f7:c0:f2:39:37:1d:d8:d5:85:6b:e5:35:2e:08:c3:98:
69:24:2e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:39 2023 by rpki-client on console-ams.rpki-client.org