Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/a1923f-26d7-44be-a2be-03cbdb8ff960/1/Q1Jq6pugKBumL-7DsU4hVMBUOMI.roa
File: Q1Jq6pugKBumL-7DsU4hVMBUOMI.roa (raw, json)
Hash identifier: lZdn2eKQOPfC5KuErgu849Jr4KAr/LSnzmbdAvHLZrU=
Subject key identifier: 43:52:6A:EA:9B:A0:28:1B:A6:2F:EE:C3:B1:4E:21:54:C0:54:38:C2
Certificate issuer: /CN=01f649b9d0546227b1d4626c2081e4d3da850efe
Certificate serial: 03A9A8A7
Authority key identifier: 01:F6:49:B9:D0:54:62:27:B1:D4:62:6C:20:81:E4:D3:DA:85:0E:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfZJudBUYiex1GJsIIHk09qFDv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/a1923f-26d7-44be-a2be-03cbdb8ff960/1/Q1Jq6pugKBumL-7DsU4hVMBUOMI.roa
Signing time: Sat 01 Jan 2022 14:04:32 +0000
ROA not before: Sat 01 Jan 2022 14:04:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207143
IP address blocks: 185.35.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61450407 (0x3a9a8a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01f649b9d0546227b1d4626c2081e4d3da850efe
Validity
Not Before: Jan 1 14:04:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43526aea9ba0281ba62feec3b14e2154c05438c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6c:a2:ed:db:c3:28:89:d6:40:7c:7e:0f:a1:
99:a0:e8:de:56:de:73:3a:11:e6:35:f3:35:67:14:
9e:07:b0:95:e0:b1:ae:3b:bc:aa:10:e4:2f:8f:17:
e5:f9:3b:97:73:0e:f9:4e:17:ad:8f:ec:df:54:db:
d3:8e:54:ea:1d:ce:0d:0a:b9:59:de:49:3a:e1:99:
ca:fb:56:94:94:ee:1f:b9:51:ab:72:09:aa:94:86:
25:01:0a:7a:dc:c6:65:97:57:59:25:f4:c3:df:6d:
8e:43:3f:9b:a8:5d:44:ac:2b:a9:b2:1b:f2:7f:e9:
02:14:c2:87:3e:2e:30:a7:ac:ec:2c:65:a3:97:30:
93:8a:0b:98:64:5e:a3:48:a0:64:16:3a:31:29:e5:
5b:5d:ed:a0:db:ea:f5:45:b2:93:89:55:c1:2f:18:
1d:15:64:65:16:9d:ff:92:ba:17:03:df:b1:ef:5e:
e6:7b:c3:26:4a:9b:a2:58:42:af:7b:c2:bb:7e:4b:
88:9f:92:6f:96:2e:57:23:4a:c6:75:bb:c3:d4:b1:
36:af:72:72:68:17:c5:19:52:00:a8:11:3d:da:db:
b4:c9:24:8c:9b:42:79:18:15:70:b2:27:f0:7b:4f:
68:f6:55:47:2a:51:21:30:01:e9:77:dc:e4:f3:bd:
81:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:52:6A:EA:9B:A0:28:1B:A6:2F:EE:C3:B1:4E:21:54:C0:54:38:C2
X509v3 Authority Key Identifier:
keyid:01:F6:49:B9:D0:54:62:27:B1:D4:62:6C:20:81:E4:D3:DA:85:0E:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfZJudBUYiex1GJsIIHk09qFDv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a1923f-26d7-44be-a2be-03cbdb8ff960/1/Q1Jq6pugKBumL-7DsU4hVMBUOMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/a1923f-26d7-44be-a2be-03cbdb8ff960/1/AfZJudBUYiex1GJsIIHk09qFDv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.28.0/22
Signature Algorithm: sha256WithRSAEncryption
95:c8:f5:27:41:4c:ca:87:92:4d:ca:90:67:33:ab:28:81:05:
03:fc:5e:dd:fd:f5:f6:46:17:94:e9:13:26:5c:d3:f2:b5:3d:
95:fd:a7:cb:d8:f2:ab:bb:95:54:f1:30:5f:8f:e9:fd:67:85:
81:38:4e:f2:b6:35:57:f7:13:78:04:75:57:d3:e0:ef:f6:29:
09:de:07:96:98:eb:43:3d:dd:6e:5b:c7:dc:dd:44:67:0d:f2:
76:a6:f6:52:02:a9:cc:76:ec:cb:97:35:8d:31:2d:37:2e:da:
ac:19:fc:7e:33:c0:51:4f:54:fa:31:56:c2:41:08:66:b1:22:
08:3d:e1:9b:d0:f2:c9:e5:a5:87:29:27:9c:12:81:cc:28:09:
60:28:13:fd:fd:6d:52:05:64:fe:bf:60:af:79:ed:e3:27:2b:
1a:aa:da:de:7c:8c:63:e8:56:87:df:7e:27:52:e6:fc:14:71:
a3:8f:91:40:0d:dc:8e:f6:a2:02:76:e3:af:72:be:92:22:43:
ff:07:de:c7:89:0b:64:ca:d6:f6:a3:ad:92:0b:e0:13:60:7b:
43:4f:ff:e7:7d:46:90:26:bb:1c:8d:04:10:e4:a1:7a:22:4c:
d6:40:53:73:b9:c5:05:d5:09:46:04:9e:fb:25:d9:ee:6a:ea:
f0:1d:c2:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:22 2024 by rpki-client on console-ams.rpki-client.org