Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/702a72-3112-4d9f-bba9-8034e2d05d39/1/Q-aqUvuoFocMOEc3yT7XS9w_tTs.roa
File: Q-aqUvuoFocMOEc3yT7XS9w_tTs.roa (raw, json)
Hash identifier: hcNCShbZsNXenZQvSbp2mwK4kyYzLIP03Y4rQmQG9qs=
Subject key identifier: 43:E6:AA:52:FB:A8:16:87:0C:38:47:37:C9:3E:D7:4B:DC:3F:B5:3B
Certificate issuer: /CN=146170cb906ef42d097c6402d83eec3d92677a68
Certificate serial: 14CC4D23
Authority key identifier: 14:61:70:CB:90:6E:F4:2D:09:7C:64:02:D8:3E:EC:3D:92:67:7A:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FGFwy5Bu9C0JfGQC2D7sPZJnemg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/702a72-3112-4d9f-bba9-8034e2d05d39/1/Q-aqUvuoFocMOEc3yT7XS9w_tTs.roa
Signing time: Sat 01 Jan 2022 13:56:25 +0000
ROA not before: Sat 01 Jan 2022 13:56:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 185.67.4.0/22 maxlen: 22
185.67.6.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348933411 (0x14cc4d23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=146170cb906ef42d097c6402d83eec3d92677a68
Validity
Not Before: Jan 1 13:56:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43e6aa52fba816870c384737c93ed74bdc3fb53b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fc:fd:04:04:78:1d:49:b8:8b:b6:33:4c:fa:
7b:2e:c0:ad:cf:6f:9f:67:f2:1e:aa:fd:e2:ac:cb:
22:22:e1:68:0c:94:c5:ce:9d:63:bf:2e:f5:15:b8:
58:6f:11:f2:94:a4:b7:e2:1f:ff:fe:78:75:0e:d8:
92:23:44:73:29:f5:92:d4:ff:9f:0e:86:da:a6:f8:
5c:e5:0b:4f:47:b6:61:49:d4:27:29:45:5a:4a:07:
bb:18:65:2f:c0:51:73:26:46:dd:6f:e3:93:19:27:
be:ee:ed:3f:51:fc:d2:46:e5:c0:d7:ca:8b:d8:cd:
fe:87:ef:df:fd:95:3c:43:52:0a:e5:8e:f5:97:11:
96:08:64:b3:b0:b1:94:a9:a4:8e:26:b2:98:3f:7b:
c8:1c:7b:4f:a5:b4:71:56:c4:bc:c4:00:4a:a1:68:
5b:08:25:e1:90:88:f0:46:e5:5c:aa:3c:aa:d5:6f:
53:36:e7:9b:d3:1d:48:9c:e7:83:26:51:b7:89:5a:
92:3e:0b:a8:c6:c4:c7:89:ca:51:d5:19:ca:c2:00:
fa:a8:00:5b:21:74:f2:1e:c4:40:c6:b9:51:54:a6:
39:e6:f1:70:c4:4e:e9:bd:5c:23:b3:12:ce:ef:87:
18:0b:b4:f3:2c:a4:1e:c5:c8:01:80:65:5d:34:2f:
07:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E6:AA:52:FB:A8:16:87:0C:38:47:37:C9:3E:D7:4B:DC:3F:B5:3B
X509v3 Authority Key Identifier:
keyid:14:61:70:CB:90:6E:F4:2D:09:7C:64:02:D8:3E:EC:3D:92:67:7A:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FGFwy5Bu9C0JfGQC2D7sPZJnemg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/702a72-3112-4d9f-bba9-8034e2d05d39/1/Q-aqUvuoFocMOEc3yT7XS9w_tTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/702a72-3112-4d9f-bba9-8034e2d05d39/1/FGFwy5Bu9C0JfGQC2D7sPZJnemg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.4.0/22
Signature Algorithm: sha256WithRSAEncryption
71:b4:e7:11:7b:d7:8f:da:3f:68:7a:4f:73:a6:d3:42:78:42:
25:ff:a5:9e:0a:b9:52:34:65:38:ec:17:15:69:f0:4d:4f:f8:
83:99:7b:06:21:a6:a2:20:d7:5d:27:99:47:ea:ee:e2:3e:a9:
95:4f:44:56:37:77:47:85:d9:24:3b:91:3a:9b:a8:f4:d4:9b:
08:02:70:15:34:84:6d:9d:da:1e:4c:45:1a:d1:22:01:71:9f:
fc:8d:6c:30:01:99:8c:df:92:c9:d6:f7:bf:17:ca:7a:4b:bd:
79:67:5d:ad:5e:df:5d:e8:f9:8a:87:29:c2:04:01:49:8a:9c:
1d:c1:c3:11:cf:d0:71:9b:f7:4e:d1:e3:7d:a6:c1:1d:a7:7f:
45:91:89:fa:f3:1e:fb:9a:80:b0:a8:7c:8b:ee:9f:49:71:bd:
06:cf:cc:25:6c:2c:9f:c0:7b:5f:85:df:ec:b4:8b:7b:a3:78:
55:3a:f8:04:66:15:41:5b:85:25:3d:15:0b:eb:66:20:79:c3:
b1:40:51:d4:e4:cb:3e:7d:bb:99:3e:03:d5:47:80:b6:77:74:
a2:c6:d2:09:da:b2:4b:8b:c3:fb:d8:18:cb:03:c2:36:32:e0:
83:c3:31:7b:93:b7:cc:28:d0:9a:aa:81:d4:81:a5:f1:fb:5c:
8e:fc:42:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:35 2023 by rpki-client on console-fra.rpki-client.org