Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/QFe9-1ef79V7TSLs3lIB-UuQvLg.roa
File: QFe9-1ef79V7TSLs3lIB-UuQvLg.roa (raw, json)
Hash identifier: wbPlCN8sBHqHQun/yDed2EWEiUs45dJ5E6T0vB8qdTU=
Subject key identifier: 40:57:BD:FB:57:9F:EF:D5:7B:4D:22:EC:DE:52:01:F9:4B:90:BC:B8
Certificate issuer: /CN=adac830ccaa74783dd961fab241a228d7cc6f808
Certificate serial: 0B046F06
Authority key identifier: AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/QFe9-1ef79V7TSLs3lIB-UuQvLg.roa
Signing time: Sat 05 Feb 2022 08:08:39 +0000
ROA not before: Sat 05 Feb 2022 08:08:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8485
IP address blocks: 185.44.120.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184839942 (0xb046f06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adac830ccaa74783dd961fab241a228d7cc6f808
Validity
Not Before: Feb 5 08:08:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4057bdfb579fefd57b4d22ecde5201f94b90bcb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f2:df:0a:8d:d7:fe:4e:e4:5e:d3:1c:e1:34:
72:5c:1b:5d:5c:ec:5d:14:7d:33:12:62:4c:bc:85:
67:ca:87:b0:a8:96:39:9f:2c:13:8c:7e:57:74:ab:
9b:e3:89:1a:a4:bc:92:15:09:98:dd:60:82:ed:23:
1d:c1:88:26:76:39:a0:1a:5a:22:b1:77:90:a3:b3:
62:12:85:d9:36:6e:da:5c:f5:e5:bd:15:a5:c2:aa:
b7:78:7c:be:ad:d0:21:aa:6b:39:ec:fe:fb:ae:19:
f5:0b:a3:0f:c5:b5:46:41:0f:43:94:b5:ce:ca:d0:
7e:15:b3:14:4a:a8:cf:d9:c2:96:c0:df:67:08:a6:
3f:7c:1d:c2:ca:89:25:6f:d1:ae:cf:4b:51:06:08:
83:03:15:b0:9e:27:ee:36:db:a2:04:62:b2:84:db:
81:2f:af:67:36:7c:db:3f:4a:0c:14:8c:8e:8c:da:
ec:8a:fa:0d:c1:1a:e9:15:8b:cd:41:ef:e3:13:4f:
b3:b5:92:d8:6b:9b:f9:ef:c6:1f:f0:b8:9b:23:20:
19:cc:eb:59:65:21:ec:03:b9:3f:90:f9:3b:e2:29:
d2:d9:74:6b:b9:e4:32:13:34:41:5f:94:a9:0b:f4:
b5:8c:9b:7e:ba:d6:14:2e:98:59:43:bb:a6:77:0b:
2a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:57:BD:FB:57:9F:EF:D5:7B:4D:22:EC:DE:52:01:F9:4B:90:BC:B8
X509v3 Authority Key Identifier:
keyid:AD:AC:83:0C:CA:A7:47:83:DD:96:1F:AB:24:1A:22:8D:7C:C6:F8:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rayDDMqnR4Pdlh-rJBoijXzG-Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/QFe9-1ef79V7TSLs3lIB-UuQvLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/325c8d-d368-4eee-9ca8-929f7d635f4b/1/rayDDMqnR4Pdlh-rJBoijXzG-Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.120.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:33:f8:b4:ed:f0:f5:90:71:f7:b8:24:56:3d:1b:54:6c:c5:
ad:ec:62:ef:fc:85:f9:09:0a:05:4f:1f:8d:c2:6e:bb:d5:59:
07:96:25:f7:df:07:20:47:20:21:e4:1f:3a:5c:36:01:87:1c:
21:0d:ea:08:1e:80:2f:f8:cf:28:68:fe:5d:38:0f:b8:0d:e2:
4d:e3:05:8b:0a:66:51:6d:26:3b:b9:0c:d6:94:5d:60:c1:f7:
31:fa:a5:43:1a:32:09:ce:33:f6:90:bc:1c:4d:8b:d5:1c:01:
a0:0e:d1:1b:98:e4:d5:b7:6d:a8:cb:f2:43:e5:b4:8b:1a:f1:
79:19:55:aa:80:32:5c:43:cd:56:70:76:bc:7f:cf:9e:47:40:
94:d6:13:ac:db:11:ac:1e:4e:82:df:21:40:f2:41:68:bd:fe:
bf:12:af:1d:d2:bd:63:41:f9:88:f7:9f:e2:ca:98:8f:2c:9c:
4e:70:2d:54:6b:68:2e:f0:da:90:62:db:cf:5b:7b:0e:2e:cf:
33:ed:04:85:6d:8c:b3:fc:b9:d3:f9:a8:58:18:94:f2:25:8c:
75:05:15:fd:77:35:d2:71:57:7a:29:01:67:99:63:93:2f:d5:
6a:b3:b6:6d:d7:19:aa:5c:fc:24:0f:36:c8:7c:4d:38:7d:02:
88:4f:7c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:08 2024 by rpki-client on console-fra.rpki-client.org