Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/TqQq-u25BAm6jUaROVqVah3LKYc.roa
File: TqQq-u25BAm6jUaROVqVah3LKYc.roa (raw, json)
Hash identifier: +hgfnFQGwVdrIzlUqRd78HPod5SFPvNH4TSTZWuHI5c=
Subject key identifier: 4E:A4:2A:FA:ED:B9:04:09:BA:8D:46:91:39:5A:95:6A:1D:CB:29:87
Certificate issuer: /CN=07c40d70160f308642129a1b72ae5ae52db883c4
Certificate serial: 6DB299
Authority key identifier: 07:C4:0D:70:16:0F:30:86:42:12:9A:1B:72:AE:5A:E5:2D:B8:83:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B8QNcBYPMIZCEpobcq5a5S24g8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/TqQq-u25BAm6jUaROVqVah3LKYc.roa
Signing time: Sat 01 Jan 2022 00:58:31 +0000
ROA not before: Sat 01 Jan 2022 00:58:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59666
IP address blocks: 185.51.209.0/24 maxlen: 24
185.51.210.0/23 maxlen: 23
185.51.208.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7189145 (0x6db299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07c40d70160f308642129a1b72ae5ae52db883c4
Validity
Not Before: Jan 1 00:58:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ea42afaedb90409ba8d4691395a956a1dcb2987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3f:4b:9b:f5:6f:2f:ed:3c:9c:03:48:2d:2a:
66:66:62:6f:8f:0d:76:c6:45:d9:e9:28:98:3a:c5:
56:93:58:88:9c:cf:c7:36:85:99:81:f2:50:32:2f:
63:f3:f0:6e:6c:b4:bd:7b:be:61:83:f0:78:2a:8b:
a5:f1:e0:cb:7c:2c:1f:0b:74:61:87:72:e7:ed:5b:
e4:42:34:0b:a4:88:66:8c:4c:52:8c:17:98:ad:90:
b0:bc:04:17:47:38:db:fb:9b:29:4a:ae:3a:6f:13:
9f:00:ed:70:32:b1:fd:ac:49:0b:e6:8a:30:87:0e:
1e:b8:2c:32:2e:b2:f4:0d:cf:61:8d:67:8a:cc:c1:
06:6f:3c:1b:41:03:78:d0:66:c8:ac:d1:a5:3d:31:
fe:f1:0c:12:d3:bf:a6:2e:d9:6b:3a:5e:09:f3:88:
27:2a:2a:be:df:d2:66:64:78:d4:22:45:24:d4:86:
1c:79:b3:87:08:93:fa:f6:b3:cb:98:51:cf:4d:2a:
04:dc:89:db:83:fc:e2:51:1e:a2:37:dd:f7:a7:da:
00:fc:5f:64:43:30:c5:2d:47:75:2d:46:c3:6d:5e:
ba:07:a1:db:16:93:5b:24:4c:69:50:38:3c:45:e1:
24:85:b2:3e:f8:65:f3:6d:f2:38:85:3c:e7:77:ed:
e1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A4:2A:FA:ED:B9:04:09:BA:8D:46:91:39:5A:95:6A:1D:CB:29:87
X509v3 Authority Key Identifier:
keyid:07:C4:0D:70:16:0F:30:86:42:12:9A:1B:72:AE:5A:E5:2D:B8:83:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B8QNcBYPMIZCEpobcq5a5S24g8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/TqQq-u25BAm6jUaROVqVah3LKYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/B8QNcBYPMIZCEpobcq5a5S24g8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.208.0/22
Signature Algorithm: sha256WithRSAEncryption
64:49:93:52:79:5d:8b:85:3f:27:7e:bc:6d:a8:fc:ad:6f:20:
95:06:95:f1:73:0e:2d:0e:46:ba:57:ab:59:02:d3:95:48:03:
49:31:8a:60:61:24:26:c1:4f:3a:9f:80:6f:8c:cf:45:f1:75:
76:0d:cb:1f:41:3c:92:ab:a1:a4:11:28:f3:48:6d:4e:4c:06:
18:b2:e8:fd:61:77:f5:24:79:95:94:9b:d8:8e:00:d9:87:63:
d1:db:21:54:01:ae:49:98:96:bd:3c:d3:ce:91:ca:1c:a8:1a:
2f:17:b4:63:16:3e:5f:4c:02:be:4a:4d:70:8f:85:b2:b8:84:
92:ca:6b:79:69:44:25:33:dd:12:a0:cc:00:99:82:33:ed:82:
13:13:da:cb:81:7a:8c:18:63:da:7f:ef:d6:66:61:b0:55:77:
39:75:4c:d2:64:57:e0:ba:8b:83:4a:63:85:33:cf:22:79:0d:
76:29:9b:51:68:b1:5a:05:7d:30:0c:5d:3d:f8:98:dc:fd:7d:
24:03:59:f5:f1:fd:29:0d:30:f0:ab:a8:db:8b:e4:50:78:a2:
da:af:1f:6d:b9:35:c6:fb:34:12:5d:18:f7:fc:b3:aa:35:f0:
8a:8a:e0:33:50:f3:e2:52:3b:9e:0d:10:b5:31:ff:a9:56:a9:
8b:36:16:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:12 2024 by rpki-client on console-fra.rpki-client.org