Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/34d39a-62d2-40f2-84aa-9724cad6baee/1/Q_jIBv0qrwPXXtvsqsMDJfV2R9Q.roa
File: Q_jIBv0qrwPXXtvsqsMDJfV2R9Q.roa (raw, json)
Hash identifier: r0tGyuiIcE6peKCN9FgdysNeq/JIkUv3xxu9QsEpwQU=
Subject key identifier: 43:F8:C8:06:FD:2A:AF:03:D7:5E:DB:EC:AA:C3:03:25:F5:76:47:D4
Certificate issuer: /CN=f0d4819e663aa9487b6a082a77d2237e1b8802a1
Certificate serial: 1666F2
Authority key identifier: F0:D4:81:9E:66:3A:A9:48:7B:6A:08:2A:77:D2:23:7E:1B:88:02:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8NSBnmY6qUh7aggqd9IjfhuIAqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/34d39a-62d2-40f2-84aa-9724cad6baee/1/Q_jIBv0qrwPXXtvsqsMDJfV2R9Q.roa
Signing time: Wed 22 Jun 2022 08:18:11 +0000
ROA not before: Wed 22 Jun 2022 08:18:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 185.234.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1468146 (0x1666f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0d4819e663aa9487b6a082a77d2237e1b8802a1
Validity
Not Before: Jun 22 08:18:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43f8c806fd2aaf03d75edbecaac30325f57647d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1a:4a:70:bf:30:8d:8f:40:65:67:96:a6:c4:
02:b8:5b:11:5c:71:13:6f:1f:34:cd:04:b7:3d:e6:
a9:c4:67:37:a1:6b:9e:84:04:7a:e5:d6:4f:19:55:
b5:40:41:a5:52:c8:29:c6:17:50:89:5f:8c:ac:d4:
eb:51:99:98:a1:f5:37:bd:df:ab:f8:5b:80:c3:b8:
e2:be:9f:1e:d8:38:58:27:a0:7f:91:59:1f:b8:b5:
f5:56:6a:88:ec:90:9c:78:df:11:83:fe:04:2e:7c:
c8:5b:b8:ac:bb:22:51:e8:a1:10:42:f0:cf:10:8d:
7e:fd:d7:74:04:a0:43:a1:fc:95:5a:41:a0:ac:e9:
93:04:89:c4:a4:b0:d2:06:c0:8c:ef:d8:de:72:13:
37:09:82:41:18:ea:1d:23:cb:21:9c:ad:01:a2:1a:
25:de:1c:36:88:91:79:41:a0:b3:b7:72:3b:f1:fe:
44:6a:96:67:80:bc:d5:b1:13:70:c9:0f:2e:9b:24:
f1:28:ee:93:3d:7c:d5:2e:36:39:60:7e:45:1f:48:
80:d2:93:62:d4:09:53:c6:d1:50:cf:81:95:76:cb:
ef:6b:04:49:79:84:c4:11:75:13:26:6c:ce:70:79:
e3:aa:b6:b1:f8:76:e9:8e:d8:26:ce:29:49:01:7b:
d7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F8:C8:06:FD:2A:AF:03:D7:5E:DB:EC:AA:C3:03:25:F5:76:47:D4
X509v3 Authority Key Identifier:
keyid:F0:D4:81:9E:66:3A:A9:48:7B:6A:08:2A:77:D2:23:7E:1B:88:02:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8NSBnmY6qUh7aggqd9IjfhuIAqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/34d39a-62d2-40f2-84aa-9724cad6baee/1/Q_jIBv0qrwPXXtvsqsMDJfV2R9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/34d39a-62d2-40f2-84aa-9724cad6baee/1/8NSBnmY6qUh7aggqd9IjfhuIAqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.100.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:b9:d2:1a:a8:55:79:15:b9:14:24:ad:d9:0d:cf:1a:b2:12:
8e:e7:97:0a:26:1e:b5:36:1d:09:02:bf:5c:dc:50:58:99:39:
78:69:0d:4a:7a:32:58:92:cb:7f:e0:ee:64:f0:df:92:a2:2c:
cf:2e:ba:93:16:a8:d6:17:b5:96:89:47:01:a9:0a:f9:05:c5:
1e:14:86:b9:54:f5:29:34:1e:d2:f4:e3:7f:47:3d:8b:1c:95:
56:08:e2:d8:04:dc:71:c0:e6:43:06:53:c6:a5:0c:d8:76:90:
be:e1:6c:ce:54:92:cd:7e:5b:a2:ee:aa:e3:51:d3:a8:ce:42:
56:e0:80:15:a4:0a:9e:8d:1f:0e:14:27:c0:ea:20:ef:0c:ec:
25:5c:ad:02:aa:bc:63:8a:45:b3:ff:d8:56:35:8d:bf:f3:74:
ad:29:98:a0:52:7c:59:41:d4:1d:1c:dc:f9:57:7d:4e:0b:00:
42:56:1f:71:7e:55:14:e1:ae:13:c4:6d:79:1e:a1:a3:c5:d9:
d9:7d:fd:60:0f:74:c5:73:fc:e6:62:ed:78:19:d3:7b:ae:71:
b6:a3:e9:a1:47:85:16:e0:de:30:5d:b6:cf:d1:85:5a:76:d3:
29:73:a4:54:1b:9b:7d:31:98:e6:70:4b:00:1e:fc:f1:83:d5:
4a:d3:19:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:37 2023 by rpki-client on console-fra.rpki-client.org