Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/qA6Vy5o00M8_iU0lJyyJwgOQi0Y.roa
File: qA6Vy5o00M8_iU0lJyyJwgOQi0Y.roa (raw, json)
Hash identifier: GZjWhEO2qCmnUXi3kAmogu4VYZcQNAcEyCYPltx5S4I=
Subject key identifier: A8:0E:95:CB:9A:34:D0:CF:3F:89:4D:25:27:2C:89:C2:03:90:8B:46
Certificate issuer: /CN=a4d32269302e1cbccbaac0e0e5af8a864498a135
Certificate serial: 787546
Authority key identifier: A4:D3:22:69:30:2E:1C:BC:CB:AA:C0:E0:E5:AF:8A:86:44:98:A1:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/qA6Vy5o00M8_iU0lJyyJwgOQi0Y.roa
Signing time: Sat 01 Jan 2022 03:57:49 +0000
ROA not before: Sat 01 Jan 2022 03:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34741
IP address blocks: 185.174.242.0/24 maxlen: 24
185.174.241.0/24 maxlen: 24
185.174.240.0/24 maxlen: 24
2a07:f100:1000::/36 maxlen: 36
2a07:f100::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7894342 (0x787546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d32269302e1cbccbaac0e0e5af8a864498a135
Validity
Not Before: Jan 1 03:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a80e95cb9a34d0cf3f894d25272c89c203908b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:46:e0:3a:74:08:e3:cc:14:b6:87:1a:44:17:
00:d9:d1:d8:f0:8b:ac:c9:8b:1d:15:dc:5a:54:0e:
e4:a0:57:2b:39:9c:28:32:49:a2:51:79:34:cf:46:
9d:21:23:0d:24:01:36:f9:22:7e:a7:4c:e0:e6:1c:
de:26:a5:21:3b:1e:e0:a9:a0:2a:79:f9:c7:7b:bb:
5b:5c:fe:83:b2:4a:7d:d1:23:75:92:4f:4b:c1:fd:
ef:ed:ba:96:0f:04:f1:3a:72:92:64:e9:56:76:fa:
c4:ce:30:a0:41:1d:3b:96:00:4f:a7:6c:b6:93:fc:
4b:d2:0b:b0:3f:af:4d:cf:bc:e9:e7:7a:6b:37:06:
2f:47:3e:78:2b:de:5b:f7:5f:af:a7:28:d8:8b:df:
c2:6c:a9:bc:77:4f:c9:bd:a3:ba:35:e5:2c:ec:8b:
9a:c7:72:aa:f4:8c:c2:97:5e:c2:e7:ef:44:f8:79:
ac:5f:60:d9:e8:6f:f4:8b:d4:52:39:f1:e0:91:54:
14:6b:24:f4:32:e6:b1:7d:81:4f:1b:24:7e:91:e5:
b5:01:f6:bb:e9:34:20:82:ab:1a:f7:4c:f7:23:3e:
56:fd:ab:c7:e8:1f:d2:04:f7:af:a3:ee:ac:dc:ce:
50:c3:cc:94:5c:cd:ce:ff:50:ec:d9:bd:e1:ce:70:
64:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0E:95:CB:9A:34:D0:CF:3F:89:4D:25:27:2C:89:C2:03:90:8B:46
X509v3 Authority Key Identifier:
keyid:A4:D3:22:69:30:2E:1C:BC:CB:AA:C0:E0:E5:AF:8A:86:44:98:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/qA6Vy5o00M8_iU0lJyyJwgOQi0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.174.240.0-185.174.242.255
IPv6:
2a07:f100::/35
Signature Algorithm: sha256WithRSAEncryption
0f:b3:ca:b3:40:9e:a1:62:9e:5e:bb:c0:b1:c9:ec:48:ba:d8:
02:54:9e:73:94:76:f2:35:88:0a:31:6f:e1:69:09:18:9e:fa:
ad:50:91:77:87:b5:d4:d8:9d:d2:86:7c:49:0b:a5:c1:1c:6a:
90:94:cd:89:01:fc:01:2b:85:0a:6d:9b:d9:b0:7d:cf:f0:9c:
bf:cf:d0:81:8b:c4:65:85:dc:47:de:d0:a7:2e:6c:0e:f6:a3:
ec:74:04:b9:6c:7f:5f:29:f2:3d:91:5d:76:fa:fc:f7:99:a2:
b4:2b:a3:18:d2:2a:ef:9f:66:95:94:62:dd:7a:0f:48:b1:50:
ae:0b:12:cd:2b:3f:de:a8:8e:24:91:b0:23:e7:d2:6d:e2:48:
c3:11:6a:65:75:ec:90:17:47:40:54:a2:35:98:24:1f:e3:d0:
ee:c7:c5:61:05:25:ae:4b:ba:ca:03:b6:ba:a3:0d:75:b7:75:
d5:d0:3b:d6:dc:6c:49:8b:e5:5b:64:fd:c2:71:c5:3e:e1:d6:
53:94:4f:ec:a7:da:fe:73:0a:82:fa:fc:f6:79:1b:7e:80:bf:
13:46:1d:59:f7:de:df:9f:b0:7c:8e:4f:8f:b7:48:af:54:28:
84:70:89:82:55:16:29:24:fa:e9:0e:39:4f:5b:8e:67:d3:d2:
35:86:5e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:11 2024 by rpki-client on console-fra.rpki-client.org