Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/3c6876-96ae-48af-ae7a-ff05d446e7fd/1/qL7Z0cThI-9TAF-gqTfxkEJVYP4.roa
File: qL7Z0cThI-9TAF-gqTfxkEJVYP4.roa (raw, json)
Hash identifier: wSWOsXtFvQ/YrbQ0GrU+ujAQ6VhsUmcC9+V3PVt7a/Y=
Subject key identifier: A8:BE:D9:D1:C4:E1:23:EF:53:00:5F:A0:A9:37:F1:90:42:55:60:FE
Certificate issuer: /CN=b9114dff36b948b56c211d25f398751d35b93cc2
Certificate serial: 02710D
Authority key identifier: B9:11:4D:FF:36:B9:48:B5:6C:21:1D:25:F3:98:75:1D:35:B9:3C:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRFN_za5SLVsIR0l85h1HTW5PMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/3c6876-96ae-48af-ae7a-ff05d446e7fd/1/qL7Z0cThI-9TAF-gqTfxkEJVYP4.roa
Signing time: Mon 17 Jan 2022 15:23:37 +0000
ROA not before: Mon 17 Jan 2022 15:23:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51088
IP address blocks: 185.46.173.0/24 maxlen: 24
2a12:4180::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160013 (0x2710d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9114dff36b948b56c211d25f398751d35b93cc2
Validity
Not Before: Jan 17 15:23:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8bed9d1c4e123ef53005fa0a937f190425560fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e2:d8:aa:a9:5c:fb:75:0f:47:8c:82:54:70:
60:0b:8d:82:b0:cf:83:c7:95:57:3f:de:c5:f9:40:
c1:cc:ef:ca:65:5b:d7:14:46:45:b2:ca:4e:3d:25:
f4:bf:f7:46:81:69:a0:1b:0a:4a:28:0c:92:79:96:
34:5c:9d:61:3c:d7:c5:f2:69:83:b5:ea:25:c8:3a:
e8:cd:d9:f4:e8:d5:69:ba:51:1f:ed:1e:a3:7a:27:
ab:b3:2a:6a:b5:ef:ff:f5:76:64:b0:31:69:55:e2:
1c:2a:f0:7b:59:b8:53:11:a7:1a:46:a4:b7:7c:47:
b2:d5:79:10:cf:96:2a:e7:f2:8d:bb:fd:51:d2:6d:
55:a8:af:90:35:b9:31:0e:12:33:50:12:78:f8:8d:
79:32:91:91:19:15:6f:e7:27:23:63:57:57:e7:80:
ae:76:97:36:79:ca:d3:2e:43:59:ad:db:36:3e:68:
05:0f:cd:7e:b3:c1:d9:cf:7e:cf:dc:37:f0:78:ae:
50:6d:6c:4b:34:5e:f8:02:dd:e2:55:30:a4:ac:24:
ca:fa:23:8e:06:40:5d:90:13:9c:4e:c4:9b:ea:30:
c6:5a:70:62:69:98:ea:39:b9:62:ae:a9:a1:32:07:
a9:ec:6d:39:e9:b7:02:78:31:53:65:e0:3f:81:9e:
a5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:BE:D9:D1:C4:E1:23:EF:53:00:5F:A0:A9:37:F1:90:42:55:60:FE
X509v3 Authority Key Identifier:
keyid:B9:11:4D:FF:36:B9:48:B5:6C:21:1D:25:F3:98:75:1D:35:B9:3C:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRFN_za5SLVsIR0l85h1HTW5PMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/3c6876-96ae-48af-ae7a-ff05d446e7fd/1/qL7Z0cThI-9TAF-gqTfxkEJVYP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/3c6876-96ae-48af-ae7a-ff05d446e7fd/1/uRFN_za5SLVsIR0l85h1HTW5PMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.173.0/24
IPv6:
2a12:4180::/29
Signature Algorithm: sha256WithRSAEncryption
b5:fc:22:f8:46:f7:38:93:2a:5b:90:57:bb:5b:14:0e:c8:7a:
07:e2:57:94:c4:9b:06:6c:60:99:a4:79:8c:77:50:d4:92:0a:
88:51:cf:57:68:f0:dd:44:64:b7:b7:d1:39:61:c5:94:80:d3:
fa:57:71:32:35:e9:2d:1d:e5:2e:90:78:c3:fc:d1:73:d9:ae:
db:70:79:66:3d:c0:f0:dc:c9:98:27:25:54:dc:8e:34:68:bb:
72:62:ae:3c:8e:85:14:83:01:e5:c8:20:c8:18:ee:e6:64:f5:
9d:51:b4:ee:33:aa:b5:8c:ac:16:18:60:88:ad:50:31:01:92:
2c:8a:f6:f7:6f:0c:4d:0d:14:ed:c6:b0:c5:ef:53:34:40:6c:
d1:10:0f:57:ce:e7:98:1a:b4:5f:1b:8c:c0:d1:2b:a0:84:3e:
95:a1:f8:f6:58:dd:93:a6:b3:63:59:44:cd:0e:e5:11:5e:00:
07:6d:1d:1a:bc:20:a0:7b:ee:23:16:a1:67:c9:e3:6e:c9:0e:
af:fc:cf:66:ac:4d:dd:16:40:eb:a4:83:7b:e5:e2:49:35:73:
44:67:d9:ba:48:38:d9:37:39:2f:54:5c:b2:43:c6:08:1c:71:
d7:cc:bd:64:16:1a:8a:90:70:f7:19:f6:96:57:0a:31:43:a4:
5c:46:cd:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:22 2023 by rpki-client on console-ams.rpki-client.org