Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/qx9gCG-yJjG1d04GL0XQjJH5WWM.roa
File: qx9gCG-yJjG1d04GL0XQjJH5WWM.roa (raw, json)
Hash identifier: jBUpXXfOHowxQmYwAtJfSTmJYB+8HGWrg1OYdXqgkPk=
Subject key identifier: AB:1F:60:08:6F:B2:26:31:B5:77:4E:06:2F:45:D0:8C:91:F9:59:63
Certificate issuer: /CN=7887a16965875f6f53bcc31f0e493a96154eb7b9
Certificate serial: 03AD2396
Authority key identifier: 78:87:A1:69:65:87:5F:6F:53:BC:C3:1F:0E:49:3A:96:15:4E:B7:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eIehaWWHX29TvMMfDkk6lhVOt7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/qx9gCG-yJjG1d04GL0XQjJH5WWM.roa
Signing time: Sat 01 Jan 2022 16:05:55 +0000
ROA not before: Sat 01 Jan 2022 16:05:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204720
IP address blocks: 185.141.224.0/24 maxlen: 24
185.141.226.0/24 maxlen: 24
185.141.225.0/24 maxlen: 24
185.141.227.0/24 maxlen: 24
2a0c:4481:9::/48 maxlen: 48
2a0c:4480:d::/48 maxlen: 48
2a0c:4480:8::/48 maxlen: 48
2a0c:4480:3::/48 maxlen: 48
2a0c:4481:4::/48 maxlen: 48
2a0c:4481:5::/48 maxlen: 48
2a0c:4480:1::/48 maxlen: 48
2a0c:4480:c::/48 maxlen: 48
2a0c:4480:7::/48 maxlen: 48
2a0c:4481::/48 maxlen: 48
2a0c:4480:2::/48 maxlen: 48
2a0c:4481:1::/48 maxlen: 48
2a0c:4481:6::/48 maxlen: 48
2a0c:4481:7::/48 maxlen: 48
2a0c:4480:b::/48 maxlen: 48
2a0c:4480:6::/48 maxlen: 48
2a0c:4481:2::/48 maxlen: 48
2a0c:4481:3::/48 maxlen: 48
2a0c:4481:8::/48 maxlen: 48
2a0c:4480:a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61678486 (0x3ad2396)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7887a16965875f6f53bcc31f0e493a96154eb7b9
Validity
Not Before: Jan 1 16:05:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab1f60086fb22631b5774e062f45d08c91f95963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ef:a5:03:19:f7:06:a1:50:60:31:5c:5b:ba:
cb:83:53:b4:55:2c:ed:25:b8:3e:e7:b6:39:f3:44:
ca:5b:c6:c5:ed:b9:99:ec:49:24:76:1b:6d:2e:13:
b8:ca:79:2a:a8:cd:6e:1d:4c:95:c8:d0:a7:1d:a0:
d9:fb:9e:03:b6:f8:65:e6:a3:78:9e:40:c6:b5:26:
53:5f:ff:4a:1a:ae:6c:83:34:de:44:fe:bc:07:01:
d5:54:31:78:47:02:b3:ca:9f:bb:27:6a:62:d0:eb:
76:43:79:21:0d:1a:7d:8c:f6:46:f4:36:32:70:81:
da:11:20:8c:f2:b6:6b:9d:da:d5:f6:ed:c9:8f:2b:
52:21:62:08:44:3d:8a:15:0f:d5:49:fb:e2:3f:68:
c6:12:a2:81:8a:c7:2e:eb:48:00:ce:8b:04:3d:8d:
09:f7:19:66:30:32:94:6e:1c:23:b0:1f:f0:ea:e0:
c6:b9:27:33:6e:ed:bb:35:9a:b0:e6:0d:96:94:24:
04:02:db:a7:b4:57:45:e9:98:12:54:eb:c5:d0:b2:
dd:b1:19:16:9b:63:05:b2:17:b8:99:41:ab:05:99:
cf:ef:4e:78:3d:ff:f4:d2:ac:87:24:de:97:8a:34:
f5:d6:97:72:ca:b9:38:74:9d:58:09:63:37:67:20:
70:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:1F:60:08:6F:B2:26:31:B5:77:4E:06:2F:45:D0:8C:91:F9:59:63
X509v3 Authority Key Identifier:
keyid:78:87:A1:69:65:87:5F:6F:53:BC:C3:1F:0E:49:3A:96:15:4E:B7:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eIehaWWHX29TvMMfDkk6lhVOt7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/qx9gCG-yJjG1d04GL0XQjJH5WWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/eIehaWWHX29TvMMfDkk6lhVOt7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.224.0/22
IPv6:
2a0c:4480:1::-2a0c:4480:3:ffff:ffff:ffff:ffff:ffff
2a0c:4480:6::-2a0c:4480:8:ffff:ffff:ffff:ffff:ffff
2a0c:4480:a::-2a0c:4480:d:ffff:ffff:ffff:ffff:ffff
2a0c:4481::-2a0c:4481:9:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
83:83:f9:f7:a3:e9:38:e8:a4:e8:13:7c:81:dd:20:9c:2b:a7:
b4:c3:0e:e1:24:31:da:02:fb:fc:e6:81:5d:c2:0c:55:b7:a9:
85:99:38:d8:e2:fa:8f:dd:a0:da:91:f2:c7:f0:4b:de:ab:50:
4a:9a:a3:37:17:6c:9a:ce:d1:39:fe:03:de:cc:bc:3d:fc:2c:
ca:49:ac:07:4e:fe:46:76:86:ca:f8:ed:9e:23:2a:98:cc:ba:
71:40:af:66:d0:a6:2a:6b:f1:2c:5a:bd:10:e6:9d:bf:7b:15:
61:1a:9d:30:59:a5:14:4c:eb:f2:ad:94:40:cc:40:50:fc:72:
cc:5a:b7:81:40:fb:28:b8:8b:09:0e:0d:fa:9a:8b:ad:72:f5:
5d:0f:4b:a7:d4:ed:75:e1:36:ac:89:5b:1c:35:6a:74:cd:38:
b0:05:31:53:ea:e6:6c:a4:30:4f:75:f1:0c:a1:02:6f:a0:aa:
3f:d6:e8:6a:6e:a3:a8:14:05:d8:69:6c:d9:1a:d6:a0:7a:6d:
2b:13:b7:d3:f3:6c:f7:c0:55:a5:05:76:33:80:1f:0a:df:e9:
90:62:16:45:b6:a5:9a:96:fb:48:35:53:6d:8a:98:44:36:9f:
c9:41:1b:e2:02:bc:7a:93:2b:3e:5d:0b:8b:9b:6f:10:da:1e:
bd:dc:ac:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:54 2024 by rpki-client on console-ams.rpki-client.org