Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/9fedd0-4ed7-4419-8e73-b5ca0adf2f08/1/QDCV9MpfQEVOHunPPg2If_eWMI4.roa
File: QDCV9MpfQEVOHunPPg2If_eWMI4.roa (raw, json)
Hash identifier: E8DnkO6Oj5xFPhIKuEdfMrVVYa7Xtj1SHE9MzO7qOoY=
Subject key identifier: 40:30:95:F4:CA:5F:40:45:4E:1E:E9:CF:3E:0D:88:7F:F7:96:30:8E
Certificate issuer: /CN=fff442affba1cfaef3102c981d7569502ce6515c
Certificate serial: 0937C98B
Authority key identifier: FF:F4:42:AF:FB:A1:CF:AE:F3:10:2C:98:1D:75:69:50:2C:E6:51:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/__RCr_uhz67zECyYHXVpUCzmUVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/9fedd0-4ed7-4419-8e73-b5ca0adf2f08/1/QDCV9MpfQEVOHunPPg2If_eWMI4.roa
Signing time: Sat 01 Jan 2022 15:07:36 +0000
ROA not before: Sat 01 Jan 2022 15:07:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204861
IP address blocks: 185.237.172.0/22 maxlen: 24
2a0c:1a80::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154651019 (0x937c98b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fff442affba1cfaef3102c981d7569502ce6515c
Validity
Not Before: Jan 1 15:07:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=403095f4ca5f40454e1ee9cf3e0d887ff796308e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d5:b3:45:89:80:b4:47:b2:86:26:64:07:f2:
b9:74:c4:74:e3:53:1d:19:36:6d:77:1e:0a:7f:51:
44:0c:58:d5:a9:6c:85:0e:c6:24:dd:bd:ab:91:68:
7c:b7:86:8d:bb:c7:52:2b:ff:e3:30:39:37:99:5a:
dc:bc:37:f4:2a:fd:b5:da:3e:95:5d:d1:dd:75:b0:
b8:2e:f3:65:cf:e4:a1:f9:79:e4:f1:0a:88:14:17:
cc:bf:8a:66:6c:91:cc:f4:77:c7:bd:ce:c6:9e:39:
a5:f6:18:b3:0b:5d:78:ea:59:fa:31:59:91:16:77:
a8:bb:30:f6:9b:eb:82:a6:7b:0e:bf:9c:c6:ad:e2:
49:f0:1f:60:39:3a:6e:0b:c7:e3:e9:55:b1:b7:b8:
e6:03:7c:db:be:9f:e3:18:60:00:65:d2:9c:84:8d:
50:ff:b8:35:4b:31:c2:04:7a:a9:3d:a7:10:bb:44:
01:a4:fa:7c:d5:f2:ec:44:4e:b7:fc:68:52:da:3b:
cb:a0:c5:f4:75:c4:b3:f1:4d:a0:e5:f7:37:c8:b1:
2e:98:65:d5:3c:cb:a2:03:b9:33:26:6d:ad:0d:ff:
29:a9:c2:6f:3d:b4:b1:b7:3d:1e:52:ce:e8:8a:7d:
66:f3:48:4e:fc:09:bd:9f:90:c1:40:f0:09:1a:60:
1b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:30:95:F4:CA:5F:40:45:4E:1E:E9:CF:3E:0D:88:7F:F7:96:30:8E
X509v3 Authority Key Identifier:
keyid:FF:F4:42:AF:FB:A1:CF:AE:F3:10:2C:98:1D:75:69:50:2C:E6:51:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/__RCr_uhz67zECyYHXVpUCzmUVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/9fedd0-4ed7-4419-8e73-b5ca0adf2f08/1/QDCV9MpfQEVOHunPPg2If_eWMI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/9fedd0-4ed7-4419-8e73-b5ca0adf2f08/1/__RCr_uhz67zECyYHXVpUCzmUVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.172.0/22
IPv6:
2a0c:1a80::/29
Signature Algorithm: sha256WithRSAEncryption
3a:9e:2c:b8:85:1e:64:08:bd:79:32:5c:e9:96:64:77:48:d7:
27:57:62:bb:63:90:3c:fe:42:8a:46:d8:87:b5:f3:ba:24:e1:
60:44:36:a3:cd:3c:78:a4:85:63:68:92:cd:22:0c:e1:a7:7f:
10:b7:fb:ff:40:6d:df:7e:50:d9:7a:e3:f1:ef:be:3f:e8:2a:
20:f4:65:8f:a6:28:60:25:fc:53:dd:97:87:01:5e:9d:07:db:
84:79:93:57:66:ee:7d:ec:25:d2:5d:8e:8c:5e:2d:13:99:b3:
4b:ea:fa:c8:c7:dc:a6:0c:25:bc:9e:c0:1e:ff:88:b6:e6:16:
e5:ca:a8:91:18:80:60:ee:b8:f2:cd:c9:40:e1:3d:dc:c3:7d:
60:5e:00:5e:f5:43:5e:56:1e:3d:17:0f:ac:8e:03:c5:1c:28:
e5:a0:84:6b:a8:9b:fe:ca:30:6d:59:1e:66:d1:ca:2d:fc:af:
bb:41:30:3e:55:04:37:66:d5:05:99:2b:a1:15:64:39:d8:94:
d7:13:3d:fb:98:53:9b:f1:48:e8:f9:56:6e:3e:3c:a2:8f:1b:
7e:37:f5:de:42:22:2b:c9:93:11:9b:b4:f6:53:4f:35:8b:ac:
af:e4:fd:4c:8a:0c:23:5c:0b:5f:af:dc:be:e7:27:64:fe:dc:
19:5f:1a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:29 2024 by rpki-client on console-ams.rpki-client.org