Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/QwkpZEfAlCbo4Ngd0oEkV2V92E8.roa
File: QwkpZEfAlCbo4Ngd0oEkV2V92E8.roa (raw, json)
Hash identifier: KAduuLz5iWgc75PG6hKTYYae1P3/Zg4VrvqdOmJ5rHM=
Subject key identifier: 43:09:29:64:47:C0:94:26:E8:E0:D8:1D:D2:81:24:57:65:7D:D8:4F
Certificate issuer: /CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Certificate serial: 0FD063B3
Authority key identifier: 1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/QwkpZEfAlCbo4Ngd0oEkV2V92E8.roa
Signing time: Sat 01 Jan 2022 14:07:23 +0000
ROA not before: Sat 01 Jan 2022 14:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.192.56.0/23 maxlen: 23
185.192.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 265315251 (0xfd063b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Validity
Not Before: Jan 1 14:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4309296447c09426e8e0d81dd2812457657dd84f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b7:68:76:d9:57:bc:ad:3f:3d:cb:14:9a:dd:
7c:7d:21:67:bb:97:a0:c7:12:64:11:94:f0:2b:97:
5e:5f:87:e5:d1:31:a5:26:75:42:94:32:68:fa:b1:
c3:ac:de:93:58:5e:e5:2a:9a:09:5d:9c:d0:11:df:
0c:dd:4c:b7:14:08:56:81:44:f7:cf:57:7c:5c:32:
4a:51:9e:5f:90:1a:e8:dc:38:61:d1:62:34:89:43:
49:bb:1f:69:97:cb:3a:30:44:25:2d:2c:4f:46:59:
fa:2a:58:07:cf:9a:5c:da:eb:a1:24:55:bd:38:66:
a8:ae:a2:f3:5a:4d:07:0f:5e:4c:8d:05:06:d8:54:
7d:27:0d:10:6e:77:46:68:5a:b9:69:23:67:42:fc:
8b:5e:e7:80:6e:b3:4f:b9:25:e2:94:ac:bd:47:d9:
bc:72:43:32:d5:0a:a3:b1:a8:cc:92:64:5f:b9:7b:
9b:9c:08:d9:b7:9b:01:df:58:d1:15:9d:79:3a:80:
89:21:28:f5:f1:2b:eb:38:19:4f:cc:3f:fb:f2:8a:
1e:0f:4b:6e:bd:8d:fe:c2:d4:c5:a5:a2:22:c5:e8:
59:6b:c8:c2:d1:2b:29:83:85:4f:d2:3d:01:dc:ea:
3b:ef:c8:eb:41:2d:53:fd:26:83:cb:0d:33:97:94:
4b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:09:29:64:47:C0:94:26:E8:E0:D8:1D:D2:81:24:57:65:7D:D8:4F
X509v3 Authority Key Identifier:
keyid:1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/QwkpZEfAlCbo4Ngd0oEkV2V92E8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.56.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:11:8b:85:40:cc:e7:1b:04:c5:e7:ac:ba:2c:e7:8d:00:05:
f1:e2:ff:48:99:93:d9:8c:1a:be:ac:ac:96:47:63:e4:c2:c2:
2d:4f:c6:ff:68:59:98:10:56:c5:ed:38:3e:6f:c7:58:cc:6f:
ed:fb:38:05:05:b3:d8:fa:ed:be:30:66:ff:6e:64:59:16:94:
73:a1:e2:7b:24:82:b8:b4:fb:a6:90:42:f4:db:9c:a0:34:0e:
ed:4e:f8:bb:09:c7:84:cc:1d:5f:8a:e4:5b:27:d7:6a:ef:d0:
76:dc:9e:da:cb:d6:ec:a8:50:a1:e7:a7:07:f4:7b:6f:18:92:
14:52:9f:e4:1c:92:19:de:b6:1a:85:da:67:e1:da:c7:1a:c7:
c7:c9:d9:71:d2:ca:47:1a:97:f2:ca:02:53:fc:95:c5:d2:58:
ba:a6:a8:d6:71:e1:33:24:87:57:f9:89:7d:27:f6:f6:15:98:
63:e3:d5:6e:6c:79:ef:62:fa:cd:db:c0:a3:9b:0a:ae:4a:c7:
3b:26:d7:46:ee:94:fe:8a:74:30:ea:8f:45:bb:9c:01:06:0f:
fb:1a:93:40:7f:8d:c9:fa:81:75:19:3b:43:c2:5d:66:22:96:
d1:8f:e8:d6:02:f2:f8:63:34:4d:3b:b1:62:6b:e0:21:67:df:
22:f4:4c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:45 2023 by rpki-client on console-fra.rpki-client.org