Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/3dc3c4-9c48-4a64-8fa1-88f7b91b6e32/1/p-0QPCMWXmIOmmUSxHuttvAWFsI.roa
File: p-0QPCMWXmIOmmUSxHuttvAWFsI.roa (raw, json)
Hash identifier: h3rO5yiUR7pAC3nNHWDSFzfk61sV7p0pB/ELjSw6VVg=
Subject key identifier: A7:ED:10:3C:23:16:5E:62:0E:9A:65:12:C4:7B:AD:B6:F0:16:16:C2
Certificate issuer: /CN=ff62562cae873f4fc4a3232bf49dd5343b7084f9
Certificate serial: 05458953
Authority key identifier: FF:62:56:2C:AE:87:3F:4F:C4:A3:23:2B:F4:9D:D5:34:3B:70:84:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2JWLK6HP0_EoyMr9J3VNDtwhPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/3dc3c4-9c48-4a64-8fa1-88f7b91b6e32/1/p-0QPCMWXmIOmmUSxHuttvAWFsI.roa
Signing time: Sat 01 Jan 2022 09:54:12 +0000
ROA not before: Sat 01 Jan 2022 09:54:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15576
IP address blocks: 185.187.120.0/22 maxlen: 22
2a0b:9e80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88443219 (0x5458953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff62562cae873f4fc4a3232bf49dd5343b7084f9
Validity
Not Before: Jan 1 09:54:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7ed103c23165e620e9a6512c47badb6f01616c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:76:a5:df:85:33:16:a2:94:1c:38:4f:56:d1:
6b:95:27:41:cf:01:97:81:06:19:0c:f1:7d:c9:c1:
d7:7d:ff:43:05:17:b2:97:d8:09:cf:1b:51:ff:b1:
1d:f8:9d:bd:54:48:ed:28:10:2d:3d:45:48:79:cd:
f8:50:f6:29:00:18:7f:aa:7a:5e:4b:d3:05:ec:b7:
ea:1d:7d:97:ff:81:fb:ba:bf:8a:e8:e1:52:01:9e:
9b:a1:fe:39:5a:ce:f3:27:f9:43:31:37:5a:f6:29:
ee:10:e5:b0:74:f7:0d:c3:a6:5b:02:e5:84:11:15:
fc:3f:7c:a4:b2:89:b4:82:29:d1:6c:20:f1:84:56:
1f:eb:76:2a:bc:55:78:fa:c0:04:58:e3:79:11:ff:
eb:58:91:6e:3a:a9:58:25:a1:95:5b:65:e0:38:52:
2a:fc:29:d5:bc:84:28:f2:19:99:1c:4d:19:9e:dc:
76:a4:f9:04:4e:80:98:f4:b8:63:58:2e:dc:5d:e3:
49:02:c8:49:61:64:97:79:88:4b:58:b2:21:ae:26:
3c:e9:d7:f1:45:c7:b5:91:3c:bf:a5:b0:32:4c:34:
71:00:00:a6:47:0d:be:24:eb:45:e3:6b:dc:f7:83:
30:da:de:76:ba:38:91:ac:ae:f0:0b:84:ce:0f:55:
c1:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:ED:10:3C:23:16:5E:62:0E:9A:65:12:C4:7B:AD:B6:F0:16:16:C2
X509v3 Authority Key Identifier:
keyid:FF:62:56:2C:AE:87:3F:4F:C4:A3:23:2B:F4:9D:D5:34:3B:70:84:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2JWLK6HP0_EoyMr9J3VNDtwhPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/3dc3c4-9c48-4a64-8fa1-88f7b91b6e32/1/p-0QPCMWXmIOmmUSxHuttvAWFsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/3dc3c4-9c48-4a64-8fa1-88f7b91b6e32/1/_2JWLK6HP0_EoyMr9J3VNDtwhPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.120.0/22
IPv6:
2a0b:9e80::/32
Signature Algorithm: sha256WithRSAEncryption
5b:e1:90:73:13:0c:dc:36:81:45:f0:f4:aa:a2:fe:2e:8f:e3:
db:ca:2c:36:7a:93:40:66:24:ea:21:dd:c9:f0:8b:2d:59:ae:
4d:66:83:04:7c:93:f9:69:f1:88:c7:71:d4:bf:30:cf:14:80:
b7:c4:0d:8f:84:38:8b:b7:c9:8e:c3:99:59:aa:f1:2e:85:e8:
de:4e:6a:48:1d:be:e1:06:b8:1d:a4:5c:f4:ae:37:01:be:57:
17:21:46:e4:3d:92:7f:32:4b:4d:cc:36:0e:4a:a6:ab:ae:39:
55:f1:15:f5:55:06:38:cb:de:16:fc:43:c1:a4:63:79:65:f3:
e6:68:59:d6:4f:72:1d:59:53:db:ba:ad:70:26:b7:49:c6:ec:
34:7d:15:de:e1:5d:2e:5a:14:4d:7d:53:3f:fd:81:1f:27:40:
2c:94:d4:8f:68:28:87:62:a1:41:0b:9d:5f:7e:68:f5:eb:ed:
4c:70:f1:d5:5c:bd:24:d8:3d:65:08:5f:cc:fe:ad:2a:9d:bd:
cf:1c:03:55:63:d5:f7:8e:04:3f:57:f3:22:6f:6d:4d:82:92:
72:14:09:1c:ba:c6:4c:b0:1e:1a:46:b2:ad:b9:b0:2c:01:e3:
77:b4:b9:9b:75:77:f5:4a:34:66:3e:11:25:be:b8:cc:10:02:
72:d2:c4:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:46 2024 by rpki-client on console-ams.rpki-client.org