Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/cd3f48-f7b2-4405-a159-ac1bf80544ca/1/v3Q_s_XNsiVBfiziIqzVmvntn-M.roa
File: v3Q_s_XNsiVBfiziIqzVmvntn-M.roa (raw, json)
Hash identifier: 0k7rb0m0izUrNWV8ye8Gptk6kauHQ2twka1WoVqFE3k=
Subject key identifier: BF:74:3F:B3:F5:CD:B2:25:41:7E:2C:E2:22:AC:D5:9A:F9:ED:9F:E3
Certificate issuer: /CN=efcfc7cf5709588a7087e6c9e10ecaaa8aba59f5
Certificate serial: 02CE7878
Authority key identifier: EF:CF:C7:CF:57:09:58:8A:70:87:E6:C9:E1:0E:CA:AA:8A:BA:59:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/78_Hz1cJWIpwh-bJ4Q7Kqoq6WfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/cd3f48-f7b2-4405-a159-ac1bf80544ca/1/v3Q_s_XNsiVBfiziIqzVmvntn-M.roa
Signing time: Sat 01 Jan 2022 03:02:44 +0000
ROA not before: Sat 01 Jan 2022 03:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50115
IP address blocks: 194.54.160.0/22 maxlen: 24
185.236.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47085688 (0x2ce7878)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efcfc7cf5709588a7087e6c9e10ecaaa8aba59f5
Validity
Not Before: Jan 1 03:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf743fb3f5cdb225417e2ce222acd59af9ed9fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:21:3b:d8:26:56:9d:27:78:77:75:51:5f:33:
37:da:de:db:d4:f4:79:6a:35:8f:5d:c2:bc:17:84:
ee:39:73:bd:6f:59:5f:f9:26:16:6b:fa:a6:f9:d7:
5b:82:ac:c9:39:46:01:f4:2b:91:b6:61:2f:5f:36:
35:39:6f:4a:80:a7:83:bc:be:e5:62:b8:db:46:3a:
58:41:2e:7e:91:5b:89:4f:97:4d:a9:c3:e2:8e:63:
52:61:e3:b7:9a:29:e4:8f:5e:4e:20:ce:75:90:b3:
ad:8b:82:3c:65:ef:6b:70:3b:e0:03:29:0b:45:f3:
b4:c4:b7:d9:31:a6:b2:06:9c:64:c0:8b:60:c5:2e:
85:d7:2d:a5:16:10:e5:e5:6e:cb:9a:91:40:5e:38:
30:4f:5c:3a:e0:2d:c3:e8:c0:c0:04:4e:ec:e1:db:
ae:8a:88:e6:97:cc:25:7c:28:24:27:c8:d4:06:4f:
b3:b5:f8:ae:77:a2:fc:39:75:d0:82:e1:76:51:33:
9f:30:e1:e5:5f:17:aa:23:20:4f:c5:ca:66:c9:59:
2e:d1:0a:ef:51:ac:d4:92:df:f1:57:0a:38:8b:8b:
ba:b7:56:d3:bf:fe:8b:79:91:f2:de:c7:d3:6d:86:
7a:2a:5e:6f:eb:ce:dd:2b:1c:f0:89:8a:16:32:79:
a3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:74:3F:B3:F5:CD:B2:25:41:7E:2C:E2:22:AC:D5:9A:F9:ED:9F:E3
X509v3 Authority Key Identifier:
keyid:EF:CF:C7:CF:57:09:58:8A:70:87:E6:C9:E1:0E:CA:AA:8A:BA:59:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/78_Hz1cJWIpwh-bJ4Q7Kqoq6WfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/cd3f48-f7b2-4405-a159-ac1bf80544ca/1/v3Q_s_XNsiVBfiziIqzVmvntn-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/cd3f48-f7b2-4405-a159-ac1bf80544ca/1/78_Hz1cJWIpwh-bJ4Q7Kqoq6WfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.46.0/24
194.54.160.0/22
Signature Algorithm: sha256WithRSAEncryption
01:f7:ce:b0:48:ca:35:93:79:9b:79:fb:ac:43:95:08:c7:4e:
6f:11:44:b7:12:6e:27:e3:23:95:82:cb:43:8b:45:b9:70:5e:
1f:02:7e:2b:77:d6:1f:45:70:50:fd:27:35:97:a7:62:f5:42:
e3:15:af:d9:66:08:4b:50:18:16:35:0d:0f:00:3b:a5:da:51:
e1:d6:13:70:fc:0c:03:11:9c:30:dc:0e:b7:45:4c:8c:7a:24:
90:0b:6b:bd:5d:28:dc:36:a7:0b:ae:c5:f0:df:79:94:f7:1b:
65:d7:cc:5f:ce:56:6e:9a:e1:f8:93:9c:82:d1:d3:2c:97:91:
d0:30:91:f4:bf:a4:8f:91:0a:4f:cc:70:d5:08:f9:47:46:b2:
66:fa:6d:f9:b6:62:6a:3f:2e:8f:91:9b:4c:ce:22:a3:1c:86:
78:99:42:66:58:03:05:21:a8:10:fa:0d:84:f7:e3:2c:37:7a:
d3:f7:e1:70:fb:e3:40:db:f7:b0:81:c7:f8:9e:ea:37:11:e6:
f0:d5:c7:9a:8e:19:29:9f:9a:53:ad:e2:af:7e:bd:86:67:b2:
60:4b:6b:be:b1:7c:5c:ef:22:bc:03:92:d5:c9:9f:2e:43:54:
c6:23:1e:f5:05:70:92:f5:16:76:f8:1b:0a:d6:a5:eb:71:dd:
7f:2d:92:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:52 2024 by rpki-client on console-ams.rpki-client.org