Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/7d3f00-d48c-416f-919e-dc0389f9167d/1/1--Qx_fLdutM1CQb0878KJMpDCuw.roa
File: 1--Qx_fLdutM1CQb0878KJMpDCuw.roa (raw, json)
Hash identifier: c0UGxCGLiWK/0/S9SYfl6WxrB41c8ntgR+tFbouAUrQ=
Subject key identifier: FB:E4:31:FD:F2:DD:BA:D3:35:09:06:F4:F3:BF:0A:24:CA:43:0A:EC
Certificate issuer: /CN=971a6cbb2df6e7faccc5853ba5400f1f470eab16
Certificate serial: 1A0039C1
Authority key identifier: 97:1A:6C:BB:2D:F6:E7:FA:CC:C5:85:3B:A5:40:0F:1F:47:0E:AB:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lxpsuy325_rMxYU7pUAPH0cOqxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/7d3f00-d48c-416f-919e-dc0389f9167d/1/1--Qx_fLdutM1CQb0878KJMpDCuw.roa
Signing time: Sat 01 Jan 2022 16:04:06 +0000
ROA not before: Sat 01 Jan 2022 16:04:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59989
IP address blocks: 185.22.34.0/24 maxlen: 24
185.22.32.0/22 maxlen: 22
185.22.33.0/24 maxlen: 24
185.22.35.0/24 maxlen: 24
185.22.32.0/24 maxlen: 24
2a00:5e60::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 436222401 (0x1a0039c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=971a6cbb2df6e7faccc5853ba5400f1f470eab16
Validity
Not Before: Jan 1 16:04:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbe431fdf2ddbad3350906f4f3bf0a24ca430aec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9d:a6:72:d6:21:ae:c7:d7:39:e5:69:74:75:
cc:21:af:c4:72:14:94:be:b6:59:39:0b:5e:44:fb:
89:c7:a1:85:14:4f:bd:ff:fd:50:08:8a:88:00:42:
7b:cc:c3:c1:73:38:e5:41:91:b4:b4:a1:f6:6e:31:
80:7a:41:b2:b6:3e:15:44:89:b9:49:f3:90:a2:c2:
16:8e:1f:52:1b:ac:bb:a3:68:5d:06:b0:92:7e:a1:
a3:bd:4a:b5:1a:49:15:6f:dc:14:99:c8:f0:35:85:
26:74:d2:9e:5f:31:ad:c7:ec:9c:7a:85:bc:c6:56:
ad:11:85:4e:8c:da:32:58:3c:dd:35:08:7a:da:67:
bc:44:bb:46:5f:92:8f:48:2d:27:1b:21:c8:e4:fe:
39:10:9c:4c:d3:6e:96:8b:54:19:14:9d:56:f6:02:
a7:79:8d:52:fa:b1:b3:23:7d:93:2b:db:b6:47:5c:
04:7b:1f:72:37:4a:e1:c6:dc:76:b9:5a:40:3d:b3:
ef:c2:ec:24:6b:a2:17:bf:75:78:66:69:ef:c7:05:
b0:d2:9c:fc:7e:5f:a5:63:61:3c:fd:d2:54:4e:34:
ca:13:3e:fc:e4:f4:54:b6:f7:e0:4a:16:20:8e:60:
dd:43:8a:b2:0b:70:43:7c:49:d9:cb:90:b7:20:9d:
ca:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:E4:31:FD:F2:DD:BA:D3:35:09:06:F4:F3:BF:0A:24:CA:43:0A:EC
X509v3 Authority Key Identifier:
keyid:97:1A:6C:BB:2D:F6:E7:FA:CC:C5:85:3B:A5:40:0F:1F:47:0E:AB:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lxpsuy325_rMxYU7pUAPH0cOqxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/7d3f00-d48c-416f-919e-dc0389f9167d/1/1--Qx_fLdutM1CQb0878KJMpDCuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/7d3f00-d48c-416f-919e-dc0389f9167d/1/lxpsuy325_rMxYU7pUAPH0cOqxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.32.0/22
IPv6:
2a00:5e60::/32
Signature Algorithm: sha256WithRSAEncryption
a4:c9:ab:86:50:92:64:4c:3d:c5:a2:c2:b6:ab:00:00:1a:22:
f1:a7:5d:2d:f9:15:71:0e:d2:70:bd:6c:9e:45:c9:79:30:77:
4f:db:c3:dd:60:30:a1:42:59:49:f9:44:f0:9b:2a:b3:f8:fc:
4e:3f:b9:67:27:3b:e6:82:be:6e:6f:9d:3d:a6:42:f5:f0:3e:
7b:09:fb:b2:7b:29:e4:f3:54:60:d5:a1:2e:0c:bb:32:f9:74:
72:c8:ea:e4:d7:59:d6:a4:f0:1c:9b:19:70:1c:dc:39:38:4b:
d1:76:e2:12:ba:5a:23:ea:2a:b2:c8:ab:b7:65:bb:00:f3:f1:
0b:96:6d:99:4e:cf:15:71:df:a4:e4:97:1c:89:c0:d8:be:72:
1a:ae:40:b1:1c:ab:c6:54:69:f5:fd:d5:1e:a5:b9:a6:14:12:
5b:c7:75:34:a9:7e:61:7a:91:b1:48:1a:3b:b5:da:a5:d8:da:
62:60:ab:ce:ea:3c:13:4a:cf:3b:ce:01:38:00:99:da:24:63:
9d:d9:50:09:c9:6d:c6:2e:1e:33:09:5d:a3:63:53:65:0a:e8:
39:ee:06:8b:7f:63:72:00:24:30:9a:22:a5:44:64:5b:47:88:
dc:50:14:d8:95:80:b4:54:f2:3a:c2:80:87:65:17:a3:dc:92:
ee:51:7b:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:05 2024 by rpki-client on console-fra.rpki-client.org