Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/Qz3KTFXitmX_lsSiWSuizBP01xI.roa
File: Qz3KTFXitmX_lsSiWSuizBP01xI.roa (raw, json)
Hash identifier: OEwCFAO+yoP6ERU7zvSvvlp+RERsZrG0wkOFp/81IWo=
Subject key identifier: 43:3D:CA:4C:55:E2:B6:65:FF:96:C4:A2:59:2B:A2:CC:13:F4:D7:12
Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89
Certificate serial: 049AC25F
Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/Qz3KTFXitmX_lsSiWSuizBP01xI.roa
Signing time: Mon 31 Jan 2022 11:13:09 +0000
ROA not before: Mon 31 Jan 2022 11:13:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202354
IP address blocks: 185.239.179.0/24 maxlen: 24
185.239.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77251167 (0x49ac25f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89
Validity
Not Before: Jan 31 11:13:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=433dca4c55e2b665ff96c4a2592ba2cc13f4d712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:aa:6a:7f:f5:31:ba:ca:04:d0:23:1f:7e:8a:
cb:b5:26:77:d4:96:23:79:be:63:14:30:a2:78:7c:
02:75:d1:a2:17:d3:ee:82:ad:de:81:e2:77:dc:bb:
10:80:5e:db:5c:3b:a6:66:94:4a:9e:00:71:05:16:
6e:9a:9a:52:69:9d:23:ba:a1:46:a3:21:5a:a3:c0:
03:b9:48:7b:33:17:b1:89:b3:5d:db:74:76:9f:b2:
c1:f9:62:61:5e:43:c7:46:c6:7e:9e:71:31:cc:01:
bd:ce:26:ef:a9:21:e5:a8:c5:e4:18:e6:cb:8a:a6:
97:53:03:56:78:12:77:de:e2:2d:49:f5:91:a7:28:
43:70:bf:d8:05:f1:0c:8f:93:9f:70:8f:f8:68:cf:
29:03:03:95:60:b1:f9:a8:3d:26:66:72:0d:6f:5f:
67:62:b7:f6:4c:92:ff:e8:0c:5c:0c:05:2e:ab:16:
73:be:3c:97:8c:7e:bd:60:b7:5c:5c:e6:4a:4e:cd:
e0:44:22:d3:b2:d3:3c:86:fd:08:e2:4f:24:28:18:
c3:ab:38:04:17:f1:e3:92:cc:b4:59:38:20:d7:d6:
93:ea:0e:82:dd:85:ac:58:2e:84:1a:f3:21:43:7e:
cf:09:86:31:c7:fe:44:74:4c:26:48:d7:c4:b7:21:
5f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:3D:CA:4C:55:E2:B6:65:FF:96:C4:A2:59:2B:A2:CC:13:F4:D7:12
X509v3 Authority Key Identifier:
keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/Qz3KTFXitmX_lsSiWSuizBP01xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.178.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:32:35:74:1a:e8:39:67:99:e3:82:ce:69:36:dc:ab:a1:9a:
f2:56:71:c2:c7:62:b2:20:27:c6:c7:c3:d1:3f:86:6a:05:9a:
01:e7:80:52:cd:38:8c:40:d1:f1:2c:4a:4b:d7:27:fa:d7:29:
d3:de:ba:c5:b8:83:31:fd:07:1c:bc:0f:5a:ae:53:0e:eb:35:
d9:db:83:73:91:99:fa:d8:cb:75:b9:df:f2:34:a4:ef:ac:4c:
a0:59:9b:ab:eb:f7:09:52:e8:0e:76:39:70:37:36:f9:2a:8c:
9b:4c:1e:6d:ac:5d:ea:5a:b5:73:4c:e1:23:cb:c2:76:c6:ff:
7d:bb:50:d7:a0:51:8b:b4:3b:a2:a8:ae:fc:5a:5f:cb:13:67:
dc:93:b6:25:81:00:60:24:1a:bf:01:6f:da:51:01:b2:b8:58:
16:7d:ce:51:00:da:d5:d8:17:9f:ab:d6:19:b0:8c:a3:a9:94:
72:45:aa:10:ce:0c:f7:1b:c3:13:6c:de:b3:e3:2b:64:86:63:
fb:ce:1f:77:aa:96:05:25:df:76:b9:ba:80:64:32:a9:95:fd:
1d:61:e8:aa:bb:bb:9b:25:c7:1f:e9:df:bb:05:d0:b3:84:61:
26:d0:96:04:db:07:a2:17:bd:67:17:cc:ff:eb:d1:45:ec:9e:
2e:c2:c6:81
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBJrCXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
Njc4NTc3M2RmMzEzYjkxNzExYmY2YmM1YjE0OWVjYzI0NmI5ZTg5MB4XDTIyMDEz
MTExMTMwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDMzZGNhNGM1NWUy
YjY2NWZmOTZjNGEyNTkyYmEyY2MxM2Y0ZDcxMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKSqan/1MbrKBNAjH36Ky7Umd9SWI3m+YxQwonh8AnXRohfT
7oKt3oHid9y7EIBe21w7pmaUSp4AcQUWbpqaUmmdI7qhRqMhWqPAA7lIezMXsYmz
Xdt0dp+ywfliYV5Dx0bGfp5xMcwBvc4m76kh5ajF5Bjmy4qml1MDVngSd97iLUn1
kacoQ3C/2AXxDI+Tn3CP+GjPKQMDlWCx+ag9JmZyDW9fZ2K39kyS/+gMXAwFLqsW
c748l4x+vWC3XFzmSk7N4EQi07LTPIb9COJPJCgYw6s4BBfx45LMtFk4INfWk+oO
gt2FrFguhBrzIUN+zwmGMcf+RHRMJkjXxLchX70CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRDPcpMVeK2Zf+WxKJZK6LME/TXEjAfBgNVHSMEGDAWgBSmeFdz3zE7kXEb
9rxbFJ7MJGueiTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BuaFhjOTh4TzVGeEdfYThXeFNlekNScm5vay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzEvYWU5MjExLWM1MmQtNDgwZC1hNTkxLWQ3NTg2OWMwYzcxZS8x
L1F6M0tURlhpdG1YX2xzU2lXU3VpekJQMDF4SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzEv
YWU5MjExLWM1MmQtNDgwZC1hNTkxLWQ3NTg2OWMwYzcxZS8xL3BuaFhjOTh4TzVG
eEdfYThXeFNlekNScm5vay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbnvsjANBgkqhkiG9w0BAQsFAAOC
AQEArDI1dBroOWeZ44LOaTbcq6Ga8lZxwsdisiAnxsfD0T+GagWaAeeAUs04jEDR
8SxKS9cn+tcp0966xbiDMf0HHLwPWq5TDus12duDc5GZ+tjLdbnf8jSk76xMoFmb
q+v3CVLoDnY5cDc2+SqMm0webaxd6lq1c0zhI8vCdsb/fbtQ16BRi7Q7oqiu/Fpf
yxNn3JO2JYEAYCQavwFv2lEBsrhYFn3OUQDa1dgXn6vWGbCMo6mUckWqEM4M9xvD
E2zes+MrZIZj+84fd6qWBSXfdrm6gGQyqZX9HWHoqru7myXHH+nfuwXQs4RhJtCW
BNsHohe9ZxfM/+vRReyeLsLGgQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:36 2024 by rpki-client on console-fra.rpki-client.org