Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QIJ2iqUeuDl7CFAr1BZ5iU_R8TU.roa
File: QIJ2iqUeuDl7CFAr1BZ5iU_R8TU.roa (raw, json)
Hash identifier: 8/QK5sXsxCo/Ldvu4oa/YZSNU5KvrIUfgTOgeqgjtlQ=
Subject key identifier: 40:82:76:8A:A5:1E:B8:39:7B:08:50:2B:D4:16:79:89:4F:D1:F1:35
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 033695D6
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QIJ2iqUeuDl7CFAr1BZ5iU_R8TU.roa
Signing time: Sat 01 Jan 2022 16:04:31 +0000
ROA not before: Sat 01 Jan 2022 16:04:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204154
IP address blocks: 185.172.129.0/24 maxlen: 24
185.200.191.0/24 maxlen: 24
46.17.107.0/24 maxlen: 24
2a04:5201:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53908950 (0x33695d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4082768aa51eb8397b08502bd41679894fd1f135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6d:fa:b9:3c:21:b5:46:1b:b8:15:6e:1c:9a:
3e:fb:c5:dc:9c:4d:ef:49:b7:1d:da:0e:5f:c8:a3:
0c:bf:3b:bb:9a:7d:bc:1e:d9:d0:bd:01:8b:3c:ed:
42:61:ef:5f:96:ec:e0:08:1f:84:d0:0d:17:25:78:
51:4b:bf:1b:d4:04:88:75:f3:3c:cf:cb:c7:52:7f:
05:42:af:7f:eb:f1:2e:34:4e:78:0f:62:fe:99:6f:
26:15:a5:92:f2:11:5d:58:21:96:72:73:c5:80:31:
dd:64:6d:db:b7:9c:2c:12:b7:ac:d4:85:35:44:56:
9c:41:b1:3a:70:0f:a0:39:ae:d2:54:a9:d4:51:5e:
f1:e4:25:a6:9e:90:23:8b:2d:69:b3:40:9c:a2:70:
84:3c:1b:30:1a:98:32:9c:98:a4:55:d2:0e:67:12:
f3:bf:f8:63:cd:01:04:27:1b:90:0c:bc:61:1a:5d:
90:67:f5:42:c1:7a:36:bc:77:55:8e:07:fc:6c:2f:
68:7b:d9:ba:08:96:94:fe:a9:77:2f:ba:d0:2f:97:
64:ec:fc:9e:fb:4a:d0:f5:1d:8c:44:0f:6f:bf:1d:
5d:f1:b5:f5:f7:6d:7c:3e:90:90:08:91:57:9e:be:
fe:74:c1:ef:42:f1:5a:e9:26:33:94:5a:eb:b4:5b:
53:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:82:76:8A:A5:1E:B8:39:7B:08:50:2B:D4:16:79:89:4F:D1:F1:35
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QIJ2iqUeuDl7CFAr1BZ5iU_R8TU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.17.107.0/24
185.172.129.0/24
185.200.191.0/24
IPv6:
2a04:5201:1::/48
Signature Algorithm: sha256WithRSAEncryption
a3:47:30:8c:7d:36:ab:c8:63:31:65:00:9b:f2:5a:a5:bb:61:
c8:c4:08:5a:a3:88:d9:d5:c8:98:ec:ba:be:d2:6a:57:7e:62:
86:46:1d:60:6b:07:4a:3e:2d:13:f1:6f:04:8b:38:71:29:ba:
f5:0d:47:04:79:21:8c:78:10:61:74:83:1c:66:84:c2:4f:8a:
83:7e:be:f9:71:bf:b3:6f:66:18:6a:a8:7c:56:30:7c:e3:1c:
52:f2:e2:5c:ec:0a:a7:eb:17:35:b9:10:26:9c:6d:c9:88:46:
90:e2:1b:e5:8e:3a:31:b4:a2:62:70:e8:ec:38:39:d5:be:a7:
89:7f:cf:33:3b:91:21:7a:d3:be:56:9c:2c:3e:53:24:93:2f:
0f:8c:43:1c:27:49:06:d8:4f:cc:be:8d:b6:1d:d3:ab:0f:db:
98:55:68:a4:ee:e4:22:7e:37:64:aa:9b:92:50:a4:bb:9e:5f:
b4:d4:fe:67:b6:5a:b7:9a:2e:16:95:b5:22:4a:85:b8:cf:50:
d6:98:c5:40:64:d8:62:97:a4:88:15:aa:c6:da:7e:6a:6b:99:
be:a6:0b:3b:58:eb:3f:18:33:e8:08:1d:33:99:b4:b8:b1:1a:
52:e7:0c:26:32:10:ec:46:1e:3a:c1:a5:b6:c0:6a:5f:82:80:
29:9f:55:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org