Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QoMcRbHZWRc4abvsW3EFidrOZnk.roa
File: QoMcRbHZWRc4abvsW3EFidrOZnk.roa (raw, json)
Hash identifier: BE0+uo6G+ggmQ2yFRugbiL0TEaUqGTz+J6w8O0surfM=
Subject key identifier: 42:83:1C:45:B1:D9:59:17:38:69:BB:EC:5B:71:05:89:DA:CE:66:79
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018437DAB4C2A190F49D090DB4BD8D424DF9
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QoMcRbHZWRc4abvsW3EFidrOZnk.roa
Signing time: Wed 02 Nov 2022 10:19:50 +0000
ROA not before: Wed 02 Nov 2022 10:19:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206425
IP address blocks: 185.106.92.0/24 maxlen: 24
194.36.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:37:da:b4:c2:a1:90:f4:9d:09:0d:b4:bd:8d:42:4d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Nov 2 10:19:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42831c45b1d959173869bbec5b710589dace6679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:db:d1:10:5e:a4:1f:45:f4:bb:72:94:26:69:
cb:43:cb:b7:c1:74:61:eb:ff:08:b0:c6:3e:b9:31:
44:b1:36:19:d2:fe:58:ca:92:b1:f7:7a:ad:7f:4a:
e1:26:63:4e:a9:c4:cb:a0:cd:62:d3:fb:ab:ed:c0:
b9:0a:82:88:1b:20:06:0d:d8:f3:24:06:36:b1:3f:
5c:bf:a5:9d:54:1e:09:e8:ab:50:8f:bd:78:52:92:
2c:7d:c0:b1:ac:3d:01:2d:b0:8c:17:72:0f:72:0f:
64:3f:9f:85:00:c8:1f:e0:a5:47:9b:21:7c:63:df:
49:3a:a6:13:eb:a5:cd:41:8a:3d:e5:29:87:f3:16:
00:81:34:14:4a:fd:91:20:20:94:67:d4:46:8a:38:
a9:74:50:69:09:63:f8:02:8c:e4:1c:c5:d6:46:ab:
3d:d0:46:64:11:17:50:e6:ed:f9:9f:1e:6c:e1:f5:
0f:12:1d:df:62:b9:4e:be:db:e1:9c:0c:41:55:96:
e0:26:3f:50:9d:50:3e:0d:d3:fb:0f:64:8c:ab:ff:
40:79:a4:b5:43:4f:26:48:06:25:db:c3:7f:3d:93:
0b:f1:26:be:ae:0b:80:d1:96:d0:f0:46:68:48:c0:
57:8e:c7:16:76:45:f7:23:a4:33:13:d3:3a:1b:aa:
3d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:83:1C:45:B1:D9:59:17:38:69:BB:EC:5B:71:05:89:DA:CE:66:79
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QoMcRbHZWRc4abvsW3EFidrOZnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.92.0/24
194.36.177.0/24
Signature Algorithm: sha256WithRSAEncryption
32:92:46:42:e7:78:55:2f:a5:1d:e9:98:22:d4:7b:74:5a:fd:
67:9d:43:e0:a3:2b:ba:13:29:95:4c:1d:c8:f5:e6:a9:30:da:
93:03:88:6f:39:ec:d3:e6:a1:a1:97:b0:4d:26:a3:bf:ab:07:
ff:c7:d6:f2:28:23:bb:1e:6c:1f:b6:63:e8:9c:67:cd:da:e2:
20:c2:d6:c1:a9:40:ae:be:69:31:d8:8e:70:c1:c3:0a:ad:57:
b2:ad:8a:ad:ca:db:0a:f0:9c:9f:a7:2d:34:7f:00:ad:bf:51:
74:eb:cd:5b:a5:31:02:a0:84:a5:23:2b:10:46:ea:f7:b0:d2:
b9:f9:81:77:b0:48:55:11:97:11:8c:84:1d:7c:ee:7d:2d:f0:
f5:2e:72:55:13:af:93:18:b2:b5:08:7a:82:dd:f5:fa:87:c6:
7d:b2:16:f5:66:27:5d:1f:bf:ff:09:92:2f:24:ce:c4:3e:32:
92:63:bc:88:25:44:97:88:64:6a:f9:e6:2b:f2:28:d2:a3:5a:
5b:59:e6:ba:ea:4c:0b:3a:c1:4d:38:36:56:5b:01:b3:bd:53:
2f:3a:eb:e0:44:f5:00:07:28:e0:30:02:83:a8:9e:c9:6a:8a:
08:5b:9c:15:ae:4f:ab:db:35:a7:8a:29:0f:f2:3e:19:a4:64:
f5:4e:48:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org