Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QvRXpx_wlRO-ObOvg7sxWPlXsR8.roa
File: QvRXpx_wlRO-ObOvg7sxWPlXsR8.roa (raw, json)
Hash identifier: zrlIu3cWT+C0ksfp8mDXQe8uBQHPR5gfzVmLSFfIKag=
Subject key identifier: 42:F4:57:A7:1F:F0:95:13:BE:39:B3:AF:83:BB:31:58:F9:57:B1:1F
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0406D42F
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QvRXpx_wlRO-ObOvg7sxWPlXsR8.roa
Signing time: Tue 08 Mar 2022 18:32:22 +0000
ROA not before: Tue 08 Mar 2022 18:32:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210644
IP address blocks: 185.174.136.0/24 maxlen: 24
185.229.66.0/24 maxlen: 24
185.112.83.0/24 maxlen: 24
45.142.122.0/24 maxlen: 24
185.17.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67556399 (0x406d42f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Mar 8 18:32:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42f457a71ff09513be39b3af83bb3158f957b11f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:41:a6:83:ca:a9:e1:ef:50:27:ac:f7:f0:45:
7c:76:e0:e8:91:65:5b:df:c0:3e:2c:17:71:eb:cc:
35:61:85:b3:60:0c:00:32:04:b2:a8:c0:07:81:cb:
3a:da:f3:db:30:f2:35:9f:cf:2a:49:66:9c:e2:3a:
eb:1d:0b:99:e3:a8:a9:46:d4:92:ee:b5:e9:76:14:
f2:d7:ed:36:55:cf:a8:26:ce:47:4c:ed:ef:d3:17:
65:9b:d4:2e:75:3e:29:84:80:e7:26:0c:5d:30:e8:
d8:96:74:3c:6e:82:44:45:73:f3:93:97:65:dd:c1:
56:98:91:d6:cf:c9:ec:d1:bd:24:e8:8a:ca:c4:4f:
92:d1:0d:92:77:54:4a:97:0e:74:6d:9b:9d:ef:7d:
22:95:bd:4f:54:02:08:ba:84:e0:02:a3:52:21:4b:
76:bc:6a:ea:7e:f9:66:76:6c:38:df:a1:12:11:fe:
12:79:7e:96:ca:fb:3c:35:1e:8f:9f:6f:5c:9b:17:
63:59:fa:d8:ad:bf:85:ed:8b:d4:d9:7c:a6:d7:1d:
cc:a4:71:3e:b8:6a:6a:7d:cc:15:f1:5d:d6:d7:5f:
5e:ef:ff:ec:1d:a4:07:66:e7:65:ea:b4:9d:3d:53:
11:a0:17:1d:56:ad:c1:45:8d:3e:dd:f4:88:ce:99:
46:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F4:57:A7:1F:F0:95:13:BE:39:B3:AF:83:BB:31:58:F9:57:B1:1F
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QvRXpx_wlRO-ObOvg7sxWPlXsR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.122.0/24
185.17.0.0/24
185.112.83.0/24
185.174.136.0/24
185.229.66.0/24
Signature Algorithm: sha256WithRSAEncryption
29:12:5f:47:50:93:dc:29:e7:33:98:9d:44:02:f3:e4:ea:2a:
3c:f5:11:ef:60:b4:b2:3b:7d:c8:38:d8:a4:0c:5e:c4:24:77:
40:40:48:62:e7:e1:19:5e:2b:40:80:61:1d:35:c7:b0:95:f4:
48:7c:61:ac:31:04:6a:a9:1d:1d:6d:2d:56:8c:8f:b9:21:1b:
34:b2:7c:a2:7e:bd:5a:51:91:e0:eb:27:62:e9:72:be:66:cf:
20:e3:e9:1c:76:fb:b4:c0:4d:ee:8b:d9:3e:cc:56:4a:1c:82:
3a:a2:57:6b:23:e9:fb:9c:af:c4:e3:1e:6e:3c:32:6c:bd:4e:
10:a2:76:78:69:e9:8d:44:af:64:16:8f:c8:86:8a:69:be:57:
70:6b:27:b6:99:0a:f9:a7:fd:ad:0f:ff:65:a9:37:d7:95:96:
ff:4a:56:4d:ae:9c:73:db:46:b9:c2:f0:f9:db:f1:54:8d:fd:
44:12:b8:2b:82:1e:98:d8:4f:25:33:47:e4:bf:07:53:df:ae:
04:a3:80:92:63:7e:94:f5:ec:a4:01:73:79:55:4a:2c:d3:6d:
3a:b4:30:69:e3:78:d3:d6:e0:39:22:e7:b9:f5:e6:d9:4e:54:
ac:3a:38:8a:65:6e:ea:29:91:e7:3c:f1:bd:d8:a0:f4:2c:e7:
d1:ba:8d:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org