Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/d493cc-3254-4d95-bdee-1a23e15f3b84/1/q6QvBKorsMVAqyEhkmglalO8bdc.roa
File: q6QvBKorsMVAqyEhkmglalO8bdc.roa (raw, json)
Hash identifier: q5QxCMLtqfQVUhaPS/R/j49ywaMGApHhlhgy1D3yXaA=
Subject key identifier: AB:A4:2F:04:AA:2B:B0:C5:40:AB:21:21:92:68:25:6A:53:BC:6D:D7
Certificate issuer: /CN=b56458576ba23921dd792dc0052f8f82867d627b
Certificate serial: 0375F5DD
Authority key identifier: B5:64:58:57:6B:A2:39:21:DD:79:2D:C0:05:2F:8F:82:86:7D:62:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tWRYV2uiOSHdeS3ABS-PgoZ9Yns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/d493cc-3254-4d95-bdee-1a23e15f3b84/1/q6QvBKorsMVAqyEhkmglalO8bdc.roa
Signing time: Sat 01 Jan 2022 13:57:29 +0000
ROA not before: Sat 01 Jan 2022 13:57:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56509
IP address blocks: 185.217.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58062301 (0x375f5dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56458576ba23921dd792dc0052f8f82867d627b
Validity
Not Before: Jan 1 13:57:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aba42f04aa2bb0c540ab21219268256a53bc6dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:54:3c:59:a3:5e:5d:69:56:ba:97:89:4e:57:
e3:1c:34:45:cf:51:64:81:40:9e:f0:48:54:0b:51:
6c:85:d3:8a:b5:df:c4:4a:90:9a:c7:db:5d:78:18:
49:29:02:40:42:bb:a2:0b:ac:bc:20:83:75:04:ed:
76:af:3c:5b:08:62:f8:b4:f8:55:f2:dc:38:c3:fd:
ed:33:8f:07:87:fa:a4:2f:f1:e7:24:2c:27:81:0b:
3d:1a:b7:6d:d2:f0:e9:bc:64:47:c4:13:b5:e3:34:
08:9b:93:ca:56:a9:73:1f:e6:6e:c5:60:88:7f:24:
39:2b:a0:7f:c4:98:e8:5d:69:ee:58:c0:fb:db:0c:
06:60:7c:bc:3b:91:da:5a:96:6d:c3:9c:8e:5c:fd:
c2:8a:58:15:41:e4:65:30:69:75:24:70:cc:bf:1f:
4c:88:b8:c8:3f:6a:18:c1:1d:54:79:29:e0:8e:a0:
18:14:d2:1d:28:0b:18:0b:e5:21:f6:89:a7:43:c7:
8a:27:a3:b8:14:68:df:dc:2b:b2:bb:45:e5:fe:9e:
0f:96:7d:da:de:c6:db:dd:6c:7b:62:05:f4:b1:32:
2e:ec:9d:16:3a:7b:2a:7a:3b:b5:44:69:0b:a8:23:
6a:5b:b0:6d:08:5e:23:60:d4:75:69:30:79:72:4c:
7f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A4:2F:04:AA:2B:B0:C5:40:AB:21:21:92:68:25:6A:53:BC:6D:D7
X509v3 Authority Key Identifier:
keyid:B5:64:58:57:6B:A2:39:21:DD:79:2D:C0:05:2F:8F:82:86:7D:62:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWRYV2uiOSHdeS3ABS-PgoZ9Yns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/d493cc-3254-4d95-bdee-1a23e15f3b84/1/q6QvBKorsMVAqyEhkmglalO8bdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/d493cc-3254-4d95-bdee-1a23e15f3b84/1/tWRYV2uiOSHdeS3ABS-PgoZ9Yns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.164.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:4f:ca:33:77:45:7c:26:68:3e:e9:39:82:dd:d9:c8:18:04:
fc:aa:97:a8:54:32:23:2d:6f:bb:37:6d:45:76:98:ef:fe:3d:
e1:15:f5:08:e3:bf:e7:05:a8:48:6a:81:ce:ae:58:a8:93:a0:
e1:be:08:27:5b:17:af:a0:0a:fa:f9:32:4b:02:76:2f:cf:92:
74:f0:0d:d7:93:68:4a:9d:ce:6c:08:08:37:b0:89:35:95:03:
87:17:46:46:4e:53:2c:83:25:57:b0:63:39:ab:39:53:df:98:
d6:b1:e9:f1:4f:4e:93:b8:96:bc:39:3b:28:b1:c9:f5:a1:2b:
6a:42:f8:ab:19:42:bb:f7:c3:7b:87:cf:81:53:62:8e:13:d7:
b0:19:91:79:99:bc:e2:9c:87:d8:c6:ee:fb:5d:84:21:a7:a2:
2b:30:c7:00:bb:40:67:3d:f4:30:1e:37:10:51:fd:26:ef:8f:
59:e8:f6:39:ca:1d:c7:96:bf:71:99:ee:59:ba:67:2a:b0:56:
ea:fa:14:c9:4f:c6:c3:06:7e:b8:c6:20:d4:b9:31:0a:2f:d3:
71:66:25:20:41:ff:22:48:21:4c:36:7b:d0:3e:15:80:ad:e8:
56:d7:ca:96:81:8f:f4:32:a0:2b:32:c7:f7:bb:a4:4c:b2:3d:
ec:76:70:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:36 2023 by rpki-client on console-ams.rpki-client.org