Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/Qs-6MTvMBdNcK2i5kjh_U0oq7xk.roa
File: Qs-6MTvMBdNcK2i5kjh_U0oq7xk.roa (raw, json)
Hash identifier: QoP0s3pH2e8qy924QA+v47B/B/AU5p5iCHSjvawmQ6Y=
Subject key identifier: 42:CF:BA:31:3B:CC:05:D3:5C:2B:68:B9:92:38:7F:53:4A:2A:EF:19
Certificate issuer: /CN=0c90c356e2864f43894857443555d8b5c0352819
Certificate serial: 134E8223
Authority key identifier: 0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/Qs-6MTvMBdNcK2i5kjh_U0oq7xk.roa
Signing time: Sat 01 Jan 2022 05:54:05 +0000
ROA not before: Sat 01 Jan 2022 05:54:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201639
IP address blocks: 185.86.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 323912227 (0x134e8223)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c90c356e2864f43894857443555d8b5c0352819
Validity
Not Before: Jan 1 05:54:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42cfba313bcc05d35c2b68b992387f534a2aef19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:52:02:83:78:67:71:40:3c:77:b8:fa:5c:ee:
25:4d:62:3c:63:47:e6:50:68:a5:23:fa:69:0d:0d:
a1:21:4c:e5:b0:7a:3a:99:88:9f:94:f0:7b:57:e6:
5e:e4:90:f5:af:90:d8:a1:a4:ad:0f:29:04:7a:87:
2e:8e:64:38:d6:49:ca:de:1d:a1:82:d9:e5:9b:31:
2d:b6:ae:cb:61:06:b7:36:d2:60:24:b2:42:3b:f3:
d1:e9:95:64:60:80:05:83:28:70:a0:80:a1:4a:ae:
2f:1b:e2:8a:f0:47:ad:f2:43:7d:c2:fb:a6:07:55:
cc:f2:d2:2a:3c:a4:34:d7:e1:28:e9:d7:28:3d:08:
24:15:6f:41:50:af:8c:99:12:3d:8f:0d:e9:79:d0:
62:f5:e6:c7:c2:25:f4:57:02:19:82:d8:a4:7e:5a:
b3:35:9a:4c:95:fa:ac:6e:2d:4c:96:ae:58:ce:4d:
16:a3:1b:db:95:c9:e9:fe:5b:67:e0:1d:d0:95:c8:
19:99:9c:14:62:25:4a:06:d9:94:09:c2:45:c7:55:
43:51:e8:eb:8e:4c:a2:31:42:40:e2:db:80:10:f5:
a9:47:dc:78:92:d3:88:ef:90:03:08:a5:3f:64:93:
31:a2:f5:8a:08:b9:2a:6c:a9:8f:be:73:a7:f9:5f:
91:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CF:BA:31:3B:CC:05:D3:5C:2B:68:B9:92:38:7F:53:4A:2A:EF:19
X509v3 Authority Key Identifier:
keyid:0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/Qs-6MTvMBdNcK2i5kjh_U0oq7xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.192.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:32:f3:e7:16:d4:f7:2d:c7:ce:a9:6a:dc:90:b0:89:5d:05:
c8:51:33:b1:ad:0f:94:6d:0c:a1:e1:16:80:02:4b:fd:09:e7:
6d:80:a6:c9:e1:e2:16:73:4f:72:98:1c:5b:b3:3e:9e:e5:16:
61:74:da:24:e7:ca:14:2d:3f:10:be:de:3e:21:ef:1b:f2:15:
16:c2:58:db:d2:cd:78:c5:f1:41:65:9c:22:4a:12:05:22:5c:
c4:4c:cb:cc:54:bd:3f:fd:79:9c:49:93:00:36:b5:35:d8:03:
ae:8f:a7:1e:cf:a2:66:ed:df:4f:40:e4:60:6b:7c:81:3d:a0:
f0:ca:90:a9:db:26:3f:37:92:f3:5c:b8:8d:80:0a:6d:0a:83:
00:f5:ed:20:e5:91:16:3b:08:31:fc:55:9d:cd:cf:c6:05:52:
b3:2c:e3:53:f9:31:01:1a:e4:39:e6:3e:be:41:4f:8e:6e:05:
4e:9c:9a:e9:67:e5:10:e2:1f:0a:6f:f6:98:72:f2:d7:af:fd:
92:c7:55:1a:04:bc:1b:87:05:87:2f:6f:ee:12:9f:b6:cb:f1:
b9:6d:6f:fc:b9:d9:9c:ad:39:40:23:0a:6d:93:f3:2a:19:b7:
8d:93:71:19:2c:23:38:7e:ed:f5:7d:46:9d:c6:e2:21:db:4f:
fc:a0:0b:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:50 2025 by rpki-client