Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/aurSQI-hKi1w1kiTiAdmnV4PrPo.roa
File: aurSQI-hKi1w1kiTiAdmnV4PrPo.roa (raw, json)
Hash identifier: /Qml0Ta2Lgs7pwarBOlThzHqZMcfNe5SwjEXwgUDi18=
Subject key identifier: 6A:EA:D2:40:8F:A1:2A:2D:70:D6:48:93:88:07:66:9D:5E:0F:AC:FA
Certificate issuer: /CN=a316c7659af1d56bc718faf614f092758f5edc7f
Certificate serial: 0183E6E15A4B4E9D1DD2A2F74A93795F754D
Authority key identifier: A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/aurSQI-hKi1w1kiTiAdmnV4PrPo.roa
Signing time: Mon 17 Oct 2022 16:57:51 +0000
ROA not before: Mon 17 Oct 2022 16:57:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.221.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:e1:5a:4b:4e:9d:1d:d2:a2:f7:4a:93:79:5f:75:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a316c7659af1d56bc718faf614f092758f5edc7f
Validity
Not Before: Oct 17 16:57:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6aead2408fa12a2d70d648938807669d5e0facfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b4:b3:18:d8:2e:20:5c:0a:83:7a:5d:98:11:
a6:9d:e2:05:d4:7a:98:ad:d6:07:11:8b:5d:04:bb:
27:07:14:eb:19:39:0d:8b:a8:98:e7:d7:39:cd:08:
7a:3d:d9:30:21:70:4a:24:3a:9e:48:5f:ca:c2:51:
36:8f:7c:b3:01:d1:2b:c9:4e:7a:fc:7e:33:1e:cd:
a1:b4:56:76:a6:cb:7c:c1:d0:a4:38:b7:c7:81:6c:
3f:20:d0:2c:89:62:8a:7e:cc:cf:6c:e6:a3:92:6c:
eb:57:4e:27:be:60:ab:22:17:c7:35:79:40:2b:f7:
8b:ee:93:ea:b5:d0:79:48:0b:a8:b7:8b:1c:df:c5:
0a:6d:63:8a:22:bb:4c:ed:3e:43:b0:ba:3d:bf:ae:
bd:05:68:bc:c6:b1:3b:d5:f1:d8:c8:b1:7a:6b:5c:
78:16:28:d2:6a:14:6f:5b:d6:f6:51:3e:b5:af:41:
1b:c8:81:09:04:49:09:22:93:a7:19:ed:07:55:6c:
fb:a8:35:3c:3f:02:b5:7b:be:8f:be:0b:47:95:67:
f1:ed:85:75:30:40:96:8a:4b:98:32:43:b6:bd:eb:
c6:dc:59:02:02:82:4a:e1:9f:2c:42:e2:64:d3:a2:
5b:15:80:4f:27:cd:f1:3a:28:2c:41:47:4c:bb:6e:
98:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:EA:D2:40:8F:A1:2A:2D:70:D6:48:93:88:07:66:9D:5E:0F:AC:FA
X509v3 Authority Key Identifier:
keyid:A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/aurSQI-hKi1w1kiTiAdmnV4PrPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/oxbHZZrx1WvHGPr2FPCSdY9e3H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.84.0/24
Signature Algorithm: sha256WithRSAEncryption
81:43:fb:b0:9f:2c:76:b8:af:27:7c:df:98:a0:4c:a0:08:d1:
e5:80:e8:68:1b:f7:02:6c:06:c7:29:3d:5c:fa:49:4d:ed:ba:
61:a8:3e:c8:21:e2:ed:63:02:da:28:ca:d7:ec:0f:05:9b:4f:
24:51:15:77:59:ee:29:bc:fe:65:00:4c:f3:19:1e:9d:dd:f9:
30:2f:eb:ff:e7:0d:c6:9c:63:7a:0b:5e:29:9b:29:71:a1:27:
42:bf:da:77:de:47:3f:79:47:b3:41:b3:b3:c5:fd:b5:ff:9c:
7e:9b:d7:7b:70:54:7a:7d:22:5b:ae:8d:55:af:e1:70:f0:a1:
14:84:55:0b:57:e4:a4:9d:25:68:37:ce:8b:7e:1e:95:60:26:
39:17:29:27:55:2f:b1:77:8b:73:5f:95:78:34:a4:40:f2:27:
7c:9e:1b:7d:10:d4:d3:da:1b:f2:d2:69:bc:0c:8e:0a:40:be:
71:43:9f:6e:86:a8:96:c8:2d:c3:42:37:ef:15:21:e5:dd:1a:
35:bf:44:d4:62:84:d4:c7:10:63:bb:86:b7:4f:e2:a9:6e:6e:
6d:15:be:93:b3:30:34:25:71:cc:bc:77:0e:22:79:74:78:0d:
6b:3a:a6:96:f2:e5:d0:0c:0c:87:ab:50:78:32:ef:72:84:81:
93:bf:0e:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:06 2024 by rpki-client on console-fra.rpki-client.org