Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/QJxHH1KY3dRSFudGffO4EWtuisk.roa
File: QJxHH1KY3dRSFudGffO4EWtuisk.roa (raw, json)
Hash identifier: byCc+k8/oSJYx28QZD1qXzXNAIOw61p7Xq4p4JfFfPY=
Subject key identifier: 40:9C:47:1F:52:98:DD:D4:52:16:E7:46:7D:F3:B8:11:6B:6E:8A:C9
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 07611A37
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/QJxHH1KY3dRSFudGffO4EWtuisk.roa
Signing time: Wed 30 Mar 2022 15:16:37 +0000
ROA not before: Wed 30 Mar 2022 15:16:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 185.223.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123804215 (0x7611a37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Mar 30 15:16:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=409c471f5298ddd45216e7467df3b8116b6e8ac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:76:f0:b3:f0:32:f2:04:68:a0:b1:30:99:b6:
58:f9:92:ee:25:8f:88:e7:e0:54:17:59:e0:6a:1e:
d6:c2:09:4c:e3:54:a3:75:a2:57:15:aa:2f:85:71:
dd:ba:a8:e3:ad:a2:37:2c:29:3a:31:37:83:08:6a:
1f:48:81:c5:04:18:38:c3:69:9f:90:2f:23:33:88:
46:99:06:84:71:8c:b8:e5:a7:1c:22:58:69:cc:44:
ff:3d:83:e6:13:18:9a:cb:0d:12:9f:8d:f2:59:b5:
a6:32:5f:02:34:a2:fd:aa:78:33:48:67:3e:0e:34:
eb:9f:79:fb:f4:51:0c:45:6a:f4:ea:74:c7:4a:30:
ae:a8:9d:98:0f:39:d9:b2:6e:5a:48:9e:3b:91:55:
06:aa:08:ba:8b:b6:c6:55:ed:0f:7d:76:3f:a5:db:
0d:e9:15:54:f7:20:c9:4c:07:d7:3e:33:05:64:b2:
b6:6c:be:06:07:4c:9b:fd:c2:4d:b3:25:e5:75:22:
3e:59:17:d6:e4:8a:ae:68:4d:8a:52:ac:00:b2:13:
98:8a:53:60:d3:aa:a5:bb:fd:fd:05:6e:c6:8d:27:
30:d0:ec:81:50:ca:f2:18:e9:e9:0d:8c:1c:b3:be:
8b:a5:0f:09:42:4d:83:53:34:78:45:c8:4a:a6:1a:
de:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:9C:47:1F:52:98:DD:D4:52:16:E7:46:7D:F3:B8:11:6B:6E:8A:C9
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/QJxHH1KY3dRSFudGffO4EWtuisk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.152.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:88:66:e6:7b:41:f1:30:98:25:f4:e9:6f:bc:2d:72:86:ee:
b8:bb:5f:13:45:8e:a9:9d:2f:9e:81:51:95:79:cf:dd:5d:ca:
dc:5b:ff:8e:5e:bc:68:53:c6:97:27:dc:d4:8a:0c:8d:e9:f0:
0b:95:17:43:7a:fb:6c:7a:1d:78:e4:0e:4e:61:11:57:fc:7e:
72:a4:6f:d2:7a:eb:3d:46:4b:bd:1c:34:65:ba:96:4e:fc:22:
09:3d:8b:ae:50:f1:2a:46:9b:79:e8:e3:8d:3d:7b:db:31:33:
3c:42:f8:f5:cb:82:4f:61:4c:b9:73:5f:9e:2f:84:5f:23:e0:
5c:6c:5d:73:18:79:b9:37:73:59:34:1d:d3:66:57:14:79:17:
88:19:cf:c8:f9:7a:dc:e9:b3:02:59:d7:dc:ef:23:99:d9:cd:
97:ef:14:c0:13:a4:4e:4c:e9:2b:1d:4a:da:c2:1d:65:e4:1b:
74:16:c1:2b:78:18:71:a9:35:06:4d:8c:41:86:36:27:19:3c:
5c:6f:e3:02:17:78:6b:88:e1:51:56:95:75:de:1c:e0:b8:5c:
78:29:80:4d:44:58:8a:56:53:a2:37:d0:ee:29:38:3c:2c:c7:
fa:c9:0a:e4:b6:b5:d6:0b:b8:9c:e4:12:08:2c:ec:24:0b:f6:
54:08:21:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:41 2024 by rpki-client on console-fra.rpki-client.org