Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qQA_neCkhZ4zOKPAUPkvltrykAU.roa
File: qQA_neCkhZ4zOKPAUPkvltrykAU.roa (raw, json)
Hash identifier: 9ma1lT497WESZ7iyPG3HLv06+2a+612UU8JT5xb4aRg=
Subject key identifier: A9:00:3F:9D:E0:A4:85:9E:33:38:A3:C0:50:F9:2F:96:DA:F2:90:05
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0889AEA9
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qQA_neCkhZ4zOKPAUPkvltrykAU.roa
Signing time: Mon 04 Jul 2022 08:33:25 +0000
ROA not before: Mon 04 Jul 2022 08:33:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212017
IP address blocks: 185.128.52.0/22 maxlen: 22
185.121.12.0/22 maxlen: 22
185.227.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143240873 (0x889aea9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 4 08:33:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9003f9de0a4859e3338a3c050f92f96daf29005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e8:77:d5:e4:2d:84:ac:f5:6d:64:30:65:15:
d3:d5:e0:2c:dc:27:a9:ef:5b:c9:75:79:35:a2:0c:
d1:84:c6:d0:23:b4:d2:0a:6d:4f:79:8f:74:c7:a8:
d7:ec:16:3f:75:dc:de:df:01:46:d7:19:99:11:83:
9f:22:15:cd:35:c9:8b:68:e7:8a:74:a1:0a:1a:c9:
89:59:c9:2b:b9:d0:4f:62:76:37:57:3a:78:1a:e8:
89:74:67:a1:be:57:5e:47:21:8d:91:c1:8e:a5:44:
91:48:a7:88:5f:52:83:9d:a1:d8:c3:79:e9:89:5d:
1c:85:16:5e:00:1c:e9:d4:f4:12:7c:cc:5e:2d:7e:
b3:c1:58:87:61:d2:3b:4e:4e:3b:1a:25:24:36:67:
fa:ef:d0:8e:8f:54:04:fa:28:12:27:83:b6:2d:45:
d7:88:e7:6f:b8:47:4e:41:3c:18:13:f5:dc:18:b8:
49:cf:b0:af:f9:fd:ff:99:a4:59:04:17:f7:0f:2c:
1a:39:97:3d:2e:9f:5d:bc:24:ef:62:ad:b9:97:b3:
f8:ae:5e:4b:44:34:ca:c8:64:4f:03:d3:7d:e3:55:
92:72:e1:31:43:cb:aa:2c:4a:62:c8:e0:71:fa:d7:
89:55:b0:5b:29:52:30:0a:80:bc:da:cb:57:59:a7:
e2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:00:3F:9D:E0:A4:85:9E:33:38:A3:C0:50:F9:2F:96:DA:F2:90:05
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qQA_neCkhZ4zOKPAUPkvltrykAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.12.0/22
185.128.52.0/22
185.227.172.0/22
Signature Algorithm: sha256WithRSAEncryption
58:c9:81:1c:f9:eb:86:3a:23:5a:1a:29:50:96:f6:10:23:c9:
eb:3f:d0:05:24:6e:27:ae:dc:27:b9:3d:2f:03:b7:07:80:ea:
5f:64:e7:43:c1:e4:6f:c6:d0:2c:21:ac:21:cf:8d:61:e9:4f:
98:b2:a3:01:20:d5:bb:b4:b7:20:09:a8:de:3f:79:3c:39:24:
45:16:5c:7b:db:93:c1:25:38:4f:34:c6:50:af:e4:7c:1e:64:
6d:66:0d:22:7e:4f:1c:19:ce:13:17:4c:cc:d7:9e:84:dd:3d:
40:46:49:52:40:3f:56:a9:e5:71:b1:eb:76:25:5b:ae:56:8d:
9c:09:d5:a7:84:a7:89:f9:30:4a:af:a7:81:37:03:aa:58:35:
a0:92:87:0f:ad:56:da:5e:25:3b:81:8f:76:82:94:8e:56:23:
70:27:8b:e8:8e:3a:28:42:55:6d:59:5e:cd:1a:d2:b6:93:e1:
79:63:c8:df:70:45:e3:b8:2d:b6:1b:35:01:b9:11:46:df:e3:
c1:8f:66:ce:91:d6:0b:c3:63:ec:5d:5d:ef:d4:2e:2a:a5:df:
eb:ac:00:68:b4:a1:c9:d1:e4:ca:e7:c8:bc:20:ed:5e:b0:53:
ef:08:4b:6d:52:9c:5f:f9:df:84:78:4e:9c:17:b3:bf:da:00:
05:14:04:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org