Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QOzC_pinJOOeC6AD81z62clpjLc.roa
File: QOzC_pinJOOeC6AD81z62clpjLc.roa (raw, json)
Hash identifier: 85stIw+dw43p5q93jpGT6jVOSO7mNX+HQOulxCDO5I0=
Subject key identifier: 40:EC:C2:FE:98:A7:24:E3:9E:0B:A0:03:F3:5C:FA:D9:C9:69:8C:B7
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17DC7CA7
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QOzC_pinJOOeC6AD81z62clpjLc.roa
Signing time: Sat 01 Jan 2022 04:54:37 +0000
ROA not before: Sat 01 Jan 2022 04:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202986
IP address blocks: 185.172.147.0/24 maxlen: 24
185.177.80.0/24 maxlen: 24
2a06:7245::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400325799 (0x17dc7ca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40ecc2fe98a724e39e0ba003f35cfad9c9698cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:66:43:d7:54:40:8f:bc:c0:b9:f2:3c:93:21:
25:e2:06:97:24:c6:78:2c:68:76:cc:0b:4b:db:38:
59:e4:70:ab:5e:73:cc:24:5f:85:1a:4a:3a:82:cd:
ad:d0:f8:1e:14:ec:b1:5d:f3:91:ad:8a:99:cc:ac:
9b:8c:d3:64:a8:a3:95:c8:b3:41:86:ee:93:f9:a4:
c4:45:bf:e9:89:0d:4e:99:6c:74:5b:ff:c8:b1:e8:
bd:fd:17:78:19:48:04:3d:85:89:e7:53:0c:1a:2e:
b5:3a:28:24:af:2c:3a:91:c8:d7:1e:4d:3a:b5:9d:
e5:c7:fd:38:07:ea:8e:79:8a:f6:9b:9a:b2:64:12:
1b:5e:3e:c8:87:b7:03:c5:73:d5:71:46:d3:70:a7:
0a:9d:e5:d9:32:ba:27:6f:e1:ad:0c:c5:90:b0:27:
40:1f:c3:ea:e1:22:95:ed:ac:9a:a8:e7:fa:5d:bb:
01:52:71:92:ce:67:b9:0c:71:08:8a:1b:98:20:b4:
be:fc:fe:09:28:89:4f:1e:e9:c4:2f:e6:9b:5b:62:
46:9e:c2:2d:44:2c:85:95:72:e1:bd:1d:c4:81:fc:
bc:cb:b1:48:6a:f2:14:b4:aa:12:02:b6:55:b8:39:
b3:22:2f:88:78:c1:de:17:64:54:53:b4:31:cc:11:
b3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EC:C2:FE:98:A7:24:E3:9E:0B:A0:03:F3:5C:FA:D9:C9:69:8C:B7
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QOzC_pinJOOeC6AD81z62clpjLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.147.0/24
185.177.80.0/24
IPv6:
2a06:7245::/48
Signature Algorithm: sha256WithRSAEncryption
95:c4:3e:48:c8:bb:46:69:74:64:f9:d3:3f:93:d6:d9:f4:9e:
16:6e:1e:10:88:8f:22:d4:f1:4a:62:c6:e9:c5:ba:7d:44:f7:
8a:9f:16:ee:6d:10:44:41:10:fa:79:31:8b:a9:a8:fc:62:6c:
5e:08:1a:93:df:b0:fb:0c:6e:3d:66:5f:cd:a1:06:91:c3:1e:
1c:2d:59:f1:f1:09:f6:c3:a0:7f:c5:eb:00:5a:d6:85:49:71:
a0:75:68:5e:3d:38:16:cb:9e:3a:34:96:b3:f1:93:2c:f1:6a:
c2:f3:71:da:ec:68:0a:fd:58:c2:ba:4d:32:cd:07:0f:b6:d0:
24:aa:e4:7c:9e:eb:00:32:67:ce:8c:6f:c6:a9:aa:89:db:b8:
28:9b:71:fe:96:29:76:7c:4b:bf:9c:51:ee:ab:68:b2:9a:17:
32:f7:de:d3:e5:f0:3c:bf:04:a6:52:09:54:71:67:06:a4:30:
78:1b:e2:0e:86:cc:c7:74:55:13:95:61:66:3b:7d:cf:cb:07:
54:67:19:90:d7:09:35:f7:5f:57:f4:db:98:35:dc:e0:00:c2:
c5:1d:8d:33:75:95:00:e8:36:03:11:28:2a:0e:fa:09:ca:fe:
2c:2a:4b:31:ab:46:8d:67:3b:52:34:d5:dd:fc:f2:9c:62:03:
85:81:bd:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org