Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/QYyOPv50xzkBtvG-IN9uNxsVzng.roa
File: QYyOPv50xzkBtvG-IN9uNxsVzng.roa (raw, json)
Hash identifier: O9pmxhCmrp6zOtxRN4hxo2DwxjP7Qu9lEZUMIi3KPX8=
Subject key identifier: 41:8C:8E:3E:FE:74:C7:39:01:B6:F1:BE:20:DF:6E:37:1B:15:CE:78
Certificate issuer: /CN=37dee6acbc782b8c7696a40b28e80339619d0f1b
Certificate serial: 17063477
Authority key identifier: 37:DE:E6:AC:BC:78:2B:8C:76:96:A4:0B:28:E8:03:39:61:9D:0F:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/QYyOPv50xzkBtvG-IN9uNxsVzng.roa
Signing time: Sat 01 Jan 2022 13:04:46 +0000
ROA not before: Sat 01 Jan 2022 13:04:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49173
IP address blocks: 185.6.32.0/22 maxlen: 22
37.26.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 386282615 (0x17063477)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37dee6acbc782b8c7696a40b28e80339619d0f1b
Validity
Not Before: Jan 1 13:04:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=418c8e3efe74c73901b6f1be20df6e371b15ce78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a9:09:b2:f9:a1:5b:1d:83:8b:11:c4:e3:b5:
7b:89:cb:20:66:80:91:5a:5c:6e:b2:3c:81:09:63:
08:8d:a7:c2:a2:67:4e:85:35:e7:e5:04:9b:df:98:
2b:39:07:3e:01:55:c1:09:7a:a6:45:fd:9d:89:e8:
c5:1f:44:a3:d7:38:24:50:c8:c2:80:22:bb:01:b4:
11:ab:a6:0b:87:68:94:cb:23:5a:33:2a:a8:07:74:
3a:b8:4f:32:0a:ff:6c:de:c6:5c:f4:3b:70:e9:69:
ff:17:83:d7:65:eb:f7:57:91:62:8e:0d:07:46:c8:
60:37:27:71:a0:f3:e4:76:56:29:99:46:00:6c:6f:
e0:c6:a2:36:3b:6e:c1:e2:18:92:25:bb:8d:71:dc:
fd:3a:f6:5e:e4:79:e2:ad:04:b5:ca:1c:7d:85:3c:
84:d0:77:52:5e:89:af:b1:04:05:a3:70:45:f3:4f:
db:bd:01:32:b3:07:20:46:08:ed:d4:07:5a:2b:39:
fd:a9:eb:31:38:0e:0e:4f:b3:c6:fd:27:55:ce:6b:
51:d6:10:98:d9:53:14:48:45:b5:90:51:10:ab:22:
05:1b:dd:e2:17:59:f5:05:97:fc:e3:e9:d4:bd:1c:
bf:fa:3a:32:31:eb:78:a7:9d:4f:4a:7a:42:e0:23:
c5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8C:8E:3E:FE:74:C7:39:01:B6:F1:BE:20:DF:6E:37:1B:15:CE:78
X509v3 Authority Key Identifier:
keyid:37:DE:E6:AC:BC:78:2B:8C:76:96:A4:0B:28:E8:03:39:61:9D:0F:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N97mrLx4K4x2lqQLKOgDOWGdDxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/QYyOPv50xzkBtvG-IN9uNxsVzng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/020d47-2cc0-436b-b9f9-b73bfccb4e08/1/N97mrLx4K4x2lqQLKOgDOWGdDxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.26.252.0/22
185.6.32.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:c4:63:db:58:17:05:87:58:70:74:86:77:bf:5f:df:1b:bd:
73:04:bd:7f:6c:11:00:23:df:1f:b3:96:f8:99:81:ad:46:63:
4f:1f:2a:3f:3b:74:a6:d8:a5:44:cb:fc:a5:09:f6:c8:06:2a:
a0:5d:ae:a6:9f:62:ee:b8:46:5f:4f:a2:83:31:46:10:db:99:
1e:51:28:0b:98:2a:21:93:db:72:63:dc:3c:8a:4e:d0:4f:f6:
8b:2d:06:1e:e7:2d:4d:50:bd:2f:33:e9:09:db:e2:39:b7:2c:
3e:5e:92:f9:65:5d:67:8b:0e:ba:16:25:41:cc:d9:71:d5:28:
66:37:66:d5:c9:c3:fa:b3:a1:27:e9:9d:21:38:3d:02:66:c1:
e7:c0:c9:59:76:b1:98:fe:2c:55:e4:c9:25:2f:98:86:48:3a:
6b:1a:54:b7:fd:cf:19:36:1e:e7:5b:24:b6:c2:e0:86:da:28:
3e:64:af:d4:e1:77:b3:1c:d3:63:cc:9e:64:37:44:d3:4e:eb:
c5:86:89:df:dc:74:09:06:44:ad:0d:20:71:9c:6f:41:fd:43:
e4:97:6e:5b:89:f1:45:d6:0b:75:be:18:e6:00:b5:6a:db:c8:
a1:07:77:dd:30:b3:33:b6:0a:bb:10:13:9f:e6:c0:2a:ef:34:
0d:60:03:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:34 2023 by rpki-client on console-ams.rpki-client.org