Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/QzWB_qqZ-t3MRw_r1AXAX_zyu9c.roa
File: QzWB_qqZ-t3MRw_r1AXAX_zyu9c.roa (raw, json)
Hash identifier: qIxlhmY2jNIxv6MtTf5qAnn6PYugf2i1aXNd1CkbCsQ=
Subject key identifier: 43:35:81:FE:AA:99:FA:DD:CC:47:0F:EB:D4:05:C0:5F:FC:F2:BB:D7
Certificate issuer: /CN=4acfac8645a3c6f10042dc4a74d700d9d06af17a
Certificate serial: 03736B23
Authority key identifier: 4A:CF:AC:86:45:A3:C6:F1:00:42:DC:4A:74:D7:00:D9:D0:6A:F1:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/QzWB_qqZ-t3MRw_r1AXAX_zyu9c.roa
Signing time: Sat 01 Jan 2022 14:05:28 +0000
ROA not before: Sat 01 Jan 2022 14:05:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 185.180.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57895715 (0x3736b23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4acfac8645a3c6f10042dc4a74d700d9d06af17a
Validity
Not Before: Jan 1 14:05:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=433581feaa99faddcc470febd405c05ffcf2bbd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:02:3d:c5:9b:4f:ec:47:f7:04:be:58:62:21:
2d:6e:87:26:4f:1e:3e:86:93:34:e6:0a:07:0b:36:
68:84:48:96:e2:60:e3:d1:a6:72:f2:8c:aa:a3:8b:
66:56:a9:7a:b2:3c:bf:4e:01:f8:e4:85:70:15:f2:
6a:c7:d5:26:dc:97:7a:3e:8c:08:24:6d:61:66:fe:
0a:0e:4f:5c:75:13:23:19:a9:a3:8d:f7:ed:3a:ec:
ad:9c:09:8f:7f:7e:d8:b0:71:f0:0e:48:20:69:24:
77:19:43:e0:f0:31:ec:1d:35:a5:67:25:06:cb:95:
d8:95:22:ce:28:51:a1:ee:b6:3b:13:60:e6:d6:33:
f9:0b:00:a2:43:00:2a:71:16:1a:fc:fd:c9:b5:c6:
d3:9b:69:7b:5b:ce:29:72:6f:c0:d3:09:7f:7b:40:
b3:b2:a4:85:a5:91:64:39:79:5c:a1:81:be:d4:7a:
c5:82:7f:14:85:85:29:0f:8e:51:87:44:83:42:6b:
b9:9a:85:94:a2:4f:1d:ed:9c:60:6d:ee:b0:ee:49:
4e:14:de:f5:5a:b1:18:ce:1f:da:bc:13:49:fb:ef:
ba:a6:04:80:cf:9c:c3:07:27:6b:ad:6a:26:60:30:
f8:52:a7:5c:86:10:07:75:ee:91:f6:a9:5d:fc:35:
ce:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:35:81:FE:AA:99:FA:DD:CC:47:0F:EB:D4:05:C0:5F:FC:F2:BB:D7
X509v3 Authority Key Identifier:
keyid:4A:CF:AC:86:45:A3:C6:F1:00:42:DC:4A:74:D7:00:D9:D0:6A:F1:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/QzWB_qqZ-t3MRw_r1AXAX_zyu9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/2c17cb-4742-44cf-891f-7bf8277d8a2f/1/Ss-shkWjxvEAQtxKdNcA2dBq8Xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.142.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:99:e2:1f:5a:60:8d:21:61:91:ca:65:ca:52:a3:d1:09:64:
a8:75:aa:af:49:cf:7f:06:fa:bf:a2:38:8b:c1:df:a5:90:82:
4d:2a:27:4e:fe:81:a9:ae:2b:99:00:57:87:40:9d:94:7e:45:
06:8d:08:df:d1:84:6b:11:5f:22:10:20:2a:ff:4a:49:61:73:
f3:6e:a9:f4:63:f0:7d:25:39:13:d6:66:f5:f8:35:8d:cf:18:
ce:94:be:cf:f8:76:63:21:d5:95:46:a9:43:4c:84:2e:c8:8a:
cd:cc:e5:3f:d2:bf:f7:68:0c:a2:de:01:11:72:8e:b1:95:1a:
3e:f7:99:91:0f:d0:da:94:50:f4:55:ae:33:82:a8:97:1a:f4:
02:e0:54:b8:83:52:4a:14:3c:d1:2c:31:1b:f5:f5:b6:a2:7c:
6e:16:7d:a1:ab:d0:13:46:5d:8d:cd:51:ff:87:fa:ef:94:cb:
5b:80:d8:88:71:b4:4e:77:2a:a2:61:83:93:07:be:03:1d:18:
a7:a7:67:0f:fa:21:f8:5b:68:9d:21:25:47:be:10:6c:19:a5:
03:ff:98:83:01:cc:c0:d1:7f:3f:e2:1d:08:fc:d1:0d:86:1e:
09:55:bf:90:7b:9e:93:3e:55:4a:ad:f4:cb:91:2b:08:28:eb:
90:03:21:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:56 2023 by rpki-client on console-ams.rpki-client.org