Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/q_wiHaZ9ysAANk9v1fJoD4tEdyw.roa
File: q_wiHaZ9ysAANk9v1fJoD4tEdyw.roa (raw, json)
Hash identifier: FG1cppQvK73hfYMXao/AhdsdqA18g/hb786haj67FVs=
Subject key identifier: AB:FC:22:1D:A6:7D:CA:C0:00:36:4F:6F:D5:F2:68:0F:8B:44:77:2C
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 0206C8
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/q_wiHaZ9ysAANk9v1fJoD4tEdyw.roa
Signing time: Fri 17 Jun 2022 09:37:45 +0000
ROA not before: Fri 17 Jun 2022 09:37:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.155.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132808 (0x206c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Jun 17 09:37:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abfc221da67dcac000364f6fd5f2680f8b44772c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d7:3e:76:19:14:39:ce:4c:dc:be:a5:d3:7c:
9d:8a:0a:23:aa:4d:04:5b:dc:8f:84:6d:43:ff:56:
a4:a8:a0:fa:01:94:fa:d1:be:f0:71:3c:a0:8e:bf:
f5:5e:9b:3e:f1:3d:51:96:63:fe:a6:6f:a4:4a:34:
0f:43:2d:b9:ac:a3:8c:cd:a3:9c:03:21:08:87:08:
9d:85:90:af:7d:f4:85:68:a4:a2:c8:00:96:1f:ea:
e4:36:1d:3c:9f:53:be:ab:c4:02:8c:80:5d:b4:53:
a3:65:e6:b8:a8:9c:bf:a0:07:c9:85:32:83:0e:8f:
12:84:d2:64:94:56:0f:86:33:de:85:81:ee:f5:ed:
d1:25:fd:4f:d8:fb:81:70:0f:38:ee:38:1e:a3:7b:
28:43:08:c3:4f:68:70:04:34:d9:9c:e0:d5:18:72:
03:4d:38:d1:f1:1c:5f:1a:4f:d0:b5:a1:32:42:7e:
9d:ab:af:22:5c:0e:26:72:7d:1c:96:93:3d:e4:72:
61:02:ae:7f:11:79:0b:55:b1:6b:0c:02:c7:64:d9:
f9:2b:84:de:a8:9d:31:89:25:b3:6b:d9:cb:6f:5e:
75:28:4a:62:1f:70:09:cc:65:d1:b4:4b:a7:72:71:
f3:a9:7e:83:d9:14:44:dd:3c:7f:45:4c:ac:f8:7b:
73:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FC:22:1D:A6:7D:CA:C0:00:36:4F:6F:D5:F2:68:0F:8B:44:77:2C
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/q_wiHaZ9ysAANk9v1fJoD4tEdyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.235.0/24
Signature Algorithm: sha256WithRSAEncryption
73:67:84:fc:1e:1a:bf:7c:45:32:5e:f7:e1:54:73:fa:ad:91:
86:ce:8e:5e:79:4b:78:92:9f:d5:01:5e:cd:3c:21:50:23:a5:
85:aa:f4:cd:1b:61:50:f6:a5:c6:76:aa:b7:88:05:3c:11:5d:
2a:88:db:5c:64:dd:17:02:0a:b2:a0:b1:62:cb:f2:c2:70:43:
2a:7f:03:7f:7b:1f:90:30:9f:15:5e:74:70:5f:91:58:21:a0:
f8:a3:77:c7:da:00:50:c3:77:e8:3b:a8:c5:ee:f8:16:ce:70:
5d:60:0c:3b:07:21:49:0f:ae:ce:11:8e:f8:24:4f:d3:44:4c:
c3:53:63:57:c3:6c:20:60:f8:a4:9f:2a:cc:27:23:47:49:63:
12:81:27:08:16:6a:4a:ac:68:f2:83:14:f1:88:3a:82:4e:b7:
0d:26:02:e0:d4:09:0a:ac:de:eb:e0:2c:00:47:38:7a:ec:6b:
ee:65:c3:08:64:a5:d5:78:8d:5e:97:31:50:5a:21:ab:33:4e:
9c:36:d4:d7:b6:c4:49:b6:1a:38:aa:b3:72:be:fd:b5:3c:d1:
f6:2e:c8:10:c3:0a:e8:af:67:82:39:94:ed:2f:ed:7d:56:17:
b4:54:f3:fe:cd:57:86:8b:81:ee:28:a6:26:01:dd:1e:40:74:
b0:fb:57:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:02 2024 by rpki-client on console-ams.rpki-client.org