Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/de84ce-d704-4766-a388-f8e5b2d8680c/1/qaTchSDP4hARSaUduyKLo8Q1P9c.roa
File: qaTchSDP4hARSaUduyKLo8Q1P9c.roa (raw, json)
Hash identifier: m+7pJbOlH6kOxjp838pbmZ9GKKq+M3ljit7e6PBi8+E=
Subject key identifier: A9:A4:DC:85:20:CF:E2:10:11:49:A5:1D:BB:22:8B:A3:C4:35:3F:D7
Certificate issuer: /CN=80615315dc750c03e60fc36a750c5e3ff66eac94
Certificate serial: 089D7D40
Authority key identifier: 80:61:53:15:DC:75:0C:03:E6:0F:C3:6A:75:0C:5E:3F:F6:6E:AC:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gGFTFdx1DAPmD8NqdQxeP_ZurJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/de84ce-d704-4766-a388-f8e5b2d8680c/1/qaTchSDP4hARSaUduyKLo8Q1P9c.roa
Signing time: Wed 02 Mar 2022 07:18:28 +0000
ROA not before: Wed 02 Mar 2022 07:18:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199669
IP address blocks: 185.179.160.0/22 maxlen: 24
185.195.170.0/23 maxlen: 24
91.109.200.0/21 maxlen: 24
176.123.188.0/22 maxlen: 24
46.29.118.0/23 maxlen: 24
185.10.44.0/24 maxlen: 24
185.10.44.0/22 maxlen: 24
185.71.196.0/22 maxlen: 24
2a03:ec0::/48 maxlen: 64
2a03:ec0:1::/48 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144538944 (0x89d7d40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80615315dc750c03e60fc36a750c5e3ff66eac94
Validity
Not Before: Mar 2 07:18:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9a4dc8520cfe2101149a51dbb228ba3c4353fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:43:b8:d7:d9:60:38:e0:1c:48:4d:b0:3a:95:
75:df:ba:81:ac:64:5f:80:ce:fc:12:33:07:1a:94:
44:25:66:e4:5c:5b:20:0f:f1:c2:dd:19:d0:1a:95:
dc:ec:f9:7c:6c:68:90:28:a1:f4:37:00:63:06:36:
12:64:d9:45:ce:bd:3d:29:62:70:c3:89:1d:6b:4b:
00:f5:c8:b7:4b:3a:19:0f:75:b6:d8:e4:77:db:6b:
9b:6e:68:d4:96:dd:d9:66:ad:ff:89:c5:60:b8:ff:
8e:fc:9b:d8:60:60:9b:66:ab:7f:de:01:5a:9b:4d:
30:d6:39:dd:de:1e:ab:f9:26:81:98:b3:2e:dd:6b:
e3:75:f7:77:76:d0:20:34:7e:54:98:6a:57:57:14:
61:17:d7:6c:3b:ec:85:7c:92:dc:68:2f:1b:53:5b:
56:cf:21:94:94:aa:87:08:c7:d6:c4:bd:14:2a:54:
91:d8:54:6b:c1:85:de:79:58:24:93:51:a1:fb:a9:
5e:24:56:c7:d4:e2:35:bc:1c:63:75:7c:43:b3:ed:
d0:45:74:ec:b0:86:ca:e6:97:c3:54:0a:16:ac:55:
09:1b:bd:94:12:e2:96:d8:05:8b:ea:c5:68:7a:da:
e4:da:8f:f3:cc:69:fc:51:29:49:93:27:2a:f8:c8:
32:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A4:DC:85:20:CF:E2:10:11:49:A5:1D:BB:22:8B:A3:C4:35:3F:D7
X509v3 Authority Key Identifier:
keyid:80:61:53:15:DC:75:0C:03:E6:0F:C3:6A:75:0C:5E:3F:F6:6E:AC:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gGFTFdx1DAPmD8NqdQxeP_ZurJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/de84ce-d704-4766-a388-f8e5b2d8680c/1/qaTchSDP4hARSaUduyKLo8Q1P9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/de84ce-d704-4766-a388-f8e5b2d8680c/1/gGFTFdx1DAPmD8NqdQxeP_ZurJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.29.118.0/23
91.109.200.0/21
176.123.188.0/22
185.10.44.0/22
185.71.196.0/22
185.179.160.0/22
185.195.170.0/23
IPv6:
2a03:ec0::/47
Signature Algorithm: sha256WithRSAEncryption
18:76:37:8c:0d:6d:3b:a4:61:0a:dc:fb:61:5d:fb:87:77:89:
73:c1:50:b2:44:2b:f8:13:ae:2d:81:a6:67:0d:7a:c5:f1:36:
06:56:16:15:c1:a7:68:08:0e:75:b9:49:ac:59:03:96:e8:3d:
0b:68:bb:7f:81:0f:ad:2b:59:0e:99:bd:6c:84:41:d0:69:77:
99:d6:4a:0a:7d:5b:54:42:34:12:2b:fc:0c:83:73:d7:32:5a:
9e:32:90:21:b3:3c:35:bf:60:d0:9f:2c:14:ef:d2:b4:2d:ce:
49:d2:16:48:c2:08:8a:68:9f:54:13:69:ed:a7:c7:17:e1:ad:
96:dc:17:9c:23:62:4f:9a:77:2e:90:61:4e:c3:ee:d7:d2:0b:
d5:d3:91:c9:da:62:79:c8:ec:8b:d7:76:4d:81:14:bb:bc:b9:
e2:0b:b7:5d:c0:e2:63:7b:96:f5:b8:3e:c3:58:e5:f8:3d:f2:
5f:45:3a:49:f5:92:63:7f:5e:bf:c8:09:af:48:a9:a9:97:03:
c2:b4:54:ea:9e:72:a3:c9:87:14:73:34:7c:cb:70:fa:2c:c7:
0d:f2:d0:1b:47:83:40:9a:65:6f:91:62:4d:59:e2:15:8b:09:
ab:3a:a0:29:b0:d3:7c:7f:aa:ca:55:05:de:7a:0f:63:46:b2:
26:7a:f5:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:32 2024 by rpki-client on console-fra.rpki-client.org