Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/Q-Bofr8KuAD3a9YI2CxGNEJolSE.roa
File: Q-Bofr8KuAD3a9YI2CxGNEJolSE.roa (raw, json)
Hash identifier: pp9/jIVDHhgSWAgga3taAiu6XqOCjkR5X8Ct3IisQAM=
Subject key identifier: 43:E0:68:7E:BF:0A:B8:00:F7:6B:D6:08:D8:2C:46:34:42:68:95:21
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 03411BBA
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/Q-Bofr8KuAD3a9YI2CxGNEJolSE.roa
Signing time: Thu 30 Jun 2022 06:38:02 +0000
ROA not before: Thu 30 Jun 2022 06:38:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 185.105.239.0/24 maxlen: 24
185.231.115.0/24 maxlen: 24
45.139.11.0/24 maxlen: 24
45.139.10.0/24 maxlen: 24
194.147.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54598586 (0x3411bba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jun 30 06:38:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43e0687ebf0ab800f76bd608d82c463442689521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d8:b1:35:86:01:6a:bd:a9:64:c5:8c:01:13:
43:ba:4a:87:7f:1f:95:9e:7e:d3:8d:4b:c4:5f:2a:
83:99:79:7c:16:8c:08:71:4d:aa:e8:d2:7b:10:a4:
81:47:48:b9:7a:e6:8c:4a:c7:bf:bc:8c:38:e9:36:
d3:7a:3a:ac:94:f1:25:bb:b2:aa:9c:68:f6:2f:5f:
11:b3:d9:06:1e:06:52:05:62:e3:4b:70:27:5c:b9:
9e:60:59:a6:d4:ff:38:a8:d1:89:18:51:d2:0c:62:
4d:06:5e:2a:c6:40:6e:eb:2f:43:d0:47:b3:32:ec:
89:81:90:66:85:31:a2:bd:ec:fe:9c:48:40:8f:cf:
a8:4c:98:64:89:2d:ee:e8:88:9d:cd:46:2a:bf:0c:
9b:2f:09:41:74:ad:fe:c8:77:a5:4a:9d:f5:e5:87:
48:a1:e4:e6:2e:0e:08:e2:9a:61:2c:d7:cb:44:ed:
6f:ff:7f:23:4f:0e:d7:44:a0:20:23:13:42:4f:5c:
54:c5:0f:f5:35:49:7a:21:53:99:ce:ca:4f:f1:0f:
b7:35:2f:2e:1b:a3:5c:bd:f3:e5:b6:7f:03:fb:d5:
54:ad:07:03:fc:e9:c9:89:2c:c0:29:23:1f:80:95:
f7:0d:a6:09:ef:47:e2:c1:85:a2:30:8b:0c:fe:54:
4e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E0:68:7E:BF:0A:B8:00:F7:6B:D6:08:D8:2C:46:34:42:68:95:21
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/Q-Bofr8KuAD3a9YI2CxGNEJolSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.10.0/23
185.105.239.0/24
185.231.115.0/24
194.147.142.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:dc:8d:bd:a0:68:1c:95:92:68:5e:25:6b:50:f4:2a:e1:d6:
1a:f1:33:ea:2d:0e:59:4b:ec:ea:b9:57:12:de:76:3c:cc:ff:
23:22:95:84:16:0b:de:a9:5f:1e:64:76:51:d2:2d:0c:08:bc:
dc:50:f3:2c:bd:4e:fd:93:7f:07:f2:54:2a:2b:ac:6a:65:fa:
86:ab:17:f9:70:8b:13:7a:de:46:f2:cc:c9:24:4b:3b:fc:65:
20:53:d9:75:20:d6:87:39:cd:b3:9c:f5:df:cc:39:1c:83:64:
1d:47:7a:03:f8:0a:ad:90:cc:b3:cf:0f:a6:9f:59:a6:a0:f1:
bc:31:ce:e3:49:10:34:04:6b:7e:db:f8:24:79:97:d2:e4:b4:
fc:2c:f3:f6:fe:0d:f2:d3:c8:2b:b2:07:86:41:05:97:f1:98:
70:08:ee:4f:c6:93:17:78:33:71:2d:c3:72:b2:4c:71:9e:d1:
7f:bd:43:31:6e:4d:f3:bf:fd:6b:db:d1:9e:b6:ad:1f:5d:d1:
c8:79:78:04:15:76:ba:d7:bd:d9:f8:73:22:f1:f5:91:11:ff:
81:d8:60:67:a7:bb:d3:41:d8:25:b5:ea:5d:a1:32:ff:19:fe:
28:cf:0f:7e:b2:97:e6:20:9c:92:ff:b5:cd:ac:fd:87:3d:5d:
2a:50:2d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org