Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/QFYFK6AKosxrue70jxW0vHSSTho.roa
File: QFYFK6AKosxrue70jxW0vHSSTho.roa (raw, json)
Hash identifier: BcBCebpmHYOM5YEK0dKzJ4jJT0KL/Kv5mhWzK6Yj4iY=
Subject key identifier: 40:56:05:2B:A0:0A:A2:CC:6B:B9:EE:F4:8F:15:B4:BC:74:92:4E:1A
Certificate issuer: /CN=79d10f728d6499a749ae5902e8fa883f1add4517
Certificate serial: 024624D0
Authority key identifier: 79:D1:0F:72:8D:64:99:A7:49:AE:59:02:E8:FA:88:3F:1A:DD:45:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edEPco1kmadJrlkC6PqIPxrdRRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/QFYFK6AKosxrue70jxW0vHSSTho.roa
Signing time: Sat 01 Jan 2022 15:01:17 +0000
ROA not before: Sat 01 Jan 2022 15:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.236.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38151376 (0x24624d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d10f728d6499a749ae5902e8fa883f1add4517
Validity
Not Before: Jan 1 15:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4056052ba00aa2cc6bb9eef48f15b4bc74924e1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:12:bd:0e:c3:6a:c0:d2:0a:17:01:6d:45:de:
eb:b1:88:9e:38:de:6d:fb:fa:34:c3:ac:12:4a:db:
71:5c:46:e1:16:b2:a0:44:b5:47:31:2e:e5:1d:31:
30:c3:61:30:ab:70:c9:03:af:f1:0d:eb:32:0f:6a:
57:8c:92:dd:cd:e5:4d:66:32:cc:f5:2e:f8:be:6b:
25:be:f9:00:49:02:83:71:07:e9:e0:68:52:0e:2f:
6a:f1:2d:60:0d:0c:e7:3a:ee:0c:dd:64:86:6d:cb:
5a:a9:7f:a1:e8:f5:a0:7b:08:67:75:00:40:cf:86:
14:42:55:78:c8:5b:5f:c6:ce:f2:65:7e:ce:b3:9d:
ac:96:64:2d:32:d8:f6:bb:4a:42:15:46:20:39:46:
e5:9a:a6:68:e2:79:a4:73:18:c1:2a:57:46:38:fd:
a2:9f:47:bc:24:f4:67:dd:b3:15:f8:34:45:53:92:
a5:da:47:23:92:1b:a1:8a:6b:92:8c:70:b4:38:40:
1c:e2:cf:e7:7a:32:d2:68:3e:56:ab:64:84:89:60:
84:7d:96:6f:16:c9:92:3b:a1:e1:13:a7:18:37:a7:
05:1d:4c:27:73:fe:b8:24:d8:58:9f:94:4c:06:d9:
f5:89:5e:7f:92:17:79:3f:0b:f8:88:17:ac:ff:c1:
c5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:56:05:2B:A0:0A:A2:CC:6B:B9:EE:F4:8F:15:B4:BC:74:92:4E:1A
X509v3 Authority Key Identifier:
keyid:79:D1:0F:72:8D:64:99:A7:49:AE:59:02:E8:FA:88:3F:1A:DD:45:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edEPco1kmadJrlkC6PqIPxrdRRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/QFYFK6AKosxrue70jxW0vHSSTho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/0b2641-bfb5-4e75-a3e8-b9f05e31523a/1/edEPco1kmadJrlkC6PqIPxrdRRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.142.0/24
Signature Algorithm: sha256WithRSAEncryption
63:9a:d7:f9:f5:77:55:bc:ae:a6:75:71:7e:88:fa:9c:98:b7:
59:10:72:0c:46:48:ea:e3:f9:d2:18:fe:f2:95:a7:0d:af:b3:
23:e9:57:76:92:ab:a8:c9:47:aa:bd:82:67:b5:6d:86:64:2c:
0d:95:a6:6e:46:d3:47:52:4d:94:f5:ee:37:ba:34:8b:a5:ca:
d9:de:42:8a:44:01:8d:ad:0f:ba:0a:94:84:36:2a:8a:42:ee:
94:2b:a3:d6:93:cf:10:52:58:16:78:ea:b9:8e:4c:23:bf:7c:
66:72:fa:3a:00:82:36:7b:16:ab:2f:dd:89:a3:f7:76:42:55:
4c:9d:6a:f3:54:6e:91:76:96:3a:8a:52:f0:46:db:fd:74:a5:
4a:cb:71:b6:f6:61:db:ce:30:cb:86:77:5a:c9:b8:5a:a2:d3:
b0:2e:a9:62:fb:ff:7f:2a:ca:f0:09:14:e0:a6:c3:dd:e7:12:
12:81:78:21:6a:c3:d7:3c:e7:16:62:8a:be:9f:d6:3e:36:29:
ee:2a:a9:d3:20:a8:cb:56:ef:fb:ff:96:98:d1:04:7e:5e:d4:
d5:45:eb:d8:49:66:9e:c6:e5:af:74:a1:3d:1d:a7:d0:c4:da:
9b:13:a1:2e:08:fc:3b:8d:3b:ef:12:cf:9f:74:44:45:73:6b:
2d:42:1b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:43 2024 by rpki-client on console-ams.rpki-client.org