Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/v4_dQalCkg-O61Oove8ndqBoe9M.roa
File: v4_dQalCkg-O61Oove8ndqBoe9M.roa (raw, json)
Hash identifier: YB6v0r6tZuZTB3qO9cK0Uf7N9Yi0GAvSeeXd+niruo8=
Subject key identifier: BF:8F:DD:41:A9:42:92:0F:8E:EB:53:A8:BD:EF:27:76:A0:68:7B:D3
Certificate issuer: /CN=3a0b05f40a6916394782302d1b5660737257a48b
Certificate serial: 0757BB8C
Authority key identifier: 3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/v4_dQalCkg-O61Oove8ndqBoe9M.roa
Signing time: Sat 01 Jan 2022 04:57:12 +0000
ROA not before: Sat 01 Jan 2022 04:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34388
IP address blocks: 185.1.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123190156 (0x757bb8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a0b05f40a6916394782302d1b5660737257a48b
Validity
Not Before: Jan 1 04:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf8fdd41a942920f8eeb53a8bdef2776a0687bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a3:5a:d8:6b:c0:cc:0f:17:6e:d0:7d:2c:36:
e3:54:57:05:9e:56:e4:1c:8f:92:4f:68:91:89:41:
5c:c5:66:15:0d:ee:02:67:40:73:d2:62:ad:b2:3e:
ad:3e:03:2a:41:19:6e:1d:ac:5a:67:82:9b:50:36:
82:93:cc:f0:c3:90:c5:34:08:1c:e4:7e:00:e6:74:
53:52:1a:30:b1:fb:ae:c8:98:55:f6:a8:a6:56:84:
d6:4b:66:8b:02:75:59:be:3d:08:94:dd:f4:78:f9:
17:2a:17:ba:55:2a:bb:2e:da:6d:2e:72:c3:37:ce:
e2:1a:58:49:f9:03:b3:0a:2b:ec:07:73:09:40:05:
fa:c3:24:ed:b5:4c:c3:5f:58:43:13:26:e0:aa:1d:
30:87:5a:0d:c0:a7:9c:cb:d4:d5:be:4b:37:9b:ab:
e1:f5:e9:96:30:c1:2b:70:f5:a7:fa:9a:f7:dc:ba:
c0:42:72:1a:7b:a4:d2:36:8b:7a:26:50:5e:97:52:
66:36:b0:93:5e:1e:16:a7:92:33:fb:f7:02:39:f3:
31:5d:96:c7:ae:61:31:a7:0a:c3:19:c8:ea:e3:b3:
37:35:f4:08:ba:e5:1e:e0:af:44:61:44:9a:3b:9e:
34:99:6f:9d:5c:a1:0f:44:2f:2e:1a:0f:20:0f:7d:
55:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:8F:DD:41:A9:42:92:0F:8E:EB:53:A8:BD:EF:27:76:A0:68:7B:D3
X509v3 Authority Key Identifier:
keyid:3A:0B:05:F4:0A:69:16:39:47:82:30:2D:1B:56:60:73:72:57:A4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgsF9AppFjlHgjAtG1Zgc3JXpIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/v4_dQalCkg-O61Oove8ndqBoe9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7583cb-d31e-4e03-b14b-b20e28f5188f/1/OgsF9AppFjlHgjAtG1Zgc3JXpIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.158.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ee:e1:d9:2d:fd:21:e5:73:e2:3f:56:0f:a5:a0:d7:22:b9:
2e:21:cf:0e:bc:6c:36:f6:30:a1:5d:65:3a:22:3f:82:54:d2:
d8:23:f2:b3:78:a9:23:a5:12:5a:a8:31:d4:46:83:47:c6:b0:
88:e3:39:a1:5b:1b:d9:1a:08:03:e2:d4:eb:95:53:22:c1:2d:
36:ad:59:35:34:70:27:92:b6:1c:3c:82:30:f6:e3:d0:00:4e:
d5:04:85:5a:fa:c7:00:cb:4d:fc:86:8e:f6:18:2a:1b:84:00:
24:bc:27:f7:ae:40:ad:ba:68:e0:cb:f3:63:80:bd:39:af:57:
e6:89:a9:64:c5:a2:9c:80:a2:6b:ef:8b:44:61:c9:6f:71:3e:
0c:77:65:ad:4b:f5:09:a5:10:27:d0:e0:22:2a:d0:38:9b:13:
d5:c4:0b:b1:1c:23:87:00:b2:57:e8:3c:41:74:f8:35:87:2c:
75:f9:ae:7e:d3:f6:6e:86:95:d7:5e:1c:4e:c5:98:48:f7:13:
eb:b0:29:22:8e:e4:0c:41:85:b7:aa:6d:f4:d2:62:98:ee:36:
92:d8:37:c4:ca:b7:53:ac:1c:0f:93:13:ea:20:09:9b:9a:0f:
9d:e9:ed:90:c5:e7:af:00:a7:38:06:df:38:74:de:8a:72:5c:
42:34:2a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:35 2023 by rpki-client on console.sobornost.net