Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/107db4-9fd7-4fcd-8d19-25413c260e45/1/QI1F2o1fXyDB2Oj3CGlHtD8iCBY.roa
File: QI1F2o1fXyDB2Oj3CGlHtD8iCBY.roa (raw, json)
Hash identifier: hnFZh6gm157N1j23rttoeFHJjOtoEuAA5vC2/ENY7Uk=
Subject key identifier: 40:8D:45:DA:8D:5F:5F:20:C1:D8:E8:F7:08:69:47:B4:3F:22:08:16
Certificate issuer: /CN=47ad34f8c20a5073e860821c8c09bf7579a26d0b
Certificate serial: 057F19D0
Authority key identifier: 47:AD:34:F8:C2:0A:50:73:E8:60:82:1C:8C:09:BF:75:79:A2:6D:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R600-MIKUHPoYIIcjAm_dXmibQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/107db4-9fd7-4fcd-8d19-25413c260e45/1/QI1F2o1fXyDB2Oj3CGlHtD8iCBY.roa
Signing time: Sat 01 Jan 2022 13:04:43 +0000
ROA not before: Sat 01 Jan 2022 13:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48095
IP address blocks: 185.201.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92215760 (0x57f19d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47ad34f8c20a5073e860821c8c09bf7579a26d0b
Validity
Not Before: Jan 1 13:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=408d45da8d5f5f20c1d8e8f7086947b43f220816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4b:0b:d9:b2:5a:d8:c7:e4:65:03:ec:4c:7f:
91:97:e7:8e:06:10:f4:43:bf:e6:ab:7d:01:fc:77:
97:05:70:35:01:78:01:76:de:c3:b0:37:18:15:9e:
d1:9e:cb:5b:d7:37:29:5c:57:f5:04:47:1d:36:9f:
ad:d4:1c:ce:06:2c:90:6a:9b:7c:5a:26:41:30:a7:
9c:a5:ee:79:79:4f:e1:d9:1f:25:e2:03:56:f2:e4:
25:ba:96:f9:aa:cf:10:12:da:fc:72:d5:48:54:ba:
db:c5:94:68:8a:92:bc:b0:dc:51:3f:c4:27:e0:1d:
85:2c:96:30:44:12:ad:71:e0:a1:94:37:6c:1c:19:
a9:ad:a8:7f:4f:ca:bb:06:63:50:e9:f5:8e:24:37:
be:a8:0c:45:4d:f0:cd:34:28:62:7d:bd:21:0d:4a:
b0:85:3c:4f:12:65:8b:35:4c:24:90:0c:5c:6c:d6:
62:16:38:60:bb:fd:ce:3f:63:cc:35:0f:3d:95:78:
45:2a:ad:15:21:37:b3:b0:63:46:7d:08:98:9d:13:
6d:e0:16:ab:30:fc:3b:7e:16:ac:5f:f2:3e:05:f2:
ad:45:cf:5f:7d:a6:40:22:97:2a:2d:ed:da:14:37:
16:3f:ac:31:1a:e4:fb:d5:16:21:b2:59:8b:16:a7:
22:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:8D:45:DA:8D:5F:5F:20:C1:D8:E8:F7:08:69:47:B4:3F:22:08:16
X509v3 Authority Key Identifier:
keyid:47:AD:34:F8:C2:0A:50:73:E8:60:82:1C:8C:09:BF:75:79:A2:6D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R600-MIKUHPoYIIcjAm_dXmibQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/107db4-9fd7-4fcd-8d19-25413c260e45/1/QI1F2o1fXyDB2Oj3CGlHtD8iCBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/107db4-9fd7-4fcd-8d19-25413c260e45/1/R600-MIKUHPoYIIcjAm_dXmibQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.244.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:28:b6:2b:f6:af:61:ab:eb:11:d1:fd:f7:0e:f0:ac:08:06:
e8:6b:02:57:5b:46:2e:70:5d:47:75:c5:0b:43:3f:22:31:dc:
4d:39:7d:03:b2:62:1e:50:03:fb:2d:3c:7f:88:94:03:03:12:
98:07:db:e8:1c:dd:bf:88:f7:22:32:e5:c7:a1:8d:af:15:4e:
64:34:d7:66:fa:6d:76:a8:d1:47:aa:3b:f2:e2:10:ee:c4:69:
75:b8:83:b3:6c:28:52:82:47:ce:32:5e:ec:ec:86:7c:06:3d:
9f:0d:88:4c:ef:61:8f:a6:05:f7:ee:47:2d:c6:16:43:9e:04:
24:19:6f:78:fa:a6:52:5f:02:a6:f5:92:0a:d7:35:fe:da:8e:
f2:af:f2:9f:de:6d:96:97:81:89:87:51:e7:a4:fb:02:7b:0d:
94:dd:09:e0:9c:4f:46:79:b2:05:47:76:6e:2f:40:d4:83:8b:
64:d5:e4:ea:77:35:df:54:fa:f1:b2:7d:98:25:e8:a9:32:73:
c6:51:a1:ac:2e:7f:51:b5:da:f9:55:e3:85:73:ab:31:b4:d8:
84:92:d6:54:c1:35:11:72:ca:f6:ce:96:89:56:26:4a:94:8c:
d4:a9:c7:a4:a8:b7:cc:f9:0b:c0:39:40:77:f8:6b:7c:37:f5:
b7:31:3d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:42 2023 by rpki-client on console.sobornost.net