Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/8dabdd-0ffb-4849-b265-a5e89b665772/1/QqvPCo9JamsumQuM_VfOWCoFdHU.roa
File: QqvPCo9JamsumQuM_VfOWCoFdHU.roa (raw, json)
Hash identifier: yA3C9CDCGaOznxc7XbDbNCrgHYECuW5UVsUdyq/epV0=
Subject key identifier: 42:AB:CF:0A:8F:49:6A:6B:2E:99:0B:8C:FD:57:CE:58:2A:05:74:75
Certificate issuer: /CN=b4e576a0fd748c899e64d5fbf5fd7388c68ee044
Certificate serial: 09857335
Authority key identifier: B4:E5:76:A0:FD:74:8C:89:9E:64:D5:FB:F5:FD:73:88:C6:8E:E0:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOV2oP10jImeZNX79f1ziMaO4EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/8dabdd-0ffb-4849-b265-a5e89b665772/1/QqvPCo9JamsumQuM_VfOWCoFdHU.roa
Signing time: Sat 01 Jan 2022 05:01:59 +0000
ROA not before: Sat 01 Jan 2022 05:01:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202681
IP address blocks: 185.153.57.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159740725 (0x9857335)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e576a0fd748c899e64d5fbf5fd7388c68ee044
Validity
Not Before: Jan 1 05:01:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42abcf0a8f496a6b2e990b8cfd57ce582a057475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c8:d1:bd:1a:2d:8e:db:d0:84:1b:e2:c9:46:
d1:a4:99:37:2c:a4:13:3f:3b:23:dc:34:ab:16:31:
fd:5d:74:cb:f7:76:35:ec:82:bb:b5:a6:17:ae:92:
72:d4:2a:4b:0b:e9:57:10:56:aa:18:a0:19:bd:7e:
aa:b6:ac:99:b5:4c:43:be:fd:49:84:c5:fb:7d:a1:
a3:29:94:2a:0c:32:a5:3e:19:cb:54:e4:de:81:46:
cf:61:bb:67:b9:69:c7:c4:34:b0:f2:e1:6f:50:83:
14:8b:9f:0f:df:66:49:93:b8:75:29:10:2b:74:00:
ac:af:f6:8d:08:95:f8:d5:19:70:2c:cf:25:50:b6:
70:34:42:47:04:64:d6:03:72:ee:7d:8e:e4:27:51:
03:15:2e:1c:3d:31:86:34:db:20:f4:26:c7:17:d0:
4c:cc:e0:16:89:e6:8a:62:09:0f:fb:3c:a3:fc:54:
b4:b7:b1:69:3e:cf:da:5e:a4:5a:4d:9b:66:ef:28:
d1:36:2e:2a:47:7e:6b:a3:9b:60:6e:c8:40:36:34:
2b:3f:70:3a:8a:48:d6:5b:70:cb:ec:55:38:22:7a:
8a:4f:4c:85:f4:7d:0d:92:e3:73:c6:80:2c:63:1a:
64:22:96:65:2e:ef:51:70:e8:5f:d4:b0:b4:59:27:
54:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:AB:CF:0A:8F:49:6A:6B:2E:99:0B:8C:FD:57:CE:58:2A:05:74:75
X509v3 Authority Key Identifier:
keyid:B4:E5:76:A0:FD:74:8C:89:9E:64:D5:FB:F5:FD:73:88:C6:8E:E0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOV2oP10jImeZNX79f1ziMaO4EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8dabdd-0ffb-4849-b265-a5e89b665772/1/QqvPCo9JamsumQuM_VfOWCoFdHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8dabdd-0ffb-4849-b265-a5e89b665772/1/tOV2oP10jImeZNX79f1ziMaO4EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.57.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:6a:f4:ba:94:ab:9a:43:16:2e:a3:86:f3:60:25:24:59:7e:
19:9d:06:ef:73:b3:0b:be:8c:75:45:d6:0c:f7:8a:ad:d3:f8:
8b:19:fa:f8:5c:0e:9f:18:36:60:a1:93:bd:4b:03:f5:f7:74:
03:96:7c:15:75:2d:79:8a:f6:bd:88:05:6a:92:02:1c:66:4e:
45:bc:9d:ae:03:73:88:bc:db:53:a8:61:31:0a:fb:9f:55:bf:
18:29:8b:eb:ca:aa:b1:a0:53:50:96:35:ff:02:2a:93:18:34:
2a:0e:03:49:74:8a:79:ef:1b:24:e2:ae:58:f2:de:e3:5f:06:
e3:d7:a1:91:fd:12:e7:bf:5e:19:ad:fe:4c:aa:46:b9:f9:57:
16:1f:fc:b7:b8:c3:b0:9c:af:7f:55:47:44:30:d4:92:4d:db:
6f:fd:52:5f:77:fe:ca:d5:54:9d:f8:9f:ed:92:7b:c7:54:ae:
44:36:9b:7f:66:bd:11:a5:ef:03:28:8e:f3:4c:dc:40:35:01:
d8:d7:7a:9e:79:99:7e:82:86:62:80:46:81:b6:c3:aa:9e:08:
a9:73:60:87:90:47:e0:e1:c4:c4:9f:df:da:6f:bd:a2:c9:d6:
e2:63:3f:c3:de:c9:10:23:92:47:ee:42:d8:2e:cb:70:c0:11:
8c:fa:8b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:55 2023 by rpki-client on console.sobornost.net