Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/5645cb-f0ba-44fc-ba93-7369f2ca5b3b/1/OQTiOWcMt_3KRNbzj_tMLDFUw-0.roa
File: OQTiOWcMt_3KRNbzj_tMLDFUw-0.roa (raw, json)
Hash identifier: WXp63va/Rr2KWwu19cgn3Y0ikiB3nbtvO0WJ88yzCGA=
Subject key identifier: 39:04:E2:39:67:0C:B7:FD:CA:44:D6:F3:8F:FB:4C:2C:31:54:C3:ED
Certificate issuer: /CN=3fdf08459119969d4b9c17f5a85e92732c5517d1
Certificate serial: 05E2A250
Authority key identifier: 3F:DF:08:45:91:19:96:9D:4B:9C:17:F5:A8:5E:92:73:2C:55:17:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P98IRZEZlp1LnBf1qF6ScyxVF9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/5645cb-f0ba-44fc-ba93-7369f2ca5b3b/1/OQTiOWcMt_3KRNbzj_tMLDFUw-0.roa
Signing time: Sat 01 Jan 2022 00:51:30 +0000
ROA not before: Sat 01 Jan 2022 00:51:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207143
IP address blocks: 185.178.192.0/22 maxlen: 22
185.178.192.0/24 maxlen: 24
185.178.193.0/24 maxlen: 24
185.178.195.0/24 maxlen: 24
185.178.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98738768 (0x5e2a250)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fdf08459119969d4b9c17f5a85e92732c5517d1
Validity
Not Before: Jan 1 00:51:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3904e239670cb7fdca44d6f38ffb4c2c3154c3ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ae:84:e1:80:db:c2:19:23:cb:6c:71:85:8e:
6b:a4:7d:12:73:5e:12:34:10:b6:b6:70:1f:f6:49:
76:62:d9:02:5b:56:93:38:77:b2:50:d7:a0:92:e6:
a4:74:0d:b2:52:d7:2d:7d:ba:51:b9:8f:3f:11:cb:
c0:31:0c:bb:9c:0f:63:2d:6c:20:5d:ef:30:d9:09:
16:c3:ca:a5:1a:b0:96:ea:02:23:45:a6:92:7f:70:
11:a8:ce:2c:76:34:cd:82:f1:45:50:a0:fc:bc:3e:
08:dc:0e:38:5d:c3:be:00:00:2c:df:73:77:d0:6c:
05:38:89:21:0b:75:51:28:25:95:78:31:08:4e:e9:
f4:5b:1e:19:1d:f4:3c:b9:0b:37:18:27:9b:53:e0:
37:a6:7e:48:ae:e9:43:2c:e0:59:42:71:16:cd:83:
e9:cc:ad:1b:01:a1:47:14:5c:d7:13:2a:c5:4f:49:
a9:95:7f:e6:12:4a:21:2a:18:eb:a9:9e:dd:4d:17:
90:ec:5c:b1:d1:1b:56:14:11:a6:08:9f:72:ab:5b:
06:1e:a7:b0:f4:4f:07:01:74:61:84:e6:1c:77:38:
13:32:4b:bd:11:b8:8b:fb:9a:44:27:1f:0d:6f:99:
bf:e8:ce:dd:ae:bd:08:45:f7:22:e5:b4:27:96:5c:
2b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:04:E2:39:67:0C:B7:FD:CA:44:D6:F3:8F:FB:4C:2C:31:54:C3:ED
X509v3 Authority Key Identifier:
keyid:3F:DF:08:45:91:19:96:9D:4B:9C:17:F5:A8:5E:92:73:2C:55:17:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P98IRZEZlp1LnBf1qF6ScyxVF9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/5645cb-f0ba-44fc-ba93-7369f2ca5b3b/1/OQTiOWcMt_3KRNbzj_tMLDFUw-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/5645cb-f0ba-44fc-ba93-7369f2ca5b3b/1/P98IRZEZlp1LnBf1qF6ScyxVF9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.178.192.0/22
Signature Algorithm: sha256WithRSAEncryption
01:a4:90:3b:69:5a:32:4b:bc:dc:82:20:d5:8e:c1:88:bc:26:
76:1e:88:00:e1:7d:d7:0d:82:5d:a1:03:ca:ea:a2:8b:63:eb:
05:89:35:d5:8e:39:d4:25:4b:84:f6:69:a1:91:c0:af:57:30:
01:15:56:fb:a0:29:0e:c0:0e:59:23:70:d3:72:9c:13:14:dd:
db:b2:50:4f:81:c7:76:4e:77:cc:88:9c:19:09:35:5d:bf:ef:
55:bf:51:af:7d:a7:78:90:f3:73:55:f9:5a:2c:42:be:a1:c9:
1a:63:55:4f:a4:3b:9f:c2:de:62:77:86:c3:59:df:12:93:b6:
05:99:12:a1:fb:dd:c8:17:f4:a4:73:d4:b4:e2:34:f7:07:78:
12:d8:e4:71:c7:2a:09:88:5f:5e:fc:24:a0:22:a4:db:b4:19:
92:9d:94:c4:b5:40:78:28:58:31:66:a2:b6:df:b1:82:bb:48:
41:c6:e3:a1:d4:0b:08:46:3a:a4:cd:36:8e:13:16:14:0f:77:
a5:d9:94:72:5d:c0:f6:f1:cb:87:90:ac:ab:95:44:c7:59:41:
11:ba:85:f8:c9:0e:49:cb:db:b8:7f:31:6a:2c:0a:86:b4:8b:
3f:20:db:fc:24:3f:66:d6:b4:ec:e3:bb:cf:15:3d:0e:1f:e0:
7f:88:c3:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net