Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/fd7af2-5036-42ac-a3f7-d596ec14ee2e/1/SxmzjUoqkS2vc6wc3dlCbXBYuXk.roa
File: SxmzjUoqkS2vc6wc3dlCbXBYuXk.roa (raw, json)
Hash identifier: CMB6Q22Xvpj3sUdmvJdH//0v+jU910UySj3YfDJJeTk=
Subject key identifier: 4B:19:B3:8D:4A:2A:91:2D:AF:73:AC:1C:DD:D9:42:6D:70:58:B9:79
Certificate issuer: /CN=41c8d0241108b01f5eb708fe8bbb847d53a30f16
Certificate serial: 0D7855C3
Authority key identifier: 41:C8:D0:24:11:08:B0:1F:5E:B7:08:FE:8B:BB:84:7D:53:A3:0F:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QcjQJBEIsB9etwj-i7uEfVOjDxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/fd7af2-5036-42ac-a3f7-d596ec14ee2e/1/SxmzjUoqkS2vc6wc3dlCbXBYuXk.roa
Signing time: Sat 01 Jan 2022 01:59:20 +0000
ROA not before: Sat 01 Jan 2022 01:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201160
IP address blocks: 185.163.33.0/24 maxlen: 24
185.163.32.0/24 maxlen: 24
185.163.35.0/24 maxlen: 24
185.163.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225990083 (0xd7855c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41c8d0241108b01f5eb708fe8bbb847d53a30f16
Validity
Not Before: Jan 1 01:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b19b38d4a2a912daf73ac1cddd9426d7058b979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b5:c3:9b:96:ad:01:8b:d4:72:b4:bd:a7:66:
c6:fc:35:43:29:d2:96:ac:cd:fc:79:1a:1d:35:8b:
e9:5d:82:cd:5c:37:28:b8:43:63:e7:52:9d:dc:ed:
84:56:d5:0f:2f:88:46:13:dd:cf:ef:0f:ee:7f:f3:
5f:21:7c:d9:45:83:1a:78:43:cc:57:6a:28:5f:b1:
15:a8:aa:93:a4:ee:31:95:b8:5c:a1:c4:fa:5d:81:
79:2b:c8:d1:3e:aa:5e:5d:26:5c:c8:f9:65:1c:4c:
7a:bb:3d:59:fb:85:b6:c4:3f:13:5f:d6:01:2a:85:
d8:70:3b:2a:72:92:0f:e3:ad:63:f3:8c:24:3b:c7:
a6:04:d5:90:82:4c:72:90:e4:48:5a:80:88:04:38:
de:d3:38:33:58:6c:d4:d9:8e:bd:63:a2:3c:a6:44:
4d:eb:a2:7d:1a:de:91:cb:95:da:05:a6:82:1d:58:
00:27:8e:e2:63:27:72:ee:64:a0:f0:41:b4:eb:7e:
22:50:1f:9d:7b:67:b3:8a:38:88:18:e2:c0:73:22:
cd:17:24:18:4e:c4:17:8a:5d:15:f6:65:01:c9:b0:
f9:d2:bb:f1:b7:d1:b5:b6:8e:4f:35:e1:88:55:2d:
c7:7f:79:88:76:d5:15:84:87:54:27:f0:f7:1d:13:
24:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:19:B3:8D:4A:2A:91:2D:AF:73:AC:1C:DD:D9:42:6D:70:58:B9:79
X509v3 Authority Key Identifier:
keyid:41:C8:D0:24:11:08:B0:1F:5E:B7:08:FE:8B:BB:84:7D:53:A3:0F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QcjQJBEIsB9etwj-i7uEfVOjDxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/fd7af2-5036-42ac-a3f7-d596ec14ee2e/1/SxmzjUoqkS2vc6wc3dlCbXBYuXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/fd7af2-5036-42ac-a3f7-d596ec14ee2e/1/QcjQJBEIsB9etwj-i7uEfVOjDxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.32.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:c8:a3:c0:69:4b:c7:42:17:11:e8:c4:6f:66:67:51:19:1e:
ba:31:f1:f1:4e:c8:83:d6:e2:51:3a:9e:de:03:38:ee:e6:61:
49:9a:4f:50:a2:ed:e2:a4:9d:25:5a:f7:e7:c8:01:1b:0d:10:
35:9f:6a:9d:b6:b6:c6:e9:37:9f:24:a6:ca:30:17:42:c8:b7:
65:ac:01:4f:b3:83:76:0b:71:00:1a:ff:00:27:10:96:37:39:
c3:44:e6:77:83:8a:cf:91:58:4b:27:2c:34:54:17:30:d2:6e:
77:a2:ff:4b:31:33:c1:fb:81:7a:2c:dd:96:02:61:02:f8:f5:
04:58:74:54:04:fb:7e:e8:6c:29:d1:6c:8f:bc:ec:8f:69:ca:
fe:4f:03:e7:90:91:b5:1b:06:5f:32:1e:af:2c:40:d0:8f:df:
bc:98:d7:59:04:0d:9f:28:93:67:67:75:df:92:cb:ae:8d:b1:
eb:6c:62:f9:b3:b8:50:c2:29:96:6a:3c:77:95:05:63:81:7a:
43:07:4f:03:88:8e:c3:f9:99:cf:08:ec:89:e3:20:d7:de:62:
fd:1c:9b:21:24:f8:af:76:02:b9:d5:b6:33:69:ac:17:0c:41:
7b:46:8b:a8:5c:a4:c8:e2:20:63:85:1e:8d:31:0e:44:83:97:
9c:20:54:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:22 2023 by rpki-client on console.sobornost.net