Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/NqXiQX0Q5Z9Bi0g-SWracy_8Op4.roa
File: NqXiQX0Q5Z9Bi0g-SWracy_8Op4.roa (raw, json)
Hash identifier: c0A2XicyAiqxyGfmzHepjf0+qn1RvYY+Tb75X5TMVE4=
Subject key identifier: 36:A5:E2:41:7D:10:E5:9F:41:8B:48:3E:49:6A:DA:73:2F:FC:3A:9E
Certificate issuer: /CN=8c7fd3dbdc3a9b9531e686b5b07645c328b1b51a
Certificate serial: 0183D11FF7C17C65EB3CF87C50DD17C87DBA
Authority key identifier: 8C:7F:D3:DB:DC:3A:9B:95:31:E6:86:B5:B0:76:45:C3:28:B1:B5:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jH_T29w6m5Ux5oa1sHZFwyixtRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/NqXiQX0Q5Z9Bi0g-SWracy_8Op4.roa
Signing time: Thu 13 Oct 2022 11:34:36 +0000
ROA not before: Thu 13 Oct 2022 11:34:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 185.104.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d1:1f:f7:c1:7c:65:eb:3c:f8:7c:50:dd:17:c8:7d:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7fd3dbdc3a9b9531e686b5b07645c328b1b51a
Validity
Not Before: Oct 13 11:34:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=36a5e2417d10e59f418b483e496ada732ffc3a9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:88:cf:14:b2:42:58:74:05:ed:62:5d:36:46:
b9:6c:66:ee:26:55:bb:47:68:37:4e:c5:ef:1e:7d:
58:40:5a:f2:36:c4:7b:df:82:23:7a:4d:e3:e2:c9:
5b:65:74:46:a3:57:6d:a0:d0:08:34:86:23:b8:cf:
71:de:9a:5b:6d:43:d7:2b:bd:27:94:64:72:a0:e1:
1a:63:5a:2d:54:3d:8c:3f:48:82:35:bd:b6:6a:db:
8e:81:4d:da:e7:af:b6:bd:bb:be:50:0e:c6:03:ca:
9c:73:50:5b:f3:0f:76:0d:23:b9:36:af:0b:3a:70:
0a:1f:bc:1d:6b:51:a4:0b:f2:e0:35:26:4f:8c:cd:
fb:2e:65:9c:96:43:f2:36:a5:8a:bb:bd:56:e6:cd:
19:dd:96:9b:a9:b1:73:db:7d:8a:20:7b:10:eb:f4:
94:ed:0a:70:f8:16:47:46:f2:13:4f:7d:30:27:df:
b3:2b:12:cd:c3:f4:31:b4:29:79:e5:3e:fc:43:97:
e4:15:68:2b:7f:45:ad:14:dd:57:23:7f:07:07:c8:
b7:a8:27:e1:c4:81:60:0d:76:67:21:02:27:17:b8:
18:54:03:c0:47:26:66:8e:0a:17:dd:14:24:6d:58:
d3:be:da:84:6d:65:11:08:21:1e:ed:5b:d3:63:ea:
04:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:A5:E2:41:7D:10:E5:9F:41:8B:48:3E:49:6A:DA:73:2F:FC:3A:9E
X509v3 Authority Key Identifier:
keyid:8C:7F:D3:DB:DC:3A:9B:95:31:E6:86:B5:B0:76:45:C3:28:B1:B5:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jH_T29w6m5Ux5oa1sHZFwyixtRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/NqXiQX0Q5Z9Bi0g-SWracy_8Op4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/jH_T29w6m5Ux5oa1sHZFwyixtRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.190.0/24
Signature Algorithm: sha256WithRSAEncryption
28:44:97:19:e5:23:1b:85:d2:1e:0f:2c:79:59:78:d7:76:fc:
f7:64:7f:38:a3:97:43:a7:94:9c:20:7f:46:ba:bf:5a:6f:f2:
fc:61:4a:a4:bf:89:02:29:d8:cd:d6:c4:99:c0:3f:18:8f:d2:
aa:b1:3c:68:3a:cd:3b:fc:7c:58:8c:ca:16:39:3f:95:99:55:
06:5d:6b:66:e3:e8:4d:4f:d2:d3:ec:61:47:24:dd:41:c5:f8:
4f:2d:5e:3a:1d:94:54:af:15:a4:9d:f5:1d:30:ab:2c:d2:9e:
5e:51:fb:c4:5d:21:b7:b8:17:d9:41:12:18:62:23:f9:ea:34:
d1:1d:86:b7:00:d7:0f:96:3b:24:6e:1b:53:46:d6:ff:59:9d:
c6:23:ff:57:39:bd:0b:b1:b8:a0:7c:44:64:28:9f:02:32:54:
ee:12:2e:7d:19:bc:0b:34:f9:4a:6f:50:00:f3:38:95:6d:7b:
d9:49:9c:1f:63:fe:a2:e1:05:7d:d5:5d:73:a1:30:e3:6b:b6:
77:a8:08:0f:d9:e6:7c:4f:c0:df:b1:53:c3:f5:4f:93:ff:fc:
82:17:7d:6d:8f:57:71:15:9c:e9:46:7a:f0:e1:1b:78:d1:13:
c3:e2:18:b5:de:5e:85:8d:d9:d1:78:ba:33:c3:fa:97:90:bb:
d1:0f:38:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:43 2023 by rpki-client on console.sobornost.net