Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/qtTDLbGBfLudD42xfvGQGGPxnGw.roa
File: qtTDLbGBfLudD42xfvGQGGPxnGw.roa (raw, json)
Hash identifier: uMWDn442nsa+CsSasl8h2RNkywPwlft7/8i2mkJIs7E=
Subject key identifier: AA:D4:C3:2D:B1:81:7C:BB:9D:0F:8D:B1:7E:F1:90:18:63:F1:9C:6C
Certificate issuer: /CN=8c7fd3dbdc3a9b9531e686b5b07645c328b1b51a
Certificate serial: 01852F5F3271D61BCC0087E6B113CA1D748E
Authority key identifier: 8C:7F:D3:DB:DC:3A:9B:95:31:E6:86:B5:B0:76:45:C3:28:B1:B5:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jH_T29w6m5Ux5oa1sHZFwyixtRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/qtTDLbGBfLudD42xfvGQGGPxnGw.roa
Signing time: Tue 20 Dec 2022 11:50:46 +0000
ROA not before: Tue 20 Dec 2022 11:50:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 185.104.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:5f:32:71:d6:1b:cc:00:87:e6:b1:13:ca:1d:74:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c7fd3dbdc3a9b9531e686b5b07645c328b1b51a
Validity
Not Before: Dec 20 11:50:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aad4c32db1817cbb9d0f8db17ef1901863f19c6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:56:2f:5e:50:a3:cc:c1:c8:cd:44:20:92:3f:
b8:10:7a:ff:d8:06:14:e5:9b:bd:23:bd:50:ed:b1:
55:00:72:df:55:ce:19:6d:6f:80:a1:7d:01:71:3b:
c0:75:b4:20:a2:22:d5:e7:70:f7:57:ac:30:cd:6b:
77:c0:56:96:c3:97:35:95:8a:98:f3:ef:eb:7f:29:
55:62:01:93:31:e6:3a:09:41:ac:89:b0:7e:cf:c3:
ab:aa:5b:0d:5a:24:56:0b:f9:0b:73:c5:17:2c:aa:
2d:0c:70:0d:04:91:a0:35:37:ab:10:76:f9:4e:ba:
91:39:b7:43:78:68:89:bd:ac:33:6d:4a:1f:2a:b5:
aa:96:a1:6e:e2:4e:a4:73:9a:8d:f6:4e:c2:39:d6:
b1:2c:72:c7:6e:15:a8:88:40:95:e7:c0:95:03:24:
30:f8:3b:bb:c7:cf:5b:19:74:df:eb:36:88:73:58:
6a:3d:5b:54:10:58:c1:20:a6:4a:b7:49:ac:12:42:
69:87:6b:ed:52:72:6d:89:c7:37:54:db:82:2d:a5:
81:08:f7:fc:a6:c3:01:99:8f:08:d2:67:bf:fb:3d:
98:23:9b:72:e8:fd:9e:46:5a:44:f9:2f:38:9f:87:
ae:82:a7:a1:8b:6e:fe:d1:91:5d:7f:70:bb:02:f9:
5d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D4:C3:2D:B1:81:7C:BB:9D:0F:8D:B1:7E:F1:90:18:63:F1:9C:6C
X509v3 Authority Key Identifier:
keyid:8C:7F:D3:DB:DC:3A:9B:95:31:E6:86:B5:B0:76:45:C3:28:B1:B5:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jH_T29w6m5Ux5oa1sHZFwyixtRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/qtTDLbGBfLudD42xfvGQGGPxnGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/56be95-4047-46b5-b098-29e53b3136e6/1/jH_T29w6m5Ux5oa1sHZFwyixtRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.190.0/24
Signature Algorithm: sha256WithRSAEncryption
58:14:17:e2:ea:37:30:e2:ea:32:3d:67:bc:09:65:9e:f6:d1:
b4:6c:c4:c7:76:cb:7d:ec:33:ac:e1:e5:3d:ef:cc:6e:64:5c:
2e:8c:7d:34:09:7e:0f:72:4d:55:87:82:5c:5f:9e:a6:eb:9f:
0f:1a:11:71:84:91:7d:0c:ca:16:34:d8:9f:d6:53:45:df:8f:
9a:6c:d5:f8:3d:2b:76:e9:58:9d:d3:9a:65:e5:53:d7:0b:63:
63:66:6a:67:19:09:13:28:46:05:8a:c7:b9:2b:5d:e0:51:1f:
a9:14:03:34:b3:16:00:d0:54:cb:7c:f1:9e:cd:9e:09:ab:ed:
7e:55:6e:e4:70:4f:6d:dc:ec:da:91:d7:68:cb:e9:5a:51:2e:
ea:d0:7b:38:57:85:b9:44:f1:d3:1d:29:59:84:8b:48:9f:35:
c2:1b:52:2d:e0:f0:b4:64:1d:3d:4d:83:0d:c7:f3:9d:e5:8f:
6c:01:94:fe:51:b1:4b:8e:b1:90:7b:2a:cd:d9:61:f1:9a:b1:
00:18:8d:ac:e3:db:01:9c:4c:2a:90:d2:5d:c8:ac:db:38:22:
50:02:61:b0:65:6c:63:b7:82:c0:08:86:17:ba:dc:79:ba:5e:
f0:f2:21:69:da:9e:54:d7:de:7e:c3:83:0c:1b:99:b1:fa:1b:
db:af:64:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:43 2023 by rpki-client on console.sobornost.net