Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/dbf8be-68a2-4b3d-97db-82e2d5ee9c90/1/QV0F8xfnKtGO35IPdxIb5jw3p0k.roa
File: QV0F8xfnKtGO35IPdxIb5jw3p0k.roa (raw, json)
Hash identifier: GH9N8XPdmm6/ZsnoHitj/mpmH67O1bal0ar5vtzEY34=
Subject key identifier: 41:5D:05:F3:17:E7:2A:D1:8E:DF:92:0F:77:12:1B:E6:3C:37:A7:49
Certificate issuer: /CN=ea51769ce8672c56d1652bf90a5aefca819b488a
Certificate serial: 0CDB88C6
Authority key identifier: EA:51:76:9C:E8:67:2C:56:D1:65:2B:F9:0A:5A:EF:CA:81:9B:48:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6lF2nOhnLFbRZSv5ClrvyoGbSIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/dbf8be-68a2-4b3d-97db-82e2d5ee9c90/1/QV0F8xfnKtGO35IPdxIb5jw3p0k.roa
Signing time: Sat 01 Jan 2022 11:03:17 +0000
ROA not before: Sat 01 Jan 2022 11:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206121
IP address blocks: 185.177.100.0/22 maxlen: 22
185.177.100.0/23 maxlen: 23
185.177.102.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215713990 (0xcdb88c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea51769ce8672c56d1652bf90a5aefca819b488a
Validity
Not Before: Jan 1 11:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=415d05f317e72ad18edf920f77121be63c37a749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:71:85:92:0b:da:02:d6:a7:33:93:6c:d7:69:
ee:b0:5c:6e:b8:c5:39:73:0d:d6:52:13:89:65:43:
5b:24:8d:ed:f2:5b:d4:59:cf:e0:d5:13:18:4e:a6:
29:48:cb:8a:df:aa:34:95:07:47:17:79:95:2f:8a:
14:fc:20:82:ad:aa:f0:74:08:16:fd:bd:1d:15:27:
85:67:0c:2d:9b:c2:23:8f:d4:09:d0:0d:d2:b6:11:
a1:52:c9:bd:58:69:8e:3e:53:4e:75:68:aa:12:53:
c7:9d:02:da:97:03:13:1d:c8:0a:3b:27:7e:cc:30:
1e:d5:a6:7b:0d:78:ac:52:b9:05:8a:bd:bc:31:cd:
48:80:a0:08:78:0b:a5:07:3a:f0:7f:ac:b8:a8:1b:
28:89:5c:7d:85:d1:c3:ae:70:86:44:2e:5e:39:75:
0a:d0:f1:37:0e:c3:60:7a:90:3f:59:d9:25:f2:bd:
8d:75:37:96:8d:b0:2f:f6:97:35:09:d5:70:73:48:
0d:6f:8b:59:6c:39:61:86:ed:1f:b1:6b:ee:84:60:
02:d6:bc:0d:71:09:47:ed:5f:b8:14:0b:9f:51:f4:
dc:a4:a0:06:c9:c2:9f:da:91:fb:ee:d0:59:e7:33:
02:af:7f:f9:94:3b:e2:ad:cd:62:26:51:0d:00:2a:
50:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:5D:05:F3:17:E7:2A:D1:8E:DF:92:0F:77:12:1B:E6:3C:37:A7:49
X509v3 Authority Key Identifier:
keyid:EA:51:76:9C:E8:67:2C:56:D1:65:2B:F9:0A:5A:EF:CA:81:9B:48:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6lF2nOhnLFbRZSv5ClrvyoGbSIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/dbf8be-68a2-4b3d-97db-82e2d5ee9c90/1/QV0F8xfnKtGO35IPdxIb5jw3p0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/dbf8be-68a2-4b3d-97db-82e2d5ee9c90/1/6lF2nOhnLFbRZSv5ClrvyoGbSIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.177.100.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:db:54:d4:5f:df:29:0f:07:a4:ff:cb:35:56:e6:2b:4b:61:
b4:e4:58:ee:fe:32:b3:13:c2:2e:f5:2d:f5:c7:72:55:b6:39:
08:c7:18:d8:5b:d4:0d:61:26:ab:1b:0d:af:72:99:71:da:c9:
8c:7d:31:3d:4b:97:87:3f:62:73:01:9a:7c:10:8d:2f:e8:e2:
20:69:79:80:05:23:9d:aa:38:95:19:1a:33:f8:ae:84:c9:63:
8d:1d:18:ab:1a:c0:e4:90:31:35:24:d3:37:57:59:7b:1c:25:
01:c5:d4:49:e2:55:6b:13:ea:e1:54:20:8b:86:7d:1f:07:bd:
6e:1d:84:c2:ec:b5:11:7e:51:17:53:79:aa:d0:ba:ae:8b:65:
91:bb:fd:b9:e0:42:24:08:98:26:1a:69:26:25:39:60:28:6e:
c4:37:7d:a9:4a:1f:6d:72:3d:75:70:c8:36:5d:ba:ea:7f:25:
6c:fd:22:2d:1b:fd:ea:c0:1e:5e:ce:df:f8:75:ec:95:67:53:
04:e3:e4:35:60:58:0e:d2:75:3f:60:1e:d5:6c:0b:dc:d7:a6:
9d:58:f0:2f:8c:06:d8:93:14:ac:08:99:65:5a:b9:af:fe:ed:
52:c9:aa:4c:4e:d5:af:72:fb:62:b9:e7:7d:76:63:b4:31:f2:
ab:95:16:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net