Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/QIM7uWsGeZEySfMpq3OuCFFgdHw.roa
File: QIM7uWsGeZEySfMpq3OuCFFgdHw.roa (raw, json)
Hash identifier: ppFq2pWcRVL4KmA5A+k2Jld0NASvqo7vEl4yF8oigzg=
Subject key identifier: 40:83:3B:B9:6B:06:79:91:32:49:F3:29:AB:73:AE:08:51:60:74:7C
Certificate issuer: /CN=83a062525292a29e97fe6a055b9bd6084a771977
Certificate serial: 0A6A4651
Authority key identifier: 83:A0:62:52:52:92:A2:9E:97:FE:6A:05:5B:9B:D6:08:4A:77:19:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g6BiUlKSop6X_moFW5vWCEp3GXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/QIM7uWsGeZEySfMpq3OuCFFgdHw.roa
Signing time: Sat 01 Jan 2022 04:53:17 +0000
ROA not before: Sat 01 Jan 2022 04:53:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 185.54.172.0/22 maxlen: 22
2a02:4620::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174736977 (0xa6a4651)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83a062525292a29e97fe6a055b9bd6084a771977
Validity
Not Before: Jan 1 04:53:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40833bb96b0679913249f329ab73ae085160747c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c2:a4:be:c3:f2:47:f8:01:3e:4b:a1:69:35:
76:e2:b0:8c:34:f4:c4:62:8b:f8:cd:11:c5:e2:5c:
96:05:ec:92:75:46:2e:65:a3:27:08:ee:84:85:10:
e1:ff:5d:b0:26:bf:b3:10:41:3b:86:9a:32:2c:27:
eb:3e:27:c3:92:dd:1b:04:c7:d3:7a:c3:55:a2:d0:
f7:8e:b8:87:d3:08:83:7d:fa:be:f2:7d:f2:70:1d:
cc:b3:a6:42:c0:9e:b2:7b:2c:c4:d4:a4:f0:36:6c:
ac:d5:99:ab:17:dd:15:15:a1:f1:ef:b9:f3:34:41:
0e:5b:d3:7d:2b:fe:03:cd:7f:b7:83:29:0a:67:5d:
22:ec:f5:53:7a:20:3b:1d:cb:85:80:c2:13:b1:de:
c3:a5:78:24:9a:c3:e5:3b:34:03:75:31:f5:1a:eb:
bc:53:5d:93:1e:66:0f:86:80:ef:7b:52:42:25:07:
c6:f2:c7:5e:16:7d:f7:23:db:ba:36:c0:0c:58:2a:
6d:f0:4e:72:ea:1f:a3:26:c9:60:1c:5b:2d:5f:6f:
4f:99:e5:87:6d:03:92:df:cf:8f:65:77:c7:1e:f7:
d2:29:ab:65:7c:49:2f:01:f1:c3:63:48:fe:13:02:
e5:92:20:e0:10:bb:b2:b4:44:dc:45:e6:ae:ff:5c:
ed:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:83:3B:B9:6B:06:79:91:32:49:F3:29:AB:73:AE:08:51:60:74:7C
X509v3 Authority Key Identifier:
keyid:83:A0:62:52:52:92:A2:9E:97:FE:6A:05:5B:9B:D6:08:4A:77:19:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g6BiUlKSop6X_moFW5vWCEp3GXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/QIM7uWsGeZEySfMpq3OuCFFgdHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/958a2c-cef0-4bcc-99c2-321c9d66c847/1/g6BiUlKSop6X_moFW5vWCEp3GXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.172.0/22
IPv6:
2a02:4620::/32
Signature Algorithm: sha256WithRSAEncryption
b8:7d:02:1f:09:ca:8f:e7:0f:a7:dc:e6:2c:9a:90:a5:44:ec:
7b:5b:b3:26:fe:22:47:27:76:ae:67:71:37:75:07:7f:6e:3b:
83:63:88:4b:06:5b:f4:cc:f0:f6:e0:fd:28:1e:a4:16:e1:58:
c1:69:3f:59:f5:fb:f3:a0:bb:0b:cb:ed:a6:f7:35:43:b0:66:
a3:7c:a6:0e:85:a4:d3:74:19:43:f8:a5:b3:64:cc:e1:d5:43:
ff:26:fe:c0:2d:44:30:7a:33:ce:74:a8:39:ac:d7:40:34:f7:
9f:4b:52:e9:8e:68:65:cb:f1:20:29:1a:ea:f0:64:0a:4a:be:
bf:b7:37:9a:3b:84:ee:20:98:3b:e0:bd:21:a5:c7:83:ba:e8:
41:5f:29:31:be:ea:81:00:5c:7a:91:25:26:1a:df:3c:41:6a:
ea:4a:ce:87:90:71:dc:6a:6e:53:e4:85:99:fa:25:c1:55:33:
f3:10:34:db:2d:42:10:50:aa:44:89:d4:ef:65:c6:6b:68:68:
56:01:59:cc:50:1d:59:7a:c1:42:33:0c:56:c9:dd:7e:49:c7:
91:ad:68:f9:24:75:a6:74:30:02:14:33:3a:ed:86:4e:31:72:
55:c3:52:7a:27:cd:14:1f:b0:8c:2a:ff:53:30:6b:66:62:2a:
12:6d:f0:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:01 2023 by rpki-client on console.sobornost.net