Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7dc391-6bb9-4fff-92ee-a616f02772e6/1/qNMRXK1GTK3lnMJU9nPDfWf5aRE.roa
File: qNMRXK1GTK3lnMJU9nPDfWf5aRE.roa (raw, json)
Hash identifier: ne4zOfFU/998ygl2WcB3ZOjOJLl8kcVPVMvmUgeOG/E=
Subject key identifier: A8:D3:11:5C:AD:46:4C:AD:E5:9C:C2:54:F6:73:C3:7D:67:F9:69:11
Certificate issuer: /CN=26e94ce0b4954108b15c4f295938f8c1af0727c4
Certificate serial: 0184D44B35C8D83AD1BE38B00988ECC5E7A6
Authority key identifier: 26:E9:4C:E0:B4:95:41:08:B1:5C:4F:29:59:38:F8:C1:AF:07:27:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JulM4LSVQQixXE8pWTj4wa8HJ8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7dc391-6bb9-4fff-92ee-a616f02772e6/1/qNMRXK1GTK3lnMJU9nPDfWf5aRE.roa
Signing time: Fri 02 Dec 2022 19:23:29 +0000
ROA not before: Fri 02 Dec 2022 19:23:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203821
IP address blocks: 217.28.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d4:4b:35:c8:d8:3a:d1:be:38:b0:09:88:ec:c5:e7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26e94ce0b4954108b15c4f295938f8c1af0727c4
Validity
Not Before: Dec 2 19:23:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8d3115cad464cade59cc254f673c37d67f96911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d9:8b:9f:c2:86:ea:a9:bd:b6:1b:41:84:63:
e1:13:d6:f4:41:e4:ff:a4:cd:04:0e:72:82:c8:81:
ac:ad:fc:65:f5:a8:16:1a:0d:2b:8e:12:f5:94:13:
04:ba:49:af:04:c3:4f:89:a2:e5:74:2b:f2:d5:d9:
de:65:1f:d5:ed:f9:29:64:58:0b:f1:a4:3a:c7:15:
f8:72:58:22:63:e2:e0:f6:be:87:6d:5d:b9:fb:cb:
b2:75:38:56:c1:ac:e1:ef:d2:1b:00:17:c1:3f:c7:
10:95:92:ca:52:e2:9c:47:de:66:49:c9:5f:88:d5:
53:5e:06:0d:cc:52:1d:16:46:34:c3:61:dc:4c:73:
8c:96:bd:1b:b9:20:05:f6:f5:dd:53:2c:6d:6a:9f:
3b:f2:43:fa:70:e9:8e:a4:3a:17:91:a0:f7:f8:19:
59:54:27:73:b9:af:18:7e:75:7a:05:3a:c4:ad:9a:
3a:22:51:54:97:54:0e:18:2b:49:b9:1d:56:4b:97:
67:3c:f2:72:35:99:16:82:e6:cd:3c:1e:9c:50:3b:
2c:bd:a9:e1:a2:f5:93:5c:7a:72:30:da:8a:01:aa:
3e:42:08:6e:62:c8:31:ae:47:37:87:7b:37:09:b9:
cf:8b:fa:7f:29:09:33:8c:8f:8e:7b:aa:86:e1:52:
88:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:D3:11:5C:AD:46:4C:AD:E5:9C:C2:54:F6:73:C3:7D:67:F9:69:11
X509v3 Authority Key Identifier:
keyid:26:E9:4C:E0:B4:95:41:08:B1:5C:4F:29:59:38:F8:C1:AF:07:27:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JulM4LSVQQixXE8pWTj4wa8HJ8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7dc391-6bb9-4fff-92ee-a616f02772e6/1/qNMRXK1GTK3lnMJU9nPDfWf5aRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7dc391-6bb9-4fff-92ee-a616f02772e6/1/JulM4LSVQQixXE8pWTj4wa8HJ8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.134.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:20:35:e7:36:ff:df:d0:31:78:ab:61:1e:f5:ef:07:23:76:
b7:21:c1:3d:ba:96:85:a6:5c:ac:72:a0:fc:77:bb:4d:47:30:
15:ef:90:ff:60:de:2d:61:4b:f2:e9:c4:c9:20:9b:73:78:c8:
ea:80:24:d2:47:71:7e:a4:48:ac:83:09:96:e3:92:39:7c:0b:
be:07:35:09:38:c8:01:84:e7:c5:20:14:c5:aa:f6:4a:cf:f8:
f1:8f:44:70:03:88:af:90:98:3e:32:5a:9b:4f:65:ca:33:18:
2b:f3:0f:4a:15:78:35:43:9b:89:7a:fa:22:ea:d1:45:42:8c:
9d:4c:ad:49:70:73:85:56:9e:fe:f3:36:d4:77:23:50:22:6f:
57:5b:16:42:22:fe:09:96:f5:3e:f7:11:2e:7d:53:8f:f9:5d:
a2:42:75:a4:40:9c:6b:e7:be:ce:10:eb:97:ad:f3:0c:c8:8d:
13:7f:f2:a2:83:d4:02:0f:82:7b:78:1b:73:ca:e8:0c:c0:9c:
c8:e5:52:af:0c:3b:01:f6:e4:6b:13:49:4c:40:b7:d9:74:ca:
63:8b:72:00:5d:56:76:ce:3d:1d:0a:19:63:cb:b3:0e:cf:01:
f4:f4:aa:3a:c9:30:62:6e:8d:98:48:47:44:48:3a:7a:db:cb:
cc:bc:32:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:42 2024 by rpki-client on console-ams.rpki-client.org