Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/QCdM3WkJizynp4eg0f_ii55IFV8.roa
File: QCdM3WkJizynp4eg0f_ii55IFV8.roa (raw, json)
Hash identifier: 4fK4g9EXn8LUMoaWpVZjbRag9h/PNV1hidg8H0PqdYM=
Subject key identifier: 40:27:4C:DD:69:09:8B:3C:A7:A7:87:A0:D1:FF:E2:8B:9E:48:15:5F
Certificate issuer: /CN=415a412127b514f6455ec8a86e29d38eb0abb5ac
Certificate serial: 236A2FE6
Authority key identifier: 41:5A:41:21:27:B5:14:F6:45:5E:C8:A8:6E:29:D3:8E:B0:AB:B5:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QVpBISe1FPZFXsiobinTjrCrtaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/QCdM3WkJizynp4eg0f_ii55IFV8.roa
Signing time: Sat 01 Jan 2022 06:05:15 +0000
ROA not before: Sat 01 Jan 2022 06:05:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29289
IP address blocks: 109.205.46.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 594161638 (0x236a2fe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=415a412127b514f6455ec8a86e29d38eb0abb5ac
Validity
Not Before: Jan 1 06:05:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40274cdd69098b3ca7a787a0d1ffe28b9e48155f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:20:c0:f9:65:f9:86:ce:e8:30:64:f0:db:5b:
d2:aa:31:68:d6:9c:a4:59:fd:53:ab:5f:5c:49:94:
f3:2b:2e:8f:7a:44:51:9d:5a:64:93:0b:98:0a:ad:
5b:55:82:37:b9:86:71:e7:c7:7a:d3:eb:8b:f6:27:
66:b9:d8:18:a6:3b:3e:1f:4d:1a:1e:7e:e5:d3:ad:
ae:66:d1:d0:c3:d9:50:72:5e:37:44:63:72:30:01:
76:56:d8:d8:eb:25:eb:dd:be:01:25:5d:32:2e:89:
cb:8a:1c:e8:38:32:1b:b7:5f:7b:ff:e1:15:6e:18:
5c:bb:96:35:7e:29:31:0c:17:93:c3:b6:4b:35:83:
04:1d:08:3a:5f:12:f9:40:d5:3f:03:eb:69:b3:8d:
0b:b9:7f:95:d6:27:8f:dd:9a:97:31:88:0b:f5:5f:
d8:60:60:7d:64:27:12:77:db:bc:20:dd:fb:49:5d:
52:72:ee:09:7a:97:a8:27:26:33:37:5e:22:c4:49:
26:12:51:8a:09:70:98:fa:05:ce:f1:4d:35:46:f3:
d9:1e:eb:ce:8e:00:5b:2c:ef:fa:88:78:f8:c2:39:
6d:52:15:8f:04:95:3a:3a:9a:b3:50:f6:f5:75:4b:
68:bf:1b:d5:4b:77:0a:61:a1:47:96:96:2c:5b:4b:
fc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:27:4C:DD:69:09:8B:3C:A7:A7:87:A0:D1:FF:E2:8B:9E:48:15:5F
X509v3 Authority Key Identifier:
keyid:41:5A:41:21:27:B5:14:F6:45:5E:C8:A8:6E:29:D3:8E:B0:AB:B5:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QVpBISe1FPZFXsiobinTjrCrtaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/QCdM3WkJizynp4eg0f_ii55IFV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b8c7ba-92fa-4b73-a924-3d33e5414d9b/1/QVpBISe1FPZFXsiobinTjrCrtaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.46.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:71:30:49:21:ac:3f:21:b2:fd:a1:2c:c1:6d:66:ac:7c:c0:
ce:af:80:f7:64:33:16:b3:46:7b:88:02:5a:6c:a3:2d:0e:9e:
d8:57:58:4e:e1:a3:b5:39:ae:7d:a3:bd:1c:2a:ec:8a:fc:2e:
3b:b0:1d:f6:4e:aa:08:e2:1e:f5:36:75:59:ae:c2:eb:eb:66:
cd:5c:04:7e:ef:47:ab:be:2e:fb:ce:d6:24:f9:8e:8b:2c:a0:
29:12:d7:7d:9b:a4:eb:55:f0:fd:40:b3:37:0b:3c:2c:23:16:
b9:fc:80:9d:62:1f:3c:73:7e:39:2d:b5:2f:fa:d2:48:97:e4:
54:0b:b5:97:07:84:52:07:13:26:f4:42:3e:05:39:01:40:a2:
43:59:6e:0b:27:ba:f4:4d:a3:18:89:46:d2:2c:7a:2f:0e:9e:
41:5e:7c:65:1f:b3:7b:69:ac:b4:12:75:b9:ac:3a:bb:76:ec:
e5:f5:82:d3:83:3a:1f:dd:4f:6e:4e:ec:67:10:4b:c1:e4:fc:
8b:f0:bd:4c:67:33:56:c2:5f:41:24:b8:20:66:a9:fe:d4:48:
ce:4f:52:5b:e2:af:eb:d1:08:4b:5d:61:5d:c6:4c:a5:92:86:
39:4d:86:1c:21:74:f3:cf:c6:05:86:76:6f:5d:a5:75:5b:54:
ac:ac:69:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:08 2024 by rpki-client on console-ams.rpki-client.org