Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/QLh-j9A2C3Rn8ehXKBZCbBKUtzs.roa
File: QLh-j9A2C3Rn8ehXKBZCbBKUtzs.roa (raw, json)
Hash identifier: Ak9mwXs0btlEVAhSVCBHeTt28ynY7RFCBH6PulpU+to=
Subject key identifier: 40:B8:7E:8F:D0:36:0B:74:67:F1:E8:57:28:16:42:6C:12:94:B7:3B
Certificate issuer: /CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Certificate serial: 1022AF
Authority key identifier: 74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/QLh-j9A2C3Rn8ehXKBZCbBKUtzs.roa
Signing time: Mon 23 May 2022 09:26:29 +0000
ROA not before: Mon 23 May 2022 09:26:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 31.169.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1057455 (0x1022af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e133ea1e40fc13e074e327710a5344a960b5c0
Validity
Not Before: May 23 09:26:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40b87e8fd0360b7467f1e8572816426c1294b73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b8:e6:53:cc:a2:0e:ce:25:da:5a:2e:f6:74:
05:8c:40:1d:1f:e9:25:d1:6a:b7:88:8d:17:06:41:
98:16:62:3d:4b:e0:9b:e0:af:39:f5:8e:c6:6e:ad:
c8:39:74:68:e1:b2:93:43:5b:e8:b0:70:3c:3f:8d:
49:04:8e:02:64:f1:33:3c:db:e3:4d:1e:55:96:06:
40:db:34:4f:13:5b:fd:d3:bc:66:a2:23:66:36:b2:
7d:d7:57:fb:08:e0:a4:11:b6:47:94:af:e8:7b:b3:
f3:88:cf:7a:15:13:df:c7:32:0e:74:9c:32:dd:e9:
83:01:a7:f5:4b:44:68:e9:01:ee:3f:f4:cb:e7:08:
f1:6f:f6:8f:f5:92:ba:d5:9a:04:58:8a:cf:e8:02:
17:62:8a:9c:8c:38:04:f4:91:c3:92:9d:6f:be:f0:
20:78:01:5e:35:d5:4e:15:29:ea:6e:8f:19:17:bf:
c8:c7:00:53:42:d4:7e:5c:8f:c3:2d:f9:e9:b8:79:
21:b4:cb:68:a1:2c:09:2c:4d:ed:23:3b:64:f9:14:
66:86:f0:80:21:3d:9d:38:59:9d:1f:f4:59:ce:75:
6e:b3:d3:af:a8:a5:a0:98:d1:32:3d:89:d3:37:0d:
0c:18:5d:d1:ec:a4:63:4e:d1:ba:04:a4:b9:d9:05:
13:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B8:7E:8F:D0:36:0B:74:67:F1:E8:57:28:16:42:6C:12:94:B7:3B
X509v3 Authority Key Identifier:
keyid:74:E1:33:EA:1E:40:FC:13:E0:74:E3:27:71:0A:53:44:A9:60:B5:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOEz6h5A_BPgdOMncQpTRKlgtcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/QLh-j9A2C3Rn8ehXKBZCbBKUtzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1f5587-cb92-4917-8cf3-2cb9e2172f97/1/dOEz6h5A_BPgdOMncQpTRKlgtcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.68.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:36:28:19:8e:20:92:77:2f:f0:1d:fa:15:b1:4b:c6:44:06:
9b:2c:e5:60:d3:d3:78:28:d4:e5:ce:20:9c:a7:ad:d3:3e:b5:
c8:05:f7:03:2f:d5:a3:b6:ad:8e:b2:3d:61:a1:53:56:ab:59:
b7:b3:6d:79:f8:64:00:64:3c:99:40:10:66:7c:7e:25:3b:d9:
32:72:c0:26:e6:97:c8:03:84:47:ef:4d:df:16:89:2c:06:12:
b2:ef:26:fe:1c:9b:f8:f6:dc:25:6f:fc:06:46:b1:2e:cb:fc:
56:03:ff:7d:c5:f9:b8:af:2f:5e:81:06:e2:b1:e3:cf:7d:12:
f8:c4:d8:20:e0:f6:78:74:65:5f:ad:b4:67:98:23:e7:51:2a:
b5:f4:79:1a:55:68:1e:1d:b7:9b:61:dd:55:8d:ba:31:7f:b2:
2d:dd:f1:70:dc:39:31:e0:ad:5d:bd:f5:62:c0:39:e4:bd:cb:
ee:41:27:b6:af:34:f4:d7:9c:62:3f:35:f6:7a:87:12:ce:f9:
99:f9:36:d6:3c:df:d3:32:be:3b:46:b6:ca:cd:2f:b7:74:be:
e9:c0:30:45:c7:21:7a:2e:52:c4:9f:ab:8f:58:22:50:14:18:
2f:1b:59:8b:41:cd:bd:1d:e7:f1:42:94:13:0f:b1:9d:13:ed:
b8:51:49:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:36 2024 by rpki-client on console-ams.rpki-client.org