Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/Q2C1jXkPPYO5oIRZ1PkpZOvUb5o.roa
File: Q2C1jXkPPYO5oIRZ1PkpZOvUb5o.roa (raw, json)
Hash identifier: kI7aimxQM0eBC3u1U6OfrJKFTe2aTknQIDrRLJBEfeg=
Subject key identifier: 43:60:B5:8D:79:0F:3D:83:B9:A0:84:59:D4:F9:29:64:EB:D4:6F:9A
Certificate issuer: /CN=6167999645e15b65268a0d93bb14c4f51724451b
Certificate serial: 083ED33B
Authority key identifier: 61:67:99:96:45:E1:5B:65:26:8A:0D:93:BB:14:C4:F5:17:24:45:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWeZlkXhW2Umig2TuxTE9RckRRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/Q2C1jXkPPYO5oIRZ1PkpZOvUb5o.roa
Signing time: Sat 01 Jan 2022 15:55:32 +0000
ROA not before: Sat 01 Jan 2022 15:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6750
IP address blocks: 194.145.140.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138335035 (0x83ed33b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6167999645e15b65268a0d93bb14c4f51724451b
Validity
Not Before: Jan 1 15:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4360b58d790f3d83b9a08459d4f92964ebd46f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7c:6d:52:74:10:e6:8d:6b:0b:eb:3b:ad:18:
6d:f7:e4:f6:65:ea:64:a8:7c:d9:a9:97:aa:ab:b9:
4f:1f:82:37:d1:b9:76:34:91:41:f0:45:ef:67:0d:
e9:34:dc:16:99:27:04:65:8c:e1:62:76:52:a0:1a:
77:4d:e0:12:47:ff:eb:0f:61:f3:56:98:5b:9f:95:
14:4e:9f:0d:bc:f7:04:0d:4c:f3:6c:71:e0:30:d4:
2c:f9:68:08:e5:de:5d:96:8f:df:2c:c7:13:0b:bc:
33:c1:d3:83:23:6f:11:07:e3:23:69:cd:fe:77:1e:
29:8a:fa:cb:02:43:aa:4a:35:ef:fc:2b:32:05:b1:
2b:a0:cf:40:82:89:00:c1:9a:b9:42:c3:1a:d7:9d:
e9:e9:93:8b:90:11:86:da:2a:cd:f8:95:6d:75:97:
be:5e:6d:9c:19:23:8f:db:cd:a5:a6:16:57:40:ce:
47:99:ad:c8:07:30:05:aa:46:06:a0:fc:4b:09:e5:
c2:00:c3:21:f6:60:0a:39:ab:44:a7:ed:2b:6d:6a:
22:ec:2f:64:5f:4b:06:47:e4:5c:04:71:99:82:75:
e5:92:72:4a:7d:4d:e2:a1:7a:06:af:3a:74:2e:7b:
ff:76:fa:f8:2c:7e:4f:67:d8:91:8b:e3:37:df:53:
59:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:60:B5:8D:79:0F:3D:83:B9:A0:84:59:D4:F9:29:64:EB:D4:6F:9A
X509v3 Authority Key Identifier:
keyid:61:67:99:96:45:E1:5B:65:26:8A:0D:93:BB:14:C4:F5:17:24:45:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWeZlkXhW2Umig2TuxTE9RckRRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/Q2C1jXkPPYO5oIRZ1PkpZOvUb5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/YWeZlkXhW2Umig2TuxTE9RckRRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.140.0/23
Signature Algorithm: sha256WithRSAEncryption
35:56:37:83:d5:68:3e:fc:ee:a8:4c:2f:5a:67:73:04:9f:48:
de:af:fc:6b:ae:e3:c5:26:bd:40:b4:e5:09:89:cb:73:ba:ce:
33:9d:67:f7:b7:93:37:c5:1c:6b:cd:10:b4:e2:b9:4a:34:45:
02:ab:7f:cf:12:79:42:fc:7f:49:1b:71:76:f4:28:00:75:77:
2a:30:c6:1a:80:66:b7:ce:49:74:18:2b:a9:42:59:b9:90:2b:
70:72:e7:cc:a4:3e:a9:79:a8:51:1d:d1:ec:8b:7f:ff:e9:6b:
0e:13:b9:53:ad:97:37:7e:be:70:ac:c0:1a:b1:fe:31:fc:0d:
42:68:a8:94:ef:41:3c:2a:dd:33:2d:89:11:8c:d6:c2:55:c7:
2e:fb:96:22:88:81:10:d9:b7:05:2b:74:b9:a6:2d:dd:51:7b:
41:a0:12:1e:59:7d:90:ec:c9:c5:43:58:78:d6:8d:9a:10:ed:
b4:19:60:9a:1f:cb:14:40:44:8e:62:9c:2b:9a:7c:cf:eb:22:
c1:11:a7:6c:89:4d:fa:a2:20:9b:ec:01:13:78:e5:55:6a:2a:
4c:9a:25:a1:57:23:1d:02:5e:a1:c7:00:6e:91:8f:c6:84:20:
04:75:f9:29:a4:cb:7e:e6:26:ff:66:6b:6f:c3:50:3e:d9:b2:
bf:34:06:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:10 2024 by rpki-client on console-fra.rpki-client.org