Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/Q9YGJt-OnuAZDO9IzmUAeQGb9cw.roa
File: Q9YGJt-OnuAZDO9IzmUAeQGb9cw.roa (raw, json)
Hash identifier: t3LUQWYnyJw4fbPJbO6dsYiwwDfD7/DNYrT/Fu4AN0E=
Subject key identifier: 43:D6:06:26:DF:8E:9E:E0:19:0C:EF:48:CE:65:00:79:01:9B:F5:CC
Certificate issuer: /CN=6167999645e15b65268a0d93bb14c4f51724451b
Certificate serial: 09AAED24
Authority key identifier: 61:67:99:96:45:E1:5B:65:26:8A:0D:93:BB:14:C4:F5:17:24:45:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWeZlkXhW2Umig2TuxTE9RckRRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/Q9YGJt-OnuAZDO9IzmUAeQGb9cw.roa
Signing time: Wed 15 Jun 2022 10:17:55 +0000
ROA not before: Wed 15 Jun 2022 10:17:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6750
IP address blocks: 194.145.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162196772 (0x9aaed24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6167999645e15b65268a0d93bb14c4f51724451b
Validity
Not Before: Jun 15 10:17:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43d60626df8e9ee0190cef48ce650079019bf5cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e1:be:7d:18:f2:8a:0a:00:78:da:e0:65:1b:
d3:09:3d:90:3a:b6:8f:5e:03:d3:9b:4e:67:d8:f3:
78:27:61:d0:d2:ec:21:57:14:e4:13:a1:c9:bf:41:
b5:42:36:b5:0e:c2:0f:73:2c:a9:c2:bd:fd:eb:fa:
91:38:fa:ba:59:f2:44:38:60:98:e2:19:fa:e3:3c:
b3:38:5d:92:07:db:18:e1:53:8d:c7:1f:4d:de:fe:
cb:50:ec:03:c3:2e:72:cc:60:e9:d5:4e:de:0b:19:
fb:cb:12:89:c2:9a:10:4a:06:31:db:19:db:70:95:
e6:c4:15:56:9d:03:b4:8d:18:e9:ce:41:1a:24:3f:
d7:ce:d4:c8:74:81:fc:9c:35:02:fd:99:94:bb:d4:
24:f9:f4:1c:3d:07:88:c4:a6:9f:67:76:fc:ae:15:
2d:da:f0:8c:89:76:f0:e8:48:19:df:4f:02:bb:10:
d5:d0:0d:8c:1a:c6:93:38:36:f2:0e:65:4f:f4:26:
f6:52:4b:b6:80:27:83:53:dd:8b:8f:ad:cd:11:5c:
97:ba:f3:f2:80:1c:c1:eb:ff:a1:e2:91:a6:74:4d:
96:2b:7f:3d:58:47:9f:89:a4:f5:fe:12:b7:6b:5d:
8b:fa:8c:1a:e7:e3:61:59:56:cc:69:d4:e9:4d:f5:
2d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D6:06:26:DF:8E:9E:E0:19:0C:EF:48:CE:65:00:79:01:9B:F5:CC
X509v3 Authority Key Identifier:
keyid:61:67:99:96:45:E1:5B:65:26:8A:0D:93:BB:14:C4:F5:17:24:45:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWeZlkXhW2Umig2TuxTE9RckRRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/Q9YGJt-OnuAZDO9IzmUAeQGb9cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d31a25-2507-471d-adc7-8807f95ae75d/1/YWeZlkXhW2Umig2TuxTE9RckRRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.140.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:91:90:de:e1:63:57:b7:ae:4a:ac:ff:16:47:67:3a:59:8e:
8f:96:38:e0:96:4a:e5:89:0c:a9:3c:f9:31:27:68:bf:a2:09:
e2:44:67:a1:d5:8b:fa:f0:ed:54:52:90:cd:9d:8b:86:0e:f1:
34:4c:56:10:57:41:cc:a5:eb:0a:50:9c:a7:c1:86:f6:23:79:
76:3e:44:f3:11:86:b8:df:de:81:83:af:90:12:55:ff:d0:b5:
f6:7d:15:46:4b:95:8c:1c:9b:58:5d:78:5b:c1:9d:11:b3:ff:
79:be:b6:e1:a6:ec:0d:35:5d:b8:cc:d8:ad:dc:10:ac:db:90:
36:42:2a:6a:8f:65:3d:89:2c:6c:03:d5:7c:4a:7c:4e:40:e7:
66:c3:0b:5d:f9:c2:72:90:9c:43:66:8a:8e:44:54:fc:14:4d:
cf:99:98:b9:88:71:fc:5b:2a:3e:c2:eb:82:c9:c5:02:6c:9d:
52:59:9c:01:79:20:52:05:d2:ad:43:63:22:0f:05:fd:d8:dd:
49:7c:05:86:db:38:86:9f:46:89:02:60:b8:7d:89:0b:cb:0a:
f1:35:53:a8:52:24:14:32:9d:f4:57:14:c5:d0:20:03:8a:f0:
02:3b:a6:70:73:6f:96:ef:05:f3:c9:08:ef:fc:18:77:86:47:
e2:53:98:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:10 2024 by rpki-client on console-fra.rpki-client.org