Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/QYweLUNMVippaXfqgacNq7jq8G4.roa
File: QYweLUNMVippaXfqgacNq7jq8G4.roa (raw, json)
Hash identifier: OPTtaWfn8+mdwp/5MeSnFQRETp1O71PuYpUNxMZvJcY=
Subject key identifier: 41:8C:1E:2D:43:4C:56:2A:69:69:77:EA:81:A7:0D:AB:B8:EA:F0:6E
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 33180E0F
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/QYweLUNMVippaXfqgacNq7jq8G4.roa
Signing time: Thu 06 Jan 2022 14:45:29 +0000
ROA not before: Thu 06 Jan 2022 14:45:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210353
IP address blocks: 195.114.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 857214479 (0x33180e0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Jan 6 14:45:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=418c1e2d434c562a696977ea81a70dabb8eaf06e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c7:f5:63:f7:c4:c7:93:a8:60:66:18:d1:78:
24:03:2c:4a:f0:9d:ec:ca:a8:5f:fe:31:38:9a:a4:
c6:8e:00:3a:4a:cb:79:1c:e6:03:94:83:ec:46:c2:
a6:9d:c3:37:10:65:da:78:07:7b:fc:eb:a9:8b:f5:
6b:88:8f:4b:6e:13:99:c9:bd:d0:4d:9b:6b:b4:2a:
46:0e:b3:44:7d:1d:69:38:d8:a1:cb:f6:30:33:93:
83:0b:c5:da:e3:7c:5f:6f:54:6e:9f:a7:12:56:7d:
b1:0b:00:77:4e:26:f0:6d:b1:4b:82:27:9d:68:e0:
00:a2:c7:24:58:26:70:c7:1b:17:8f:c6:3c:b6:67:
2d:77:01:2b:7f:3a:13:26:13:f6:d4:4d:35:49:c2:
90:29:f2:16:e3:ca:0b:d9:1c:d2:1a:70:ca:65:9a:
f3:a6:05:37:75:76:86:cf:d0:c9:6d:62:53:85:17:
35:fb:16:d5:e5:d8:57:57:45:43:d4:c2:af:ac:47:
fd:c3:75:9d:20:e5:fd:db:97:20:a6:ac:7f:66:9d:
35:f1:8e:c2:cb:3a:8f:a8:61:d2:50:3a:62:f5:bf:
9a:9d:92:e7:af:ba:a7:7d:05:b9:11:8c:8a:c8:d4:
24:d4:48:eb:a7:51:b3:5d:ab:74:f7:ba:d9:ee:e0:
60:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8C:1E:2D:43:4C:56:2A:69:69:77:EA:81:A7:0D:AB:B8:EA:F0:6E
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/QYweLUNMVippaXfqgacNq7jq8G4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.130.0/24
Signature Algorithm: sha256WithRSAEncryption
85:06:87:87:d4:65:7c:ad:22:ac:7d:b7:34:aa:f0:c4:30:fd:
91:33:e4:86:f6:f2:b4:1e:65:5d:d6:ea:a7:40:fa:98:48:ef:
04:47:70:fe:d0:11:7e:6f:29:b5:39:09:6b:bd:de:f4:52:a7:
87:31:cd:e5:3f:fb:77:4f:7b:53:b8:1d:3e:a2:be:77:75:41:
b7:35:e6:74:ee:78:39:66:30:de:11:3b:f4:b4:b5:88:72:bf:
50:04:76:c3:4c:88:2f:6b:e2:da:2d:6b:3d:fc:53:b8:d0:30:
a5:57:59:31:09:67:4c:42:ce:b1:25:03:bc:4c:59:76:b6:d1:
5f:64:fc:a2:28:8a:df:6e:b0:9f:e7:8e:b6:1e:aa:6e:e1:6e:
d4:db:92:81:33:83:04:cf:06:7b:28:a2:dc:5e:9e:c6:37:c0:
1a:1f:1a:73:57:76:03:bb:15:05:37:fb:b0:71:bf:07:fb:5b:
d1:ce:e7:ea:c1:72:13:cf:40:af:fe:e9:1a:28:4c:20:38:31:
60:14:28:4d:08:4f:b4:0f:12:ef:8c:84:55:cb:4e:80:6b:d2:
4d:9f:1f:8d:cf:e3:9f:6c:3f:1e:67:28:4e:46:6c:b5:80:5b:
26:58:df:05:26:63:45:9b:d2:7e:24:3e:92:84:08:05:b9:78:
69:53:78:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:32 2024 by rpki-client on console-fra.rpki-client.org