Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/36ccba-85f0-4001-b939-5f6980b8c467/1/qUKhmBUfxC8A358Y0TO3aZu6l1Q.roa
File: qUKhmBUfxC8A358Y0TO3aZu6l1Q.roa (raw, json)
Hash identifier: N07OMTA5z4SvQvVAGFkwSVQTa989dvNxe/yAKoPjJls=
Subject key identifier: A9:42:A1:98:15:1F:C4:2F:00:DF:9F:18:D1:33:B7:69:9B:BA:97:54
Certificate issuer: /CN=ec2918069b21e165f8cc942a6793fde5b1655be6
Certificate serial: 0183D7781476C77CA486F018F4E3F50A90E2
Authority key identifier: EC:29:18:06:9B:21:E1:65:F8:CC:94:2A:67:93:FD:E5:B1:65:5B:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7CkYBpsh4WX4zJQqZ5P95bFlW-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/36ccba-85f0-4001-b939-5f6980b8c467/1/qUKhmBUfxC8A358Y0TO3aZu6l1Q.roa
Signing time: Fri 14 Oct 2022 17:08:34 +0000
ROA not before: Fri 14 Oct 2022 17:08:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57063
IP address blocks: 213.5.72.0/24 maxlen: 24
91.236.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d7:78:14:76:c7:7c:a4:86:f0:18:f4:e3:f5:0a:90:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec2918069b21e165f8cc942a6793fde5b1655be6
Validity
Not Before: Oct 14 17:08:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a942a198151fc42f00df9f18d133b7699bba9754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cc:40:86:46:22:c1:1c:1a:07:40:74:57:9e:
1c:13:1e:1b:79:16:ce:f6:af:88:a2:98:66:cf:3b:
a6:99:ed:4f:dd:58:16:05:80:5a:fb:0e:bc:db:09:
14:d2:a0:a5:48:5a:56:77:05:9d:70:77:c4:11:c8:
af:f6:49:e0:21:23:97:15:14:6a:dc:c6:fa:38:dc:
78:48:10:38:9a:63:95:78:c1:65:b9:79:22:67:7d:
67:f5:2e:85:1d:71:8c:e8:af:69:f3:1c:db:06:11:
9c:95:a2:36:51:d9:1f:f3:e3:34:0d:a8:45:bb:c0:
97:2d:c0:b7:2e:70:a4:a0:d7:15:8b:93:6d:19:8d:
a2:ee:ff:a4:a6:40:d1:78:a0:7c:5c:50:ea:c9:7c:
28:e9:d1:96:46:ec:eb:9c:e4:91:00:50:3a:c3:a0:
72:43:40:f6:e6:46:fa:18:bb:18:cf:72:13:a6:72:
09:5e:8f:c6:fb:0b:95:75:36:4a:84:3c:d4:17:18:
50:57:c5:52:f2:38:8e:e8:ce:29:6b:29:4f:bc:a8:
bc:e6:b0:a4:99:51:7e:e1:01:7c:28:9d:59:9f:7e:
22:d1:63:6e:47:b5:01:bc:79:09:d8:da:06:47:10:
d2:91:39:6e:a6:e7:84:16:f1:e1:3d:a1:72:f7:51:
9d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:42:A1:98:15:1F:C4:2F:00:DF:9F:18:D1:33:B7:69:9B:BA:97:54
X509v3 Authority Key Identifier:
keyid:EC:29:18:06:9B:21:E1:65:F8:CC:94:2A:67:93:FD:E5:B1:65:5B:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7CkYBpsh4WX4zJQqZ5P95bFlW-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/36ccba-85f0-4001-b939-5f6980b8c467/1/qUKhmBUfxC8A358Y0TO3aZu6l1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/36ccba-85f0-4001-b939-5f6980b8c467/1/7CkYBpsh4WX4zJQqZ5P95bFlW-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.201.0/24
213.5.72.0/24
Signature Algorithm: sha256WithRSAEncryption
38:8a:9f:31:ad:34:bf:1a:a9:84:62:3b:c5:ae:46:07:1a:fd:
59:f1:bf:99:78:0a:70:ce:58:9b:b3:36:de:44:e6:ff:56:ce:
c9:68:37:f7:a6:6b:d7:d9:6c:a2:f3:89:7c:15:f8:e3:cd:62:
b5:f4:f7:6d:f8:f0:46:84:69:90:04:d5:c0:bd:88:50:37:82:
19:6e:90:67:95:da:79:d2:58:84:c6:ef:a7:53:bd:58:3b:e1:
73:81:05:21:43:ba:3a:01:18:5a:85:c2:d0:9e:93:3b:96:9f:
6c:53:17:a1:72:48:cc:7c:da:76:1a:ac:36:84:c0:8c:d4:7a:
fe:c5:d0:61:11:33:09:55:1e:12:8d:06:8d:c5:e1:e7:72:18:
76:63:e3:a3:44:37:83:24:61:88:50:7f:5c:c3:8c:b9:0d:8b:
43:26:b1:74:b3:f2:4d:4f:f0:6b:fd:58:58:41:d7:74:fd:83:
13:b6:38:aa:13:81:89:b7:43:b9:3f:e3:11:fd:cf:28:da:5f:
47:3c:97:7f:94:4a:6f:1c:50:18:13:df:82:23:6f:fa:dc:0e:
ff:aa:62:c7:fd:7a:7e:31:a9:9a:ae:c0:8a:6f:d3:57:47:d3:
31:ae:64:46:8d:03:2d:7e:9d:25:d2:26:6c:f1:72:0e:f8:92:
09:1b:10:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:08 2024 by rpki-client on console-ams.rpki-client.org