Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/QUwAihGibl2xv6uI5lTJ3AxBBHk.roa
File: QUwAihGibl2xv6uI5lTJ3AxBBHk.roa (raw, json)
Hash identifier: 2SS09xXA0yw/RFoePXNx1zbr2qeJz6R+gulYw9Asp44=
Subject key identifier: 41:4C:00:8A:11:A2:6E:5D:B1:BF:AB:88:E6:54:C9:DC:0C:41:04:79
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1ACE86B4
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/QUwAihGibl2xv6uI5lTJ3AxBBHk.roa
Signing time: Fri 25 Mar 2022 06:08:41 +0000
ROA not before: Fri 25 Mar 2022 06:08:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 45.139.163.0/24 maxlen: 24
45.83.207.0/24 maxlen: 24
2a07:e342::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449742516 (0x1ace86b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Mar 25 06:08:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=414c008a11a26e5db1bfab88e654c9dc0c410479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ee:62:92:a1:b0:6e:cc:0d:5e:59:62:b6:c7:
45:f5:47:b6:0a:94:11:f0:70:25:ce:da:c1:84:49:
18:3f:98:0f:c0:8e:be:c2:66:9b:29:fd:4f:eb:a4:
8d:19:0b:f3:12:a7:fc:c8:7d:e3:d1:00:a8:21:ea:
d5:a4:50:bc:8b:7a:d7:43:9b:60:d9:f0:fd:2d:7a:
cc:23:e5:5b:7e:73:9f:6e:88:8a:27:3d:61:07:86:
43:d9:72:74:78:1b:85:f3:da:68:f2:dd:75:09:18:
0a:99:b2:bc:b7:3f:03:03:ad:eb:08:d5:6e:d3:ce:
a9:da:77:ab:2c:4e:5b:2a:d3:19:2f:42:2a:4d:6f:
b8:e8:2e:bf:44:15:08:88:b3:7a:bf:80:28:9a:33:
29:ae:ba:11:8c:c7:67:95:6d:22:30:01:dd:e2:63:
8d:aa:c6:2d:af:63:df:3f:84:1f:b9:74:b1:d3:79:
be:7a:7b:52:37:56:34:e9:5c:4e:41:38:cf:32:63:
5c:84:c5:19:ed:e8:b8:40:cb:e8:f3:d7:ba:37:a2:
6f:a0:dc:2f:e3:c4:97:49:26:f5:7d:97:09:65:be:
db:0e:71:37:90:98:ec:4f:69:e7:62:77:cf:5b:bf:
e8:c5:ef:f2:8e:9e:93:f2:35:e3:a2:7d:4c:53:c4:
ab:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4C:00:8A:11:A2:6E:5D:B1:BF:AB:88:E6:54:C9:DC:0C:41:04:79
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/QUwAihGibl2xv6uI5lTJ3AxBBHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.207.0/24
45.139.163.0/24
IPv6:
2a07:e342::/32
Signature Algorithm: sha256WithRSAEncryption
a2:b8:d8:02:e7:a5:de:a6:63:27:05:34:64:e2:55:be:cc:61:
52:58:73:9d:c7:c8:df:15:45:6b:76:44:88:11:83:1e:bb:c7:
76:50:d7:61:0c:b2:54:cb:f3:16:61:36:86:ba:11:ae:58:86:
86:d9:8d:55:36:b3:24:b6:d4:18:67:05:6f:fc:fa:60:48:cb:
7e:83:bc:0e:08:aa:43:83:4b:b0:95:d3:bc:af:c4:4a:2b:fa:
f1:47:f4:9a:07:00:02:f2:c9:99:9c:e5:56:bb:88:31:60:e7:
43:e2:77:a1:70:c9:35:7b:ab:8f:68:37:9c:65:a6:5d:e7:d9:
4c:59:88:db:9d:19:d5:98:a3:aa:53:60:58:8a:60:6c:9e:58:
e4:32:4e:2e:9d:20:65:30:7e:ff:c1:f4:2e:ac:2b:63:d0:a7:
bb:ca:b9:6a:84:ba:9f:4d:23:17:7c:bd:ec:64:8e:8d:da:c2:
d5:df:aa:43:bc:44:b1:9b:e9:d2:27:1c:99:42:6e:df:60:ed:
da:76:41:ab:d1:4a:c4:bd:b2:82:09:d1:bb:a3:a7:1a:ad:c7:
9e:af:e8:0a:29:25:b2:e7:72:21:9b:c3:b3:f0:5d:4b:32:5c:
67:e1:1e:39:97:e8:7a:09:39:86:54:a5:d6:cb:d0:13:76:bb:
be:78:52:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org