Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Qt8Ub-IwYeH7zIfcb--foXyM6KQ.roa
File: Qt8Ub-IwYeH7zIfcb--foXyM6KQ.roa (raw, json)
Hash identifier: g8A5KtVv/oj36hUneGMgb0HwoGzllk+PW0T5RQ3rjIQ=
Subject key identifier: 42:DF:14:6F:E2:30:61:E1:FB:CC:87:DC:6F:EF:9F:A1:7C:8C:E8:A4
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1A2AAAB1
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Qt8Ub-IwYeH7zIfcb--foXyM6KQ.roa
Signing time: Thu 20 Jan 2022 10:17:58 +0000
ROA not before: Thu 20 Jan 2022 10:17:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 45.84.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 439003825 (0x1a2aaab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 20 10:17:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42df146fe23061e1fbcc87dc6fef9fa17c8ce8a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:89:56:e0:97:97:ae:72:bd:08:a0:5e:65:c3:
2f:d3:b0:64:7a:86:87:4b:96:89:65:f0:28:b4:5f:
a3:bd:24:37:8d:ce:40:0d:f1:fa:3d:52:01:7e:2a:
3d:fd:20:ac:c9:a8:43:29:fa:4f:bb:49:d4:cb:4e:
1f:a4:b7:24:95:d7:eb:df:29:4a:d7:0a:5d:ae:df:
19:0f:0e:af:87:fb:fb:25:cc:7b:ff:14:6f:47:9a:
21:dd:83:84:f5:1c:93:e4:01:ca:b7:38:95:8c:dc:
97:29:3b:60:b8:8f:14:cc:57:df:04:1f:20:55:c2:
d6:d0:7d:0e:e8:42:99:93:e6:6b:45:ff:e2:b8:e4:
20:49:ba:4b:ed:c0:b1:af:27:55:8b:53:7e:80:9e:
65:3f:d5:ab:fa:06:c4:17:7e:48:76:4b:62:a0:5f:
79:46:30:e4:87:4a:6e:6b:38:ed:ca:66:f9:34:62:
0e:8c:74:b4:57:4e:7c:3a:8e:13:e7:da:8b:19:8c:
13:a2:09:19:a7:2f:25:a8:59:75:68:b7:99:78:65:
32:1e:09:c8:82:02:92:82:62:06:bd:0f:3a:25:cb:
61:64:7a:05:3c:bd:d6:fe:c6:b0:40:34:c2:8e:d8:
ad:8c:83:f7:4a:2e:fd:75:da:84:38:8b:57:e5:f2:
d8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:DF:14:6F:E2:30:61:E1:FB:CC:87:DC:6F:EF:9F:A1:7C:8C:E8:A4
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Qt8Ub-IwYeH7zIfcb--foXyM6KQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.212.0/24
Signature Algorithm: sha256WithRSAEncryption
50:d5:d3:a9:4e:25:91:04:f7:42:7d:b9:a8:be:6b:ee:7e:1d:
24:a2:6c:3a:c4:ab:e1:54:07:ea:13:6e:e9:0c:fe:d9:bc:7e:
88:e9:5f:53:59:80:c3:77:bd:c5:43:f2:39:c1:f7:a6:a3:c6:
59:d2:33:0d:14:69:01:17:a3:60:02:94:b2:c8:de:2d:92:f4:
b7:9b:31:f7:da:f8:91:cc:d5:87:64:db:35:f6:6b:8c:97:15:
c3:ec:d0:e6:b9:ad:eb:75:42:fa:af:4e:59:ef:12:bb:56:23:
bb:5b:90:d1:9e:19:85:77:9e:84:6f:44:8f:d5:cb:73:e0:9c:
ff:b1:ec:f7:05:9a:ff:87:f1:a9:a4:2f:fe:98:2d:15:de:41:
34:e7:ea:10:db:2f:26:7b:6f:a8:0e:8a:9e:f7:e8:9b:18:20:
78:72:38:bc:2f:f9:31:4e:f2:0e:08:6a:08:aa:de:09:8f:a8:
24:6d:7e:3f:90:8e:69:71:cc:99:5a:cc:32:7d:ec:eb:0a:cd:
4d:72:5d:a8:51:c3:f7:a0:c4:38:df:96:e7:81:9a:e4:67:82:
23:54:47:c3:83:78:24:26:17:32:94:00:1d:0e:b4:8c:22:8c:
25:fe:51:fe:c1:4e:2e:3a:87:5d:4a:fa:36:9c:29:25:3a:69:
db:91:26:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org