Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/QQx9E9ze8yRNMw0m9Zhp4AEQb_w.roa
File: QQx9E9ze8yRNMw0m9Zhp4AEQb_w.roa (raw, json)
Hash identifier: S35x8a6vgTlsm2eak8xcXt8gOhbAT74P0362s1hS9mY=
Subject key identifier: 41:0C:7D:13:DC:DE:F3:24:4D:33:0D:26:F5:98:69:E0:01:10:6F:FC
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 18084BE6
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/QQx9E9ze8yRNMw0m9Zhp4AEQb_w.roa
Signing time: Sat 01 Jan 2022 04:00:34 +0000
ROA not before: Sat 01 Jan 2022 04:00:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199512
IP address blocks: 213.91.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403196902 (0x18084be6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=410c7d13dcdef3244d330d26f59869e001106ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:35:16:9b:9c:fa:31:b4:1c:4f:6c:03:b9:36:
2e:3c:63:3c:5e:a0:e6:2d:58:6a:6e:2a:28:f9:ea:
93:35:e2:06:8a:1e:4b:2d:06:0a:19:b4:17:ea:81:
49:9a:7d:d1:2f:46:b0:19:7c:a2:7d:48:50:cf:a8:
5c:71:ca:23:d8:6d:21:81:fe:1d:d7:ad:d6:fb:8a:
57:32:b8:7f:7d:8c:cb:d9:4c:fa:92:83:40:66:7f:
b4:61:79:d3:e7:ba:e3:85:97:44:4c:70:11:19:a1:
cf:7f:b5:f2:7c:d0:a9:d7:d7:a5:17:fb:69:3b:90:
69:3e:b5:9a:f9:d2:6a:aa:59:d3:e4:b4:9a:28:62:
38:b1:de:de:f4:9d:0f:a0:cd:6f:56:33:09:09:f6:
9b:40:18:fa:96:2a:d4:96:b8:78:1f:9d:9f:70:b4:
9c:99:32:9b:2e:e9:24:97:ef:1b:d4:1e:60:35:c6:
cc:fb:96:e5:9e:8b:4d:88:ef:fd:d9:60:7a:4d:be:
88:6c:38:fd:cb:86:f3:e8:a3:b9:c4:41:b4:7b:a9:
02:5e:3f:88:9f:d8:6f:0b:30:ae:2b:c6:d0:da:df:
f9:5b:ba:71:4e:ac:4c:af:b2:cf:94:c9:87:b5:6a:
21:10:33:13:a9:6b:19:ee:c9:3d:c0:02:c0:17:d6:
ea:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:0C:7D:13:DC:DE:F3:24:4D:33:0D:26:F5:98:69:E0:01:10:6F:FC
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/QQx9E9ze8yRNMw0m9Zhp4AEQb_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.157.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:31:fa:3f:d5:c7:72:ce:f8:79:cc:0b:90:1a:6e:75:3d:25:
e5:6f:98:54:22:1f:cf:ef:00:aa:ea:8f:3f:8b:24:6e:9d:c8:
97:3c:e4:31:d3:3e:05:19:33:99:ea:dc:71:97:0f:d4:9b:ef:
bd:2b:40:26:a6:c6:d4:4d:9f:42:e8:6b:13:c4:4f:b1:dc:e9:
3a:df:a0:75:28:f8:82:6b:68:b5:be:e1:09:3b:0f:b0:e3:49:
75:9b:2a:f0:37:6e:1a:a8:76:83:2f:4b:b7:cf:72:18:26:7e:
02:35:70:75:e9:a4:7f:8e:cf:ae:19:66:76:5d:c8:fb:79:c2:
de:d6:f0:9d:4d:f3:1a:50:92:f3:6d:fb:ba:1c:11:c4:7c:bc:
ae:a5:c8:d4:a8:c4:cf:f0:c1:83:6c:28:25:4c:54:bf:ef:c5:
fd:de:0f:ea:0d:ae:98:58:0c:4d:8a:db:e4:3b:a7:00:8e:a9:
53:55:16:e4:41:00:4b:0f:78:9b:8e:f2:c2:eb:4d:aa:a4:ce:
64:ce:d5:81:96:fb:49:2a:d8:a4:3d:55:04:dd:b9:18:25:5c:
94:49:80:fd:c9:af:36:d1:7a:ec:b0:16:0b:94:1c:63:7f:c5:
b0:7c:07:8f:0b:f4:91:f3:5f:02:d3:79:4e:5f:e7:e9:4e:c8:
b5:a4:77:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org