Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/57ed6a-1177-4a9d-98c5-d59e264ee83b/1/QZ8ykIbNAoaDzLH0kbe9nQMXMXU.roa
File: QZ8ykIbNAoaDzLH0kbe9nQMXMXU.roa (raw, json)
Hash identifier: 089yIq3DBK68Adhur3KlZwciZ6dT7UMwNJ7f8uVJPNM=
Subject key identifier: 41:9F:32:90:86:CD:02:86:83:CC:B1:F4:91:B7:BD:9D:03:17:31:75
Certificate issuer: /CN=b0c5e6ae5987100664b23034cefc72d47f8f4b9b
Certificate serial: 05FD569F
Authority key identifier: B0:C5:E6:AE:59:87:10:06:64:B2:30:34:CE:FC:72:D4:7F:8F:4B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMXmrlmHEAZksjA0zvxy1H-PS5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/57ed6a-1177-4a9d-98c5-d59e264ee83b/1/QZ8ykIbNAoaDzLH0kbe9nQMXMXU.roa
Signing time: Sat 01 Jan 2022 10:05:15 +0000
ROA not before: Sat 01 Jan 2022 10:05:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207642
IP address blocks: 83.138.58.0/24 maxlen: 24
2a0f:fe40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100488863 (0x5fd569f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c5e6ae5987100664b23034cefc72d47f8f4b9b
Validity
Not Before: Jan 1 10:05:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=419f329086cd028683ccb1f491b7bd9d03173175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:81:e3:82:29:e0:da:32:40:2c:40:8c:f3:92:
d7:76:8d:07:7c:b9:2e:54:83:71:76:11:b0:28:7e:
74:7e:9a:da:1e:4d:a7:8f:a9:53:55:1e:a6:bd:0f:
9f:22:7f:02:a7:d9:9a:b3:e3:19:fc:55:46:50:ff:
07:81:2d:70:b1:6a:f8:a9:34:2d:7f:e3:e6:c8:73:
e6:f3:b4:45:f9:a6:a0:89:92:fb:77:10:21:38:99:
1b:6c:f4:7f:35:5b:51:7c:a1:8d:b2:93:12:20:1a:
64:c1:db:60:79:ea:d1:26:f8:4a:4f:a2:9b:62:49:
45:71:d5:79:b0:f1:2a:f1:91:76:21:21:98:5e:12:
3a:7f:c8:dc:b9:d7:ef:de:d4:e6:67:2f:7f:53:04:
13:bb:c5:ad:9e:dc:a1:b9:a8:46:72:49:d3:f1:02:
22:7d:50:ed:e3:af:0c:fe:12:c5:d0:78:32:3e:de:
4b:ef:eb:4b:e1:fd:22:46:73:be:32:02:97:1c:98:
5f:c1:c9:db:2d:03:f1:c3:bc:a9:60:2f:80:c8:13:
d5:69:34:67:e6:14:2d:cb:e0:29:01:74:3d:18:ca:
42:ae:84:3e:18:3e:fc:ab:fe:31:ab:41:29:3b:a8:
16:17:27:93:3a:c4:9b:26:f6:9e:c6:e4:40:ee:cc:
ac:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:9F:32:90:86:CD:02:86:83:CC:B1:F4:91:B7:BD:9D:03:17:31:75
X509v3 Authority Key Identifier:
keyid:B0:C5:E6:AE:59:87:10:06:64:B2:30:34:CE:FC:72:D4:7F:8F:4B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMXmrlmHEAZksjA0zvxy1H-PS5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/57ed6a-1177-4a9d-98c5-d59e264ee83b/1/QZ8ykIbNAoaDzLH0kbe9nQMXMXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/57ed6a-1177-4a9d-98c5-d59e264ee83b/1/sMXmrlmHEAZksjA0zvxy1H-PS5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.138.58.0/24
IPv6:
2a0f:fe40::/48
Signature Algorithm: sha256WithRSAEncryption
af:f1:fc:46:cc:ec:f4:bd:44:db:49:ce:a3:0d:cb:3c:d4:c7:
1b:1b:b5:b6:86:4d:d2:cf:2e:1d:04:5a:da:97:ab:3f:9f:65:
8e:21:8f:20:e9:a0:4b:33:40:45:3a:42:0c:a1:ee:d7:c2:eb:
83:e7:72:88:e7:70:8b:54:14:73:77:b5:c7:34:34:ac:05:1d:
5e:3a:8d:92:13:28:8a:37:5d:f4:17:b2:a1:96:f8:a9:96:a2:
81:b2:75:cd:09:e3:05:d5:ff:27:de:c2:6c:bb:df:47:24:93:
c0:31:d0:25:22:aa:6e:bd:a2:9a:03:ed:81:52:ac:dd:65:b7:
a6:11:94:75:bd:c8:2a:e0:d5:fa:bc:dd:88:a3:f1:eb:54:19:
fb:30:ad:7e:d9:03:42:37:fc:1b:56:e9:53:61:e0:a2:f7:75:
b3:28:88:57:6f:cc:b1:c5:67:16:2c:cc:6d:7d:1e:2e:23:4a:
b2:ee:99:f4:11:9e:38:f4:56:8f:dd:47:f4:a2:03:f2:72:24:
88:f4:98:02:e3:98:9d:08:8e:5a:dc:7f:a6:bc:ac:fe:dc:32:
c8:09:92:40:8c:49:50:fb:e8:cb:b8:e5:43:b4:c2:3c:f8:f1:
26:c2:58:62:76:01:7c:94:71:9e:91:5b:06:86:a7:9c:83:7f:
87:96:bd:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:13 2024 by rpki-client on console-ams.rpki-client.org