Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Qt-vJwsPiV9wet5GkaDGUe0drgw.roa
File: Qt-vJwsPiV9wet5GkaDGUe0drgw.roa (raw, json)
Hash identifier: YF8pB297dphq3weucv8hHUZCtbRps79Bcd8K75f5eQc=
Subject key identifier: 42:DF:AF:27:0B:0F:89:5F:70:7A:DE:46:91:A0:C6:51:ED:1D:AE:0C
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 08C4D7B7
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Qt-vJwsPiV9wet5GkaDGUe0drgw.roa
Signing time: Sat 01 Jan 2022 07:04:31 +0000
ROA not before: Sat 01 Jan 2022 07:04:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49367
IP address blocks: 192.144.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147118007 (0x8c4d7b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 07:04:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42dfaf270b0f895f707ade4691a0c651ed1dae0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:84:ce:79:82:0d:36:3b:3f:7e:67:a5:dd:10:
d8:4c:46:07:26:bf:1f:29:46:46:7c:b8:16:20:13:
b6:8b:24:50:8b:56:72:e4:f2:42:a5:61:f8:13:37:
ee:c3:76:46:6d:01:c2:61:81:96:91:ac:05:ab:8e:
90:3e:4f:de:a2:20:04:e7:b6:bb:6c:02:ea:cd:f1:
37:31:77:c7:aa:53:2b:a4:9a:e6:96:da:5d:67:8e:
87:d6:20:22:e6:6e:f5:31:13:1a:1a:f1:b3:da:97:
3e:3a:d2:ae:c3:02:49:10:f7:9c:f0:c8:28:79:77:
6c:6f:08:19:6d:bd:35:a9:98:fb:42:21:79:74:45:
06:c6:23:64:7b:3f:ff:16:30:e2:95:5d:ef:8c:be:
f7:1f:c1:02:f5:22:46:4f:cd:e5:f8:9e:b0:6d:ff:
66:3a:36:e8:b2:d7:29:f7:f1:c9:b8:65:6d:48:ac:
45:1e:a7:51:18:d0:8d:d8:63:f2:b9:da:de:3a:79:
48:f0:68:56:22:ea:c0:fc:2d:2e:62:e1:ab:65:d0:
fe:f3:48:83:89:f2:87:22:eb:99:0c:f1:fa:45:eb:
9e:e8:03:7b:80:89:34:37:8f:3d:90:cb:26:28:d9:
0e:91:ba:61:8a:83:a2:06:87:3c:87:88:a9:cd:f2:
60:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:DF:AF:27:0B:0F:89:5F:70:7A:DE:46:91:A0:C6:51:ED:1D:AE:0C
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/Qt-vJwsPiV9wet5GkaDGUe0drgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.144.34.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:6e:f3:a7:06:5b:5b:89:96:ae:de:66:0f:56:c1:0b:49:46:
80:9f:01:6d:06:19:e2:31:0e:0e:5a:6b:d7:32:69:9c:fa:63:
94:f6:f1:ca:46:7c:ba:78:a6:6b:eb:b0:86:b5:5d:70:d6:f5:
e9:e6:4b:29:d2:45:68:21:76:3f:7d:97:b0:ec:a4:91:5b:2e:
9b:ba:64:56:49:4a:21:5c:22:bc:37:f5:ec:64:8d:4d:d6:29:
f6:b0:90:05:1f:3a:97:d4:a8:1f:10:0a:58:1c:3f:e4:5d:75:
ce:82:52:b1:99:54:b1:73:77:b8:f5:95:b1:44:ea:d8:cf:52:
17:ae:90:20:fb:74:93:9c:c3:d6:49:0a:db:ec:7d:e8:b0:81:
a2:2b:10:83:38:e7:1c:04:1b:b6:27:18:22:25:73:87:71:e4:
ad:7c:c0:aa:23:4e:af:15:fd:71:d9:ed:55:c1:ad:83:c0:29:
e4:31:33:98:55:c4:ff:7b:30:89:64:f8:f4:62:dd:7e:2a:3a:
96:98:e9:ea:f7:f7:97:37:69:a6:b3:bd:63:e9:ce:44:20:5d:
bf:0f:31:59:fd:16:11:9a:91:a9:02:ba:9f:30:5e:74:d9:ed:
c6:5c:70:18:de:1a:45:05:fe:aa:15:29:3f:91:2b:59:cc:56:
22:70:17:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org