Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/qlm9NbWxErKrp-qHTz3WIujBvvo.roa
File: qlm9NbWxErKrp-qHTz3WIujBvvo.roa (raw, json)
Hash identifier: ESiy5zrQaxh1VwBlIdVO4LNSI51/IDW8Dpr1EskHJw0=
Subject key identifier: AA:59:BD:35:B5:B1:12:B2:AB:A7:EA:87:4F:3D:D6:22:E8:C1:BE:FA
Certificate issuer: /CN=427ce5719caa681adbd493a8d9a38a675d6bd639
Certificate serial: 1983A180
Authority key identifier: 42:7C:E5:71:9C:AA:68:1A:DB:D4:93:A8:D9:A3:8A:67:5D:6B:D6:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QnzlcZyqaBrb1JOo2aOKZ11r1jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/qlm9NbWxErKrp-qHTz3WIujBvvo.roa
Signing time: Sat 01 Jan 2022 03:54:45 +0000
ROA not before: Sat 01 Jan 2022 03:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47420
IP address blocks: 176.52.185.0/24 maxlen: 24
2a02:f181:3000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 428056960 (0x1983a180)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427ce5719caa681adbd493a8d9a38a675d6bd639
Validity
Not Before: Jan 1 03:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa59bd35b5b112b2aba7ea874f3dd622e8c1befa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:36:85:95:1a:2c:4c:4e:01:26:18:4b:a3:0f:
ed:26:24:38:86:20:0d:ee:ab:ca:62:c3:8c:f1:e0:
09:ec:78:0b:94:42:c3:b0:84:1f:9f:4d:59:33:e4:
20:dc:6e:16:c3:c9:81:11:0f:6e:84:8a:b6:8c:14:
5b:c2:92:f2:72:6d:79:bc:ca:fb:e8:18:62:72:ec:
de:60:4b:3b:e9:32:81:89:52:1b:de:3a:fa:c3:ff:
4b:03:67:db:2d:34:2a:e1:4e:96:20:b2:49:14:22:
01:22:9f:98:cc:9d:03:55:f2:e7:8a:08:b2:d8:72:
37:7e:5e:ea:5b:ff:cd:9a:63:dd:a7:d0:58:d8:4b:
8c:1d:cf:29:45:0d:41:22:06:0e:60:94:de:78:c2:
69:26:a4:e5:3c:b8:8a:bb:97:49:40:54:6d:3b:db:
34:e5:18:8c:ea:67:9f:f5:6d:8d:da:7f:2b:a4:1d:
00:6c:e7:1e:35:b4:53:7f:0b:bf:34:25:39:e3:fa:
df:1b:2f:a5:86:f0:a8:72:bf:f7:96:89:74:a4:88:
20:33:e4:79:5e:de:be:ad:11:b4:65:3b:89:4b:6b:
bc:6c:cd:46:bf:c2:94:ae:11:04:3e:cb:8c:56:8a:
03:d7:d0:d1:8c:b4:d3:32:0a:58:39:77:26:ce:69:
c7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:59:BD:35:B5:B1:12:B2:AB:A7:EA:87:4F:3D:D6:22:E8:C1:BE:FA
X509v3 Authority Key Identifier:
keyid:42:7C:E5:71:9C:AA:68:1A:DB:D4:93:A8:D9:A3:8A:67:5D:6B:D6:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QnzlcZyqaBrb1JOo2aOKZ11r1jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/qlm9NbWxErKrp-qHTz3WIujBvvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/3e3548-fdb5-4ded-ba59-091c2d303fe8/1/QnzlcZyqaBrb1JOo2aOKZ11r1jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.52.185.0/24
IPv6:
2a02:f181:3000::/48
Signature Algorithm: sha256WithRSAEncryption
91:47:44:08:8c:7a:ab:5e:b0:3c:76:08:7d:71:64:81:b6:4c:
3b:b0:2b:7f:41:1f:31:90:34:62:d5:3e:f9:4e:c0:c2:e9:13:
64:1b:42:f8:df:60:09:37:0b:18:96:e4:17:40:a5:bd:10:ad:
78:a8:ca:7b:38:d9:29:ba:3c:16:4e:48:5a:18:d8:8b:17:04:
44:c4:49:b5:f6:34:ca:d6:81:fa:26:82:6b:70:a5:a1:87:76:
a1:12:9d:9b:44:65:1a:11:10:34:02:56:4c:43:a2:ad:71:9b:
b6:16:70:5a:06:78:ac:ad:ea:d1:7a:7d:45:75:20:06:7c:e4:
c2:86:6e:b8:ae:d6:6f:0b:e1:e4:b0:c6:bf:0b:fb:d1:cc:7a:
63:f3:21:0b:60:6b:ea:55:a4:96:49:87:a4:b0:62:67:ff:c1:
43:68:ab:cd:fa:5d:8d:15:ed:ae:f5:06:c3:7c:91:71:bf:36:
f5:af:96:bd:8b:5a:4e:3e:cc:c3:31:56:22:e9:b3:c9:bc:5d:
98:55:b6:38:4e:24:95:14:41:40:1b:18:26:3a:ba:ac:63:1a:
dc:a0:1f:f4:25:cb:55:25:dc:03:22:99:0e:42:6a:eb:78:30:
64:c5:60:f1:78:41:bc:f0:e6:84:46:ae:3d:e9:a3:e7:85:ba:
0f:fa:b1:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:44 2024 by rpki-client on console-fra.rpki-client.org