Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/QhBaA35UXwL2uqXlIFjjIwD6HFg.roa
File: QhBaA35UXwL2uqXlIFjjIwD6HFg.roa (raw, json)
Hash identifier: Znq2x8mw/tui7SaKn81dOBzKyM+O7dQ/f1JU44qfmZE=
Subject key identifier: 42:10:5A:03:7E:54:5F:02:F6:BA:A5:E5:20:58:E3:23:00:FA:1C:58
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 032BFFAC
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/QhBaA35UXwL2uqXlIFjjIwD6HFg.roa
Signing time: Sat 01 Jan 2022 13:07:47 +0000
ROA not before: Sat 01 Jan 2022 13:07:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48642
IP address blocks: 83.217.14.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53215148 (0x32bffac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 13:07:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42105a037e545f02f6baa5e52058e32300fa1c58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ae:2d:bb:cb:78:85:56:2e:9a:73:67:97:cb:
8b:38:96:6c:07:52:70:83:9d:9e:6a:82:2c:35:76:
2a:2e:f6:9c:99:bc:65:85:02:cd:d0:2a:04:51:8d:
17:8c:03:c9:b6:e7:4d:98:c3:2e:72:c1:57:47:33:
38:94:db:1b:6a:6e:a5:b1:00:6d:f3:21:88:1f:c9:
42:2c:a5:f7:d6:1b:16:db:4e:c8:17:fd:00:a7:b8:
37:b0:ad:cd:aa:29:3d:58:30:e0:dd:c2:ae:27:71:
41:dd:d3:c3:16:41:e8:7a:d5:f3:d6:30:62:fc:0d:
08:ab:89:0d:1d:4c:92:b3:67:91:0d:36:a5:96:f9:
80:5e:66:d1:64:f1:5c:e8:2a:5a:7d:19:eb:cf:91:
6a:47:b5:97:73:bf:49:9f:30:fb:1b:90:d4:89:84:
12:b6:dd:b8:81:0c:24:c9:3a:e7:c3:9e:15:0b:9e:
8f:7e:be:ec:18:d9:89:2e:e0:6b:60:ef:a8:d6:81:
cc:24:9d:69:db:36:51:67:e7:7c:3e:53:e1:12:89:
36:71:c0:2d:be:f6:50:f5:d5:f5:03:08:9b:1b:b9:
e6:ef:9e:2c:e2:01:69:e3:e2:94:04:66:71:a3:4e:
5a:0a:18:a9:69:81:fc:85:ba:35:ec:4b:01:01:fc:
89:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:10:5A:03:7E:54:5F:02:F6:BA:A5:E5:20:58:E3:23:00:FA:1C:58
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/QhBaA35UXwL2uqXlIFjjIwD6HFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.14.0/23
Signature Algorithm: sha256WithRSAEncryption
05:33:ef:23:c2:08:2f:1e:4d:f2:dc:56:d9:fe:a3:db:e3:bd:
f9:7d:c8:e8:27:96:44:b4:c8:02:d8:45:db:85:63:36:d6:ed:
6b:70:60:f4:4a:c2:e2:a9:d6:f3:ef:bb:e0:f0:e5:e7:ea:ab:
92:5d:f4:5e:3f:fd:56:d3:53:c6:3c:5e:44:8e:fd:4f:f0:5c:
0f:4e:fe:fc:70:ab:e7:13:43:2e:d3:4a:8c:a9:1a:a4:b7:cb:
d8:05:21:72:14:83:6f:d5:85:6d:e2:04:81:14:5a:9d:38:14:
1f:44:25:68:3f:29:c0:84:d3:9e:1a:f4:d1:6f:e6:67:8a:2c:
29:5d:4d:01:6a:57:13:5f:f3:6b:db:4f:c8:45:e9:c7:a4:32:
33:e2:58:65:41:24:3f:f6:0c:dc:8b:cc:f3:3a:5c:d2:3b:38:
cb:7d:a4:78:72:fb:a5:27:fe:6f:fd:9e:27:9f:cb:76:ca:e3:
33:04:ba:79:09:13:aa:4d:fc:50:5f:96:56:71:53:da:e9:72:
22:a5:31:72:7f:da:a6:ba:39:b5:e8:50:ce:bc:d8:79:b8:e7:
5e:d1:37:ed:1f:1d:a0:59:db:55:52:f0:af:4d:19:18:f6:c5:
d1:8b:07:70:db:40:9e:a0:f3:49:fc:23:0d:f6:cc:d2:b6:8b:
a1:12:f4:e8
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAyv/rDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OTQwYjY5NGJiYTA5NTM0NGU0YmRiOTlmNTFlMWYxMDIzYmU1N2NlMB4XDTIyMDEw
MTEzMDc0N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDIxMDVhMDM3ZTU0
NWYwMmY2YmFhNWU1MjA1OGUzMjMwMGZhMWM1ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMOuLbvLeIVWLppzZ5fLiziWbAdScIOdnmqCLDV2Ki72nJm8
ZYUCzdAqBFGNF4wDybbnTZjDLnLBV0czOJTbG2pupbEAbfMhiB/JQiyl99YbFttO
yBf9AKe4N7CtzaopPVgw4N3CridxQd3TwxZB6HrV89YwYvwNCKuJDR1MkrNnkQ02
pZb5gF5m0WTxXOgqWn0Z68+Rake1l3O/SZ8w+xuQ1ImEErbduIEMJMk658OeFQue
j36+7BjZiS7ga2DvqNaBzCSdads2UWfnfD5T4RKJNnHALb72UPXV9QMImxu55u+e
LOIBaePilARmcaNOWgoYqWmB/IW6NexLAQH8iWkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRCEFoDflRfAva6peUgWOMjAPocWDAfBgNVHSMEGDAWgBQpQLaUu6CVNE5L
25n1Hh8QI75XzjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tVQzJsTHVnbFRST1M5dVo5UjRmRUNPLVY4NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWYvNjEwN2U0LTQzOTMtNGNiZS1hNmMyLTI3YzFhMzU5NzZkZS8x
L1FoQmFBMzVVWHdMMnVxWGxJRmpqSXdENkhGZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWYv
NjEwN2U0LTQzOTMtNGNiZS1hNmMyLTI3YzFhMzU5NzZkZS8xL0tVQzJsTHVnbFRS
T1M5dVo5UjRmRUNPLVY4NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVPZDjANBgkqhkiG9w0BAQsFAAOC
AQEABTPvI8IILx5N8txW2f6j2+O9+X3I6CeWRLTIAthF24VjNtbta3Bg9ErC4qnW
8++74PDl5+qrkl30Xj/9VtNTxjxeRI79T/BcD07+/HCr5xNDLtNKjKkapLfL2AUh
chSDb9WFbeIEgRRanTgUH0QlaD8pwITTnhr00W/mZ4osKV1NAWpXE1/za9tPyEXp
x6QyM+JYZUEkP/YM3IvM8zpc0js4y32keHL7pSf+b/2eJ5/LdsrjMwS6eQkTqk38
UF+WVnFT2ulyIqUxcn/apro5tehQzrzYebjnXtE37R8doFnbVVLwr00ZGPbF0YsH
cNtAnqDzSfwjDfbM0raLoRL06A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:34 2024 by rpki-client on console-ams.rpki-client.org