Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/qgnTCaVf0WKwfcMU79JkMvBAj0c.roa
File: qgnTCaVf0WKwfcMU79JkMvBAj0c.roa (raw, json)
Hash identifier: 7kpqKHc7wksxNnXRouYc3rpNXeYCOIPY/RcVnvwS3DI=
Subject key identifier: AA:09:D3:09:A5:5F:D1:62:B0:7D:C3:14:EF:D2:64:32:F0:40:8F:47
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C88DAA4
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/qgnTCaVf0WKwfcMU79JkMvBAj0c.roa
Signing time: Sat 01 Jan 2022 01:02:51 +0000
ROA not before: Sat 01 Jan 2022 01:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204281
IP address blocks: 91.92.162.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 478730916 (0x1c88daa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa09d309a55fd162b07dc314efd26432f0408f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:84:0c:16:72:99:13:99:ef:79:f2:32:37:54:
e5:37:12:51:41:69:7c:cd:f3:10:51:c6:a6:be:fc:
df:48:63:06:4c:28:91:78:51:13:3f:d2:fd:ea:30:
ad:87:3c:ef:74:2e:1d:55:a0:12:6b:c5:64:ae:ea:
b5:d0:f3:8d:c8:6f:ab:8e:e9:84:6e:9d:76:8c:fc:
c6:5f:a5:61:5e:e6:b0:14:c9:26:9d:30:c4:83:0d:
31:88:c7:27:1e:27:31:d2:75:d6:3c:a0:23:ca:9c:
ba:a8:29:5f:94:fb:a2:7c:c2:90:11:95:f8:30:ea:
7d:44:2f:94:67:86:25:a2:0a:77:63:5d:c8:11:77:
31:61:41:b4:67:b5:a6:f3:bd:d6:2c:f6:29:b4:39:
d3:e7:54:55:7a:b9:31:fd:9e:26:39:c7:62:a7:bd:
98:82:3c:ec:d4:36:1b:df:42:f0:5b:40:a5:c3:40:
f7:68:b7:76:9b:49:b6:59:f7:4a:ec:ae:ad:75:a8:
d9:d8:86:89:be:ad:52:3e:bd:e9:d9:21:f1:c1:3d:
5b:d2:e8:ee:a9:72:a7:90:5b:fb:7a:30:d0:33:37:
b9:5b:72:71:29:6a:0a:fd:29:05:52:09:6e:d8:6d:
14:9d:a1:36:d4:b6:bd:53:49:77:36:c5:d5:15:68:
70:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:09:D3:09:A5:5F:D1:62:B0:7D:C3:14:EF:D2:64:32:F0:40:8F:47
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/qgnTCaVf0WKwfcMU79JkMvBAj0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.92.162.0/23
Signature Algorithm: sha256WithRSAEncryption
07:27:54:3c:dc:08:fc:7b:ad:cc:b1:37:87:ae:c0:ad:fd:b9:
3f:28:c5:fb:15:b5:bc:53:5f:e1:16:e0:13:09:8d:d1:7f:fd:
85:a6:38:62:7c:07:76:a2:47:22:9b:10:42:63:55:c8:33:4c:
20:9d:a3:51:6e:ff:87:a3:de:0f:33:9d:26:68:b3:dd:4a:0f:
65:b5:56:fe:0f:ca:bc:04:aa:e4:be:06:f8:44:33:58:86:d7:
3f:00:1b:05:03:e6:5f:48:b8:e9:bd:a7:df:75:df:1b:38:46:
32:72:8e:1e:03:00:b7:88:2b:ce:ec:71:01:34:ca:60:8f:70:
94:43:bf:38:ba:37:8d:bb:e0:16:18:03:ef:24:2d:5c:16:12:
8e:21:b3:94:c9:87:b8:75:78:70:3f:11:43:a2:dd:74:b3:e0:
c3:73:c3:3f:01:b5:58:a1:00:e5:85:cf:7d:56:07:52:9d:e0:
83:1d:f1:f1:79:a3:a4:70:2f:10:6a:23:10:1c:9c:77:c1:0b:
77:5f:8c:7c:63:5e:27:40:22:02:9a:28:bd:b7:5c:09:eb:a0:
3a:1d:13:d5:3b:d4:fb:5e:07:74:d7:03:78:77:23:ff:1b:c5:
35:0d:bf:f2:a0:46:f2:f5:14:91:88:7b:d4:30:f0:33:0c:04:
88:61:56:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:44 2024 by rpki-client on console-ams.rpki-client.org