Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/qjRC32PClxjK4IwIHLby2RhPLms.roa
File: qjRC32PClxjK4IwIHLby2RhPLms.roa (raw, json)
Hash identifier: 2d7AVn1GSP1NPjWXUab72ZbRr18meuGYVI4PwF6qHck=
Subject key identifier: AA:34:42:DF:63:C2:97:18:CA:E0:8C:08:1C:B6:F2:D9:18:4F:2E:6B
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 079733D7
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/qjRC32PClxjK4IwIHLby2RhPLms.roa
Signing time: Sat 01 Jan 2022 02:52:51 +0000
ROA not before: Sat 01 Jan 2022 02:52:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.95.205.0/24 maxlen: 24
45.95.206.0/24 maxlen: 24
45.95.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127349719 (0x79733d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Jan 1 02:52:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa3442df63c29718cae08c081cb6f2d9184f2e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:53:58:4f:10:99:9a:29:18:b4:12:c1:15:15:
f8:c8:9c:08:1c:74:46:e4:a4:e0:a6:70:83:dc:b4:
82:38:f5:3b:5f:36:fb:0b:47:13:83:b8:04:2a:08:
5b:0e:c6:ee:4f:d7:ac:34:18:60:f7:0f:4e:39:13:
ae:e2:41:92:d3:73:6b:4e:80:fb:f2:e8:13:73:c1:
57:70:01:f1:73:b6:79:20:67:5a:17:cf:24:d4:e2:
87:0f:5b:42:b0:4d:18:6c:0a:fa:94:cb:8b:6b:b7:
58:e9:98:9d:aa:27:88:6b:be:7b:57:6a:22:08:25:
b0:9b:32:9b:21:7b:65:a6:93:6e:af:77:f6:e7:77:
dc:42:36:18:72:19:ff:8d:cf:53:3a:a1:29:92:fd:
01:06:45:54:1b:ce:41:29:98:05:3a:a1:23:ad:2b:
af:6a:a1:e2:46:19:5c:42:02:f4:f8:be:88:98:da:
1d:62:3a:ac:f8:96:d0:46:2e:3c:1f:68:9e:a2:bc:
17:05:ac:e3:fb:16:87:37:63:86:38:24:85:16:64:
c7:e4:0d:b4:c5:6a:36:5f:48:22:8b:31:25:dc:80:
c6:e6:6b:0b:df:02:60:74:84:46:b8:52:5b:db:cf:
cb:e4:51:c1:07:2c:d8:e1:ea:cd:02:42:4e:58:3c:
de:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:34:42:DF:63:C2:97:18:CA:E0:8C:08:1C:B6:F2:D9:18:4F:2E:6B
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/qjRC32PClxjK4IwIHLby2RhPLms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.205.0-45.95.207.255
Signature Algorithm: sha256WithRSAEncryption
1c:66:e8:3c:b6:7f:80:63:da:2b:d9:b6:32:69:6c:4a:a2:c9:
13:ec:bd:12:0f:53:b1:92:24:5d:c2:93:c8:18:2a:7b:04:f3:
d5:5c:48:34:cc:43:b7:23:5a:cd:51:e9:87:e9:6f:1e:e0:97:
cc:a0:d8:7c:5d:91:f6:6d:4e:30:59:0a:c1:5f:7e:3f:5d:72:
76:fb:16:24:14:df:dc:19:7e:53:fe:c5:f6:c2:8c:14:f4:ae:
ca:2d:f2:cb:28:8b:b2:98:59:20:e6:f1:dd:7a:12:43:b3:26:
03:5e:f1:dd:90:bd:44:af:31:4b:96:4c:fa:da:32:6e:8b:43:
d0:c7:ab:b3:fb:0c:cb:9d:c5:e8:46:cf:cb:bd:1d:59:99:f1:
7d:68:5f:50:45:8c:bd:7f:5f:0b:29:dd:c1:7a:7d:b0:3b:f9:
a9:5f:cb:c2:04:d9:31:40:1e:80:80:f8:ae:a9:23:3f:06:5a:
5d:fa:a5:42:be:2c:32:ac:55:df:89:c4:99:ee:28:dc:a0:5f:
66:ed:19:c7:17:6f:9e:70:b5:0e:82:4a:5f:48:f5:6d:2c:fe:
4d:0b:c7:5b:da:89:e9:83:4f:a6:5c:53:b8:9f:ed:99:1f:5c:
2e:03:5b:4b:d9:70:72:43:05:ed:d4:a6:3a:1f:38:78:fa:74:
0f:84:35:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:05 2023 by rpki-client on console-fra.rpki-client.org