Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qxFR4nfE-gnzQqh75B_pqTIyUic.roa
File: qxFR4nfE-gnzQqh75B_pqTIyUic.roa (raw, json)
Hash identifier: 2BE9SX5HdUONKnfx1m74z16Z9Ho4AGvZ+V5mTQj3D8A=
Subject key identifier: AB:11:51:E2:77:C4:FA:09:F3:42:A8:7B:E4:1F:E9:A9:32:32:52:27
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 3898C6AF
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qxFR4nfE-gnzQqh75B_pqTIyUic.roa
Signing time: Sat 01 Jan 2022 05:54:29 +0000
ROA not before: Sat 01 Jan 2022 05:54:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212496
IP address blocks: 159.148.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949536431 (0x3898c6af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab1151e277c4fa09f342a87be41fe9a932325227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:76:b5:05:26:c8:b1:df:90:be:37:ad:ed:7a:
ba:4a:75:04:d1:da:c0:74:02:58:f9:4e:7f:92:cf:
60:48:8e:63:da:1d:ef:0d:78:d0:61:a3:e6:7c:34:
29:08:7c:69:be:66:36:16:14:7e:ce:f1:22:ca:44:
5f:62:5c:25:89:96:0e:28:41:88:0f:3a:46:94:a3:
e3:68:9f:b6:fe:e3:ff:78:3b:ff:68:83:36:a4:fe:
68:7d:e8:6e:b1:93:b8:e4:f7:b2:95:5c:1b:2b:83:
ae:c6:07:e6:3e:0c:09:78:89:fc:1b:15:23:f6:53:
32:6f:cd:6f:25:08:aa:9c:3c:fb:5b:30:0b:a3:5c:
5e:1e:32:0a:7f:dd:2d:ee:44:16:bc:af:2b:7f:79:
0f:71:e2:0d:4b:8d:ae:32:dc:bb:76:86:e8:9d:ec:
36:0c:7e:28:e1:b4:a0:d1:ad:5e:51:e5:bb:c0:ae:
32:87:01:84:2f:95:ca:38:bb:8d:7e:90:91:e2:27:
d2:b7:e4:f2:e9:2b:9f:8e:9b:76:76:4b:f6:e6:da:
69:3c:5f:49:1a:24:54:eb:89:ae:f3:de:54:e5:42:
50:74:64:f4:fc:44:c2:78:5b:c8:59:1a:66:cc:70:
c7:12:71:e5:f3:ef:bd:8b:11:2c:16:08:6a:ea:c5:
41:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:11:51:E2:77:C4:FA:09:F3:42:A8:7B:E4:1F:E9:A9:32:32:52:27
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qxFR4nfE-gnzQqh75B_pqTIyUic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.38.0/24
Signature Algorithm: sha256WithRSAEncryption
99:45:c0:23:28:33:7e:b9:43:bf:77:b7:29:1e:d9:94:e2:05:
6e:d0:f9:87:31:6b:39:47:84:27:68:44:9a:4f:26:4e:36:0f:
ba:a0:6e:f5:23:7d:e3:82:71:d7:c6:d3:66:b8:b3:d1:1b:8c:
1d:31:f8:ec:fd:2c:83:43:04:2d:19:79:02:3b:e0:7c:4f:1e:
03:13:19:75:17:ea:14:85:31:7b:17:2a:8e:b4:2f:87:98:51:
6b:72:f9:98:fe:5d:11:be:d5:0b:64:c8:62:0a:2e:78:ea:24:
18:1f:36:a4:34:4e:ae:2d:47:e6:95:db:e0:b5:21:09:03:25:
22:dd:18:65:25:af:4f:9d:bb:3d:ee:0f:1e:78:e7:f9:bd:26:
21:bb:81:c9:7c:d3:40:05:e6:cc:94:8c:17:2e:b0:d6:43:61:
e0:6d:da:c6:a5:d8:3e:a9:9d:4c:e8:6a:ca:84:e2:4b:4d:2a:
8b:42:8f:34:f3:08:5f:54:6f:a8:2e:70:e3:7c:5b:af:33:d3:
5f:72:f6:c2:22:e9:c2:07:ac:fa:51:44:93:21:22:37:77:ea:
95:2f:6a:b2:bd:3d:b6:68:e7:8d:9c:e0:1a:49:e2:50:8e:45:
8e:84:85:02:79:fb:86:bc:82:9e:3c:77:4e:0a:b7:dd:4d:28:
01:69:de:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-ams.rpki-client.org