Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/QHX8VlKuCFvHWJ38DpU9Q-2GePc.roa
File: QHX8VlKuCFvHWJ38DpU9Q-2GePc.roa (raw, json)
Hash identifier: qsI+NyqU0Dd3l19CoSuZTnVx5xztIkn5e0UZbIbkFzc=
Subject key identifier: 40:75:FC:56:52:AE:08:5B:C7:58:9D:FC:0E:95:3D:43:ED:86:78:F7
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 04CDC9F1
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/QHX8VlKuCFvHWJ38DpU9Q-2GePc.roa
Signing time: Sat 01 Jan 2022 15:05:53 +0000
ROA not before: Sat 01 Jan 2022 15:05:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198504
IP address blocks: 141.105.166.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80595441 (0x4cdc9f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: Jan 1 15:05:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4075fc5652ae085bc7589dfc0e953d43ed8678f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a1:81:b1:34:c9:3d:a2:02:be:45:42:79:66:
3e:f4:52:a6:ab:65:4c:21:cd:a3:73:f5:77:7b:c8:
36:e1:9a:b9:80:20:34:5a:ab:54:8a:55:4c:ea:ea:
9f:51:f8:6e:e3:7d:3a:b2:41:fc:92:9e:fa:ea:c0:
0a:a8:54:74:66:5e:63:f3:33:18:d3:04:a3:e0:e8:
43:c2:36:31:49:81:85:e7:3d:2d:f8:ce:1a:7b:4d:
65:f1:63:4f:8a:51:02:1d:a4:07:7b:2b:d5:fd:1d:
e4:04:45:10:8a:a5:14:05:7c:6e:63:0a:d2:37:63:
7e:66:87:dc:d2:76:2d:5c:98:92:26:1d:cd:a7:c0:
f1:33:c9:1f:6c:c8:49:e4:65:91:1c:4b:04:42:f8:
e0:6f:2c:64:b1:9f:26:1d:50:c1:80:f6:7e:62:b3:
d9:37:c2:62:87:dc:31:90:d3:ed:17:ef:1f:74:83:
81:e0:a0:64:37:3e:76:36:33:41:f6:38:5a:4b:7d:
6d:5b:92:a6:a7:46:82:77:ee:57:8c:cf:b7:d3:cf:
9c:c0:e4:66:b9:a6:e7:2d:9e:c4:e6:57:9c:d5:82:
d6:ca:35:0f:16:55:3e:7a:07:32:7b:9f:b5:ca:4f:
07:b6:4f:f2:f0:7a:4b:7e:89:32:60:5d:dd:5f:c3:
4e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:75:FC:56:52:AE:08:5B:C7:58:9D:FC:0E:95:3D:43:ED:86:78:F7
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/QHX8VlKuCFvHWJ38DpU9Q-2GePc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.105.166.0/23
Signature Algorithm: sha256WithRSAEncryption
d5:1c:0a:13:21:d0:92:59:fb:6b:1f:5c:56:ed:ab:0b:7d:08:
f6:a3:e1:f8:25:fd:29:a4:fb:3e:af:3c:ad:8b:a7:71:08:34:
69:af:7c:9c:d6:fe:09:97:0c:fd:44:22:2d:88:7e:dd:13:9f:
0c:54:c9:29:4d:85:6a:61:aa:93:95:a7:5c:a9:c8:9f:d7:d0:
f0:bb:f8:19:b6:58:63:66:0c:75:2c:15:e0:2b:ff:dc:08:f9:
6d:32:17:42:96:49:a6:24:f2:c6:81:7c:d8:3f:30:cc:73:87:
14:dc:08:a9:78:86:a1:35:e6:05:1d:e2:98:ba:4a:92:d7:a5:
d3:9e:44:00:e3:77:0f:4f:19:3e:1a:cb:1a:53:55:2f:09:1f:
81:e8:4f:83:c8:43:a1:b9:3a:cc:2f:75:c4:7b:fa:8d:a3:49:
4e:34:2e:70:54:5c:b3:26:97:1e:39:08:db:55:da:2f:42:0b:
b3:f8:5f:04:3e:09:02:b3:ce:c9:b6:2d:c9:5f:53:87:b6:6f:
9f:36:84:ee:f7:ed:ee:5b:61:ea:5e:b7:b8:6c:c5:d3:65:06:
a5:39:e7:9f:a6:e8:f1:bc:76:78:64:68:2c:f2:2f:a3:c6:55:
f0:08:0b:e0:52:9f:37:0c:45:fe:96:07:14:04:75:33:d7:4b:
5c:bf:93:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:14 2023 by rpki-client on console-fra.rpki-client.org