Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/qW2tqf-x-je06BX4_s1NtyH2im0.roa
File: qW2tqf-x-je06BX4_s1NtyH2im0.roa (raw, json)
Hash identifier: QdbTBsqt61fe3hfhkqbo5wHqF3qGS/VOtlo+TFVAZpM=
Subject key identifier: A9:6D:AD:A9:FF:B1:FA:37:B4:E8:15:F8:FE:CD:4D:B7:21:F6:8A:6D
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 19366792
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/qW2tqf-x-je06BX4_s1NtyH2im0.roa
Signing time: Sat 01 Jan 2022 11:57:11 +0000
ROA not before: Sat 01 Jan 2022 11:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59677
IP address blocks: 85.121.4.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422995858 (0x19366792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 11:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a96dada9ffb1fa37b4e815f8fecd4db721f68a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c7:35:61:df:2a:d2:e7:ca:6a:71:f3:6b:7a:
05:6d:9c:89:09:b0:ad:17:39:25:e7:47:b3:66:94:
9a:74:ec:53:57:8c:cb:40:9b:10:16:13:e4:8c:95:
72:2b:10:e7:41:99:18:79:39:d1:23:4d:68:fd:fa:
95:92:93:ec:69:14:fe:17:f7:89:10:c8:93:90:f8:
e9:78:72:0b:af:41:45:84:c5:29:ab:db:49:63:36:
7f:27:16:0b:41:3c:73:82:f3:fa:33:a4:37:83:3a:
53:a6:82:7f:d2:89:2e:da:85:66:6c:5d:f4:d0:7a:
a3:82:fa:2b:2f:00:33:18:6b:06:b0:a1:33:c6:d2:
4b:d3:f1:3f:f0:2d:ff:40:a6:d1:28:05:e0:59:30:
63:6e:95:4f:50:2a:f6:a2:88:f6:19:7c:17:d2:87:
74:c4:d3:9a:0d:db:a0:58:a9:e3:fb:e1:1b:53:52:
5a:3b:bc:e1:e1:85:53:fb:6e:c3:ca:69:88:19:25:
91:13:40:61:60:8c:90:58:3e:0c:38:eb:48:36:df:
b2:d4:ff:20:c2:b5:9a:5d:36:6f:9d:6a:ee:39:4a:
cc:37:32:fc:b3:7d:59:5b:b0:08:db:b5:d1:16:0c:
4d:b1:fa:24:89:1a:fc:a0:ed:c2:9e:c9:e3:7a:25:
75:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:6D:AD:A9:FF:B1:FA:37:B4:E8:15:F8:FE:CD:4D:B7:21:F6:8A:6D
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/qW2tqf-x-je06BX4_s1NtyH2im0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.121.4.0/23
Signature Algorithm: sha256WithRSAEncryption
76:2d:24:41:91:c3:aa:50:e8:4a:ce:46:1b:e1:f3:e8:b1:cd:
96:d6:13:0f:90:b9:79:aa:6b:b3:30:9a:bd:4b:69:e0:75:6a:
e8:b2:2e:52:32:f3:72:38:39:79:d5:f3:45:af:95:c8:4b:74:
93:a4:9e:b4:6a:76:b1:5a:52:92:34:14:86:a9:c7:b4:c2:9b:
fa:ab:3a:a7:56:21:6d:b1:9a:a0:9a:2b:01:c6:7c:20:6d:07:
e4:7d:31:92:f0:ec:d3:31:ab:10:fa:4e:76:f5:ac:f9:ab:d0:
28:3a:8e:6f:64:00:a1:ff:f4:78:56:61:3b:7b:e4:3a:33:eb:
45:2c:67:29:b3:04:3f:e9:91:9f:2a:8d:d7:b7:91:23:eb:65:
ca:15:91:af:d2:dc:5f:2a:69:43:f7:ac:46:9d:0e:ba:48:9f:
24:41:cf:59:29:9c:02:1b:ca:5b:3d:7a:c8:2a:00:9b:e9:eb:
fd:3e:6c:24:2a:f1:ce:c2:c3:93:fa:e7:53:50:cc:4b:80:2f:
28:b0:cf:bf:e1:12:e8:fa:47:90:40:e8:95:de:4a:a0:a3:c0:
37:3f:20:8d:47:c2:77:1a:d4:02:f2:3e:a4:18:11:ad:e0:cd:
ec:78:c3:d1:eb:e2:8a:04:df:25:05:b8:50:49:4d:9b:ed:b6:
47:80:ed:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-ams.rpki-client.org