Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/QpekHa7hLeNA9u_NByYv6XaJ3Z4.roa
File: QpekHa7hLeNA9u_NByYv6XaJ3Z4.roa (raw, json)
Hash identifier: 33c14fgYwSTyb7WU7YuWWwCqroLy7lujPTw0iD9f0j8=
Subject key identifier: 42:97:A4:1D:AE:E1:2D:E3:40:F6:EF:CD:07:26:2F:E9:76:89:DD:9E
Certificate issuer: /CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Certificate serial: 0B43C752
Authority key identifier: 12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/QpekHa7hLeNA9u_NByYv6XaJ3Z4.roa
Signing time: Sat 01 Jan 2022 12:04:11 +0000
ROA not before: Sat 01 Jan 2022 12:04:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47444
IP address blocks: 86.117.140.0/23 maxlen: 23
160.62.12.0/24 maxlen: 24
160.62.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188991314 (0xb43c752)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Validity
Not Before: Jan 1 12:04:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4297a41daee12de340f6efcd07262fe97689dd9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e4:3f:2c:b9:36:2d:73:92:cd:c7:a9:07:3a:
37:46:d6:7d:26:9c:d7:bc:ea:b3:28:ed:cb:d2:dc:
e6:d3:e1:3a:0b:8f:8c:15:85:e6:bd:6e:8a:be:70:
ca:99:f3:0d:cc:b8:77:59:6c:0a:d4:dc:0d:1d:d9:
4b:53:44:f3:de:55:f6:51:c4:3b:d6:51:9b:3a:a0:
39:d2:8d:cd:69:9f:5b:c4:58:25:04:7b:72:08:08:
d1:7e:67:47:bb:eb:83:71:06:f1:83:35:96:71:d5:
6c:57:c2:ee:58:4d:4d:8c:34:e4:dd:a9:b8:16:09:
14:2e:a8:f7:65:dc:b6:ab:99:eb:ab:de:fa:9c:6a:
3f:93:50:4a:4d:70:e6:21:75:02:80:39:35:bd:8a:
43:92:6c:73:3b:9a:da:99:80:d2:f8:e7:7a:11:06:
68:2b:52:22:f5:cc:14:7d:b3:27:0c:49:8b:9c:27:
68:1a:75:36:e0:94:87:c1:30:6c:f5:ed:dc:31:b0:
03:49:4e:a7:13:70:af:32:67:ad:f1:d9:a8:6e:31:
64:27:2b:b0:f2:7c:50:39:8d:c4:1f:a0:5e:c0:cc:
f3:85:b5:6c:81:97:47:dc:7e:b2:3d:66:68:d1:84:
3c:5d:f4:ee:78:db:91:8b:e1:ce:9a:33:93:7e:55:
c3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:97:A4:1D:AE:E1:2D:E3:40:F6:EF:CD:07:26:2F:E9:76:89:DD:9E
X509v3 Authority Key Identifier:
keyid:12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/QpekHa7hLeNA9u_NByYv6XaJ3Z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.117.140.0/23
160.62.12.0/23
Signature Algorithm: sha256WithRSAEncryption
98:55:05:e2:f7:75:a6:f7:b1:46:0c:d2:13:84:a5:0a:c2:67:
e9:23:bd:1c:1e:57:61:f6:e2:d1:38:4f:36:48:ec:ff:0c:69:
dc:ad:65:ef:25:60:0a:23:95:f1:43:25:07:c5:7c:37:6e:cf:
7f:88:c4:03:59:dd:4e:4b:a2:4d:dc:b6:93:46:4a:cb:af:1a:
2f:8f:c5:5f:ff:a9:f0:bc:7c:34:74:20:5e:9d:23:21:44:b0:
7c:72:b8:b5:82:3a:e4:26:10:11:fe:5c:ac:ba:e3:0c:85:7a:
ac:f6:c0:f6:83:e3:c0:90:41:f8:c8:b9:07:c9:db:75:94:a0:
4b:9f:33:44:e9:79:19:4b:a7:10:8a:ba:a7:e7:87:f2:7b:b0:
1f:44:4f:03:c7:d1:b3:c1:46:05:ae:4f:b4:19:50:a4:58:ad:
8f:13:a4:16:69:8a:d8:9b:9a:df:4b:c5:92:85:75:8a:e1:9b:
60:45:ab:7a:20:4d:b8:84:a4:85:a1:2d:ad:cd:e2:75:95:8c:
66:7f:32:a5:21:74:3b:06:db:12:45:5f:91:5b:82:22:83:55:
6a:0a:ea:7e:54:74:55:41:f5:86:df:2b:ff:21:04:2a:68:91:
78:15:9b:2a:8f:2f:2d:0f:d2:ab:14:a5:eb:a1:a1:4c:12:39:
b7:cc:c3:63
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEC0PHUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MjI0ZTVlZmYxYWJjMGU2ZDhiZjAyOWU0ZjczMmUwYWI3MWJjMTZhMB4XDTIyMDEw
MTEyMDQxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDI5N2E0MWRhZWUx
MmRlMzQwZjZlZmNkMDcyNjJmZTk3Njg5ZGQ5ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALXkPyy5Ni1zks3HqQc6N0bWfSac17zqsyjty9Lc5tPhOguP
jBWF5r1uir5wypnzDcy4d1lsCtTcDR3ZS1NE895V9lHEO9ZRmzqgOdKNzWmfW8RY
JQR7cggI0X5nR7vrg3EG8YM1lnHVbFfC7lhNTYw05N2puBYJFC6o92XctquZ66ve
+pxqP5NQSk1w5iF1AoA5Nb2KQ5Jsczua2pmA0vjnehEGaCtSIvXMFH2zJwxJi5wn
aBp1NuCUh8EwbPXt3DGwA0lOpxNwrzJnrfHZqG4xZCcrsPJ8UDmNxB+gXsDM84W1
bIGXR9x+sj1maNGEPF307njbkYvhzpozk35Vw+UCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRCl6QdruEt40D2780HJi/pdondnjAfBgNVHSMEGDAWgBQSJOXv8avA5ti/
Ap5Pcy4KtxvBajAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VpVGw3X0dyd09iWXZ3S2VUM011Q3JjYndXby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvMTFiZTIzLTNiZTYtNDg4MS1hM2QxLTUzODZiMWQ5NjNiYy8x
L1FwZWtIYTdoTGVOQTl1X05CeVl2NlhhSjNaNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
MTFiZTIzLTNiZTYtNDg4MS1hM2QxLTUzODZiMWQ5NjNiYy8xL0VpVGw3X0dyd09i
WXZ3S2VUM011Q3JjYndXby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAVZ1jAMEAaA+DDANBgkqhkiG9w0B
AQsFAAOCAQEAmFUF4vd1pvexRgzSE4SlCsJn6SO9HB5XYfbi0ThPNkjs/wxp3K1l
7yVgCiOV8UMlB8V8N27Pf4jEA1ndTkuiTdy2k0ZKy68aL4/FX/+p8Lx8NHQgXp0j
IUSwfHK4tYI65CYQEf5crLrjDIV6rPbA9oPjwJBB+Mi5B8nbdZSgS58zROl5GUun
EIq6p+eH8nuwH0RPA8fRs8FGBa5PtBlQpFitjxOkFmmK2Jua30vFkoV1iuGbYEWr
eiBNuISkhaEtrc3idZWMZn8ypSF0OwbbEkVfkVuCIoNVagrqflR0VUH1ht8r/yEE
KmiReBWbKo8vLQ/SqxSl66GhTBI5t8zDYw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org