Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/Qkgm5q4TwQlQXAytKNBUOxwxjnM.roa
File: Qkgm5q4TwQlQXAytKNBUOxwxjnM.roa (raw, json)
Hash identifier: 6tb3oYucMti5NMFgz+CqZjROhJN2pymQLhRFTLMj94o=
Subject key identifier: 42:48:26:E6:AE:13:C1:09:50:5C:0C:AD:28:D0:54:3B:1C:31:8E:73
Certificate issuer: /CN=92479cae284765d628044119009880d28a7560b1
Certificate serial: 05EEFDC2
Authority key identifier: 92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/Qkgm5q4TwQlQXAytKNBUOxwxjnM.roa
Signing time: Sat 01 Jan 2022 00:57:19 +0000
ROA not before: Sat 01 Jan 2022 00:57:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208929
IP address blocks: 45.15.88.0/22 maxlen: 22
2a0e:2380::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99548610 (0x5eefdc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92479cae284765d628044119009880d28a7560b1
Validity
Not Before: Jan 1 00:57:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=424826e6ae13c109505c0cad28d0543b1c318e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:73:6a:b2:e0:44:62:a8:01:88:dd:31:9c:42:
b6:bf:4f:d1:48:c6:c0:ac:ce:4c:78:67:2c:b9:2c:
07:97:f8:b2:93:1f:7d:3a:c1:c2:c8:60:27:a3:fe:
0f:9c:ef:65:d6:a6:1f:d2:40:58:e9:5f:da:37:8b:
93:96:a2:e6:81:09:eb:ee:08:03:a8:8d:89:4c:42:
d5:4a:7f:c9:8d:3f:50:38:97:85:ac:a0:5e:79:70:
98:4f:8e:5f:9b:23:dd:5c:fe:32:07:ec:68:6c:1b:
0e:4b:a7:41:4f:ad:ab:83:3e:57:40:b7:6a:d5:1c:
ef:97:d6:38:74:22:55:98:97:17:e6:82:46:86:44:
66:84:bd:a7:50:8b:3c:8d:2b:c1:2d:af:aa:01:d6:
eb:56:f9:f0:09:0b:c1:d6:5d:aa:86:10:ae:ba:5d:
53:d7:4f:f1:94:c4:e3:3d:a5:0d:76:bd:81:2a:16:
cd:e4:0a:04:95:04:41:51:7b:24:4a:c6:20:5a:94:
dc:80:9f:cb:74:34:92:f2:d9:ee:e8:bf:f1:c0:4c:
45:43:90:a7:cd:72:c1:4b:82:cc:79:c9:0f:11:e0:
91:0f:06:0d:5f:d2:6a:56:c1:6e:29:f6:52:9b:89:
95:ea:03:74:a7:96:fb:77:05:60:2d:0f:15:b9:bb:
94:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:48:26:E6:AE:13:C1:09:50:5C:0C:AD:28:D0:54:3B:1C:31:8E:73
X509v3 Authority Key Identifier:
keyid:92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/Qkgm5q4TwQlQXAytKNBUOxwxjnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.88.0/22
IPv6:
2a0e:2380::/32
Signature Algorithm: sha256WithRSAEncryption
2d:eb:8e:69:41:bf:60:86:60:23:a9:6a:89:81:3a:06:84:d8:
5c:16:02:5f:23:9e:b4:e7:ce:25:b9:a6:b4:88:2d:ab:cc:a2:
1f:d9:91:32:f5:6a:b5:17:a6:36:48:6f:85:9a:2f:8c:3f:4c:
25:a6:94:55:33:0d:ee:99:a1:17:5f:49:36:dd:34:e7:4a:20:
67:b3:2b:88:f6:e7:b5:13:c1:a7:51:ca:7c:64:e4:80:60:16:
ed:ad:0d:80:70:15:25:7c:a1:44:4a:0b:51:b5:a4:2c:ab:d3:
e9:77:93:8a:8f:97:6a:ec:dc:b1:d6:f5:2c:8f:64:76:5e:d3:
37:df:67:cf:54:f0:6b:05:3c:2c:8a:91:4b:4e:85:fe:cd:a5:
5d:97:e4:55:e2:53:a9:18:4d:d0:e3:e8:c1:33:d0:30:b6:68:
46:0a:3e:15:f1:12:11:5c:87:01:05:5c:8f:e9:0e:03:b3:4d:
85:24:68:96:c3:6a:f3:66:93:ec:63:1b:0d:be:c8:9f:89:af:
ce:dc:76:8e:d3:1c:1c:e1:b5:9d:cd:f9:f6:5c:c4:94:86:74:
d2:97:cc:2a:1a:6e:59:76:5c:29:60:99:62:3f:77:e6:c9:13:
88:64:dd:da:22:23:eb:e9:47:4e:c0:a3:99:0e:aa:ae:e2:2d:
06:b3:7c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:38 2024 by rpki-client on console-fra.rpki-client.org