Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/QBLeOnDME6B_SXDYCJmRHwhJUkE.roa
File: QBLeOnDME6B_SXDYCJmRHwhJUkE.roa (raw, json)
Hash identifier: Msk3Qatb7EqvsM8NiIIBTfdxZ5fJ67nfnMOHeLXjIJQ=
Subject key identifier: 40:12:DE:3A:70:CC:13:A0:7F:49:70:D8:08:99:91:1F:08:49:52:41
Certificate issuer: /CN=fb43195dcec60f59c2f89c8af902025d173bba6a
Certificate serial: 04F1DC
Authority key identifier: FB:43:19:5D:CE:C6:0F:59:C2:F8:9C:8A:F9:02:02:5D:17:3B:BA:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-0MZXc7GD1nC-JyK-QICXRc7umo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/QBLeOnDME6B_SXDYCJmRHwhJUkE.roa
Signing time: Thu 27 Jan 2022 10:30:11 +0000
ROA not before: Thu 27 Jan 2022 10:30:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 62.68.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 324060 (0x4f1dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb43195dcec60f59c2f89c8af902025d173bba6a
Validity
Not Before: Jan 27 10:30:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4012de3a70cc13a07f4970d80899911f08495241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7c:0e:b8:4a:25:03:79:6f:7c:eb:bd:be:66:
68:b4:88:94:10:ba:b4:f4:65:6c:94:fb:b8:d9:ea:
71:81:8e:3f:ea:cf:b3:13:0c:7f:8e:50:66:ed:ae:
29:f3:d0:58:e6:ed:4e:80:fd:56:aa:11:83:db:0c:
76:eb:10:e0:08:6e:72:f7:30:f1:b7:7a:e7:2b:f1:
72:7a:e9:11:8a:6c:eb:8c:14:a4:2a:b7:e4:eb:7b:
a3:26:c8:d0:bb:d3:7a:83:e2:2c:60:1f:07:3c:67:
5d:5d:1d:fa:94:e7:56:bd:ea:6f:8c:19:93:75:9b:
06:a4:71:d0:34:6e:97:8c:3b:be:ec:22:b6:d1:fc:
3f:bb:bb:a9:5c:99:f8:6a:f6:54:ca:bc:df:de:c4:
e7:f8:a9:50:af:f3:e5:3e:e5:6f:4c:95:97:ae:d6:
d8:fb:e5:9e:3e:43:10:63:1c:0c:20:9f:92:a7:23:
19:83:da:61:6f:b2:bb:09:ac:4b:92:c9:e0:fd:0e:
c7:9b:cf:dc:0a:07:2b:eb:bb:fb:e8:ba:57:11:cd:
4d:d5:f6:70:6d:87:d5:a1:53:3e:0a:17:d4:c0:22:
8c:28:5d:d4:a3:75:87:e7:3a:f6:3d:57:25:3e:71:
3d:23:d7:87:b6:44:b9:6c:91:ea:ad:8c:b8:2a:29:
22:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:12:DE:3A:70:CC:13:A0:7F:49:70:D8:08:99:91:1F:08:49:52:41
X509v3 Authority Key Identifier:
keyid:FB:43:19:5D:CE:C6:0F:59:C2:F8:9C:8A:F9:02:02:5D:17:3B:BA:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-0MZXc7GD1nC-JyK-QICXRc7umo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/QBLeOnDME6B_SXDYCJmRHwhJUkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/dfd6bf-c3a6-48cb-a2a0-5bc09dc1b080/1/1-0MZXc7GD1nC-JyK-QICXRc7umo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.68.80.0/24
Signature Algorithm: sha256WithRSAEncryption
34:56:b4:f2:47:84:3e:4f:21:f4:84:11:06:d4:c0:9b:7f:5f:
e8:0a:ce:69:5e:06:e0:bd:cd:cc:1e:59:c0:e3:bb:49:5d:b8:
4e:62:1e:9c:c7:7c:14:2e:89:60:dc:f7:27:02:ff:97:54:d9:
6c:50:b3:d3:57:fa:87:d8:ea:2f:9e:22:33:40:c3:db:a7:36:
6c:11:57:6b:c9:3a:5a:95:e6:b4:11:c5:59:80:2a:93:ea:a1:
c8:4d:a3:9f:9b:d9:a0:35:cb:0a:ce:cd:2a:f2:83:1d:4d:6f:
0a:e6:f3:05:82:fe:e6:c3:b0:c4:ae:ec:26:87:19:75:7d:0b:
15:f6:06:78:f4:1f:42:e0:3e:68:17:61:12:dd:dd:f5:a6:b2:
b8:85:58:1b:66:eb:f9:4c:39:9a:74:41:a7:a5:52:0f:50:3f:
da:ea:2f:22:9e:5d:df:54:33:43:72:c6:5b:5b:d4:d5:25:cf:
62:f6:d5:60:97:fc:4a:74:63:f4:58:41:72:b6:5a:dd:49:da:
03:68:80:86:1c:52:57:ee:15:5d:1a:fc:d3:fc:b7:66:e4:a1:
bf:24:e2:15:47:b3:41:db:19:8d:43:f5:e7:ef:0e:ad:d5:99:
63:9b:d0:a5:66:43:90:82:a0:d6:9d:91:4d:f0:e0:65:ae:88:
96:41:4a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-ams.rpki-client.org