Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/QOtZC3TG-YdEpJJxaIN_nJKIKlk.roa
File: QOtZC3TG-YdEpJJxaIN_nJKIKlk.roa (raw, json)
Hash identifier: zVkKpnB0B/puOhTw2KyFL8I9R6vbRb2AZcarF64ejUQ=
Subject key identifier: 40:EB:59:0B:74:C6:F9:87:44:A4:92:71:68:83:7F:9C:92:88:2A:59
Certificate issuer: /CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6
Certificate serial: 0182F85E8FA851F0452EE321974723306A93
Authority key identifier: 58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/QOtZC3TG-YdEpJJxaIN_nJKIKlk.roa
Signing time: Thu 01 Sep 2022 09:25:22 +0000
ROA not before: Thu 01 Sep 2022 09:25:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35228
IP address blocks: 82.132.138.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:5e:8f:a8:51:f0:45:2e:e3:21:97:47:23:30:6a:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b29e7b8a0ddb9c36c6e0e3f49577817b0ea3a6
Validity
Not Before: Sep 1 09:25:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40eb590b74c6f98744a4927168837f9c92882a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:19:21:d1:5a:67:25:93:ce:c0:64:f6:f1:2f:
fa:2e:f4:7e:e8:4c:ce:be:c5:f1:5a:0c:48:e3:54:
d0:1f:16:3a:09:79:9e:81:92:bf:19:d2:06:24:06:
29:2c:c4:fb:6f:95:b9:38:84:64:12:97:62:98:ef:
a1:d9:f8:01:a9:f3:77:62:a1:51:39:75:06:91:df:
af:95:e2:cb:e5:21:93:a5:b5:c5:27:2d:6f:28:a2:
ad:07:24:51:f0:59:28:fb:4a:bc:92:57:25:58:8b:
f9:4e:ff:4d:c8:f6:c3:b0:6b:b9:1e:a0:f9:7c:20:
88:37:e0:b0:f4:a8:73:c8:8d:64:ea:94:5e:2e:1c:
ba:1e:1e:b3:99:90:6a:b9:f0:2c:b1:ae:56:dc:53:
3a:24:62:7a:b9:9c:7b:d6:83:4a:cc:74:a9:ce:ae:
96:78:a4:f3:01:22:e6:2a:06:be:55:d6:42:fb:5d:
ab:bb:1a:8a:50:0b:c0:42:5a:77:8f:66:45:77:29:
1e:eb:8a:32:97:f7:9b:09:c8:b2:7c:14:16:b8:00:
92:45:3c:f4:9a:70:5d:df:1a:c5:1a:b8:34:90:f3:
07:0d:4a:4c:62:2b:04:30:43:5f:92:4a:67:31:fe:
71:e8:ce:9a:c4:6d:05:54:71:95:8e:65:37:42:46:
d8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EB:59:0B:74:C6:F9:87:44:A4:92:71:68:83:7F:9C:92:88:2A:59
X509v3 Authority Key Identifier:
keyid:58:B2:9E:7B:8A:0D:DB:9C:36:C6:E0:E3:F4:95:77:81:7B:0E:A3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKee4oN25w2xuDj9JV3gXsOo6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/QOtZC3TG-YdEpJJxaIN_nJKIKlk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2cb3bb-0ed1-4ecf-8af5-ee73fe21ed23/1/WLKee4oN25w2xuDj9JV3gXsOo6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.132.138.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:54:5a:bd:c3:33:96:b2:cb:e5:c0:31:14:7d:58:5c:6a:68:
a5:b6:64:be:18:c8:3a:5f:4e:ae:40:89:5f:b1:ca:fd:37:9e:
99:8b:39:2a:f1:ec:c4:43:de:a3:62:91:68:e7:d2:be:ad:c5:
3d:62:2a:e7:30:c6:f9:06:b1:e9:85:5f:9a:4c:89:99:48:b4:
e9:ce:ea:00:ea:c1:ad:1b:c7:27:53:e6:ce:2b:a9:a4:ea:e2:
75:d5:d9:31:4e:b4:3e:67:52:3a:89:f0:41:a2:fd:97:85:02:
8c:14:9d:cb:62:03:7c:32:07:f3:6d:c9:e9:41:c4:fb:b7:34:
56:d0:c9:e5:22:e8:80:2b:94:b4:fe:d2:5f:ff:51:95:5e:68:
25:6e:b8:a9:22:0d:db:46:17:35:fa:b0:04:6e:17:c9:fa:7f:
6c:34:07:ea:b4:fb:e6:09:ff:e2:cb:c1:66:1e:2c:40:83:8f:
a7:f5:5d:8b:19:01:8e:04:58:fa:5f:a3:83:1e:18:a5:b0:53:
92:3f:81:61:eb:73:39:ac:89:a7:7b:81:e5:22:b3:33:2a:46:
59:f1:a8:88:a1:40:22:fd:de:d5:9d:26:c0:32:b3:ce:cd:93:
d1:7d:31:3b:9b:0e:ed:29:f6:2a:17:63:57:87:03:a9:b0:9b:
20:d1:24:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:49 2024 by rpki-client on console-ams.rpki-client.org