Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/qQnRbjdXagVEC7uTkXgZ7XtPk2Q.roa
File: qQnRbjdXagVEC7uTkXgZ7XtPk2Q.roa (raw, json)
Hash identifier: u0ROjtC1taO/kWd4awtxk2wh+YTttQNLOgzSmb+Y8yQ=
Subject key identifier: A9:09:D1:6E:37:57:6A:05:44:0B:BB:93:91:78:19:ED:7B:4F:93:64
Certificate issuer: /CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Certificate serial: 34841530
Authority key identifier: B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/qQnRbjdXagVEC7uTkXgZ7XtPk2Q.roa
Signing time: Sat 01 Jan 2022 14:55:19 +0000
ROA not before: Sat 01 Jan 2022 14:55:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64439
IP address blocks: 37.60.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 881071408 (0x34841530)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2
Validity
Not Before: Jan 1 14:55:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a909d16e37576a05440bbb93917819ed7b4f9364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d3:c0:38:bc:50:82:7a:81:60:85:b4:3a:25:
28:42:80:4c:f1:ab:3e:5a:f2:e7:eb:93:3d:48:98:
a0:a1:53:b5:72:82:6d:17:83:e6:cc:af:33:e1:25:
ec:c3:4e:f8:25:3d:6f:31:e5:7f:cd:cc:b7:de:c5:
c2:d3:36:a8:57:50:3f:75:6b:f3:2f:35:fe:6b:a9:
fa:8a:21:63:52:65:db:22:65:80:0b:bb:a1:42:6a:
7d:2a:0f:38:40:0d:0e:ce:06:f0:85:c5:e5:11:0a:
33:9c:f3:dd:06:19:a7:54:0f:87:b3:23:32:3f:06:
41:d9:6e:ba:9a:f8:a5:28:a7:99:b7:6b:39:01:d8:
27:9e:e5:8b:ae:15:43:09:52:92:b1:02:83:a7:3a:
20:10:ff:84:ee:08:3a:0e:75:a5:31:04:74:2a:87:
29:7c:01:6f:3f:ca:5a:c5:59:14:e0:45:d7:a5:39:
80:27:bc:f7:a1:34:68:22:67:85:65:a3:d4:5d:3a:
98:a3:d1:99:9b:0f:e3:a0:9e:52:43:96:79:91:6e:
7b:e2:34:0e:69:ad:72:c4:be:c2:3f:cb:8c:ef:3c:
0a:0a:4a:af:59:ac:4f:08:4f:3a:d5:0e:70:72:42:
09:e5:a0:2a:e7:f8:c0:c3:60:4e:1e:17:97:25:d8:
b5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:09:D1:6E:37:57:6A:05:44:0B:BB:93:91:78:19:ED:7B:4F:93:64
X509v3 Authority Key Identifier:
keyid:B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/qQnRbjdXagVEC7uTkXgZ7XtPk2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.177.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:9d:91:18:e4:46:22:78:e1:8e:ee:8d:a5:4e:f0:4d:14:50:
c7:54:d4:dd:e2:4d:77:ef:e5:48:50:bb:72:2d:46:d8:4c:2e:
f1:50:ea:fb:68:d0:7f:3a:28:f1:66:1a:b0:4e:33:57:70:5c:
76:1c:8c:b4:2a:70:0c:6d:3f:f4:e2:02:97:a7:91:42:57:68:
46:28:de:72:2e:4e:4d:8b:e2:ce:17:0f:06:f9:c9:f7:98:46:
36:a6:8c:05:53:10:dd:3b:52:83:d5:ae:d0:24:f4:59:cb:ea:
9d:7b:b5:be:4b:9e:fc:89:25:ce:b0:35:20:ea:54:6a:36:c0:
ac:3c:33:2c:80:b4:87:e7:b0:ed:0c:3c:83:63:2f:06:05:d8:
f1:e0:d2:51:e5:76:5a:e8:02:33:73:7b:3d:18:26:ae:f2:6e:
c1:9a:70:1c:94:9f:76:4c:65:0b:68:11:b8:7e:ec:88:32:8f:
54:48:31:b5:e7:70:64:27:5e:a3:e1:94:e2:ca:c4:00:df:25:
af:b3:f6:8b:71:66:d7:a4:67:23:34:49:23:a2:a9:b9:b7:35:
4c:4f:d8:99:21:4f:2d:45:63:b7:3c:8e:92:84:f2:ef:f7:7b:
8e:8e:51:65:41:f3:67:d3:1e:f4:93:29:ad:09:18:08:ef:96:
e2:c5:48:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org