Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/qgxDDH69tl-HuuFaNR-bD_0Ak1M.roa
File: qgxDDH69tl-HuuFaNR-bD_0Ak1M.roa (raw, json)
Hash identifier: TBHhVeTmIIvWa5CCedGyvDDeP0WBxsENkTTW2yyfqV8=
Subject key identifier: AA:0C:43:0C:7E:BD:B6:5F:87:BA:E1:5A:35:1F:9B:0F:FD:00:93:53
Certificate issuer: /CN=7a350d024af01f8eaf125717caa03aafad184e1d
Certificate serial: 1474950F
Authority key identifier: 7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/qgxDDH69tl-HuuFaNR-bD_0Ak1M.roa
Signing time: Sat 01 Jan 2022 15:57:24 +0000
ROA not before: Sat 01 Jan 2022 15:57:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56974
IP address blocks: 109.104.248.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343184655 (0x1474950f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a350d024af01f8eaf125717caa03aafad184e1d
Validity
Not Before: Jan 1 15:57:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa0c430c7ebdb65f87bae15a351f9b0ffd009353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f3:d1:bf:f1:ce:87:70:5c:61:a5:2a:2d:5a:
5e:7a:16:b9:0b:1a:5c:55:a4:b5:2c:09:84:f0:ab:
21:19:68:5c:6c:d3:4c:38:69:da:02:65:9f:41:4c:
73:56:ae:81:7c:8a:a1:dd:1c:b4:45:98:26:9b:24:
bf:f9:7c:ab:5e:c2:c1:f5:c3:d3:ef:b6:e5:81:24:
90:90:4a:d5:7c:c9:7c:42:aa:ac:85:09:57:79:58:
92:33:d6:dd:52:bd:5a:37:89:09:0a:f6:ee:16:ae:
76:19:c7:dd:1d:28:ed:b8:75:99:9f:94:ef:09:fb:
05:83:08:59:54:5f:ee:f1:c0:5d:05:3d:cd:31:f3:
eb:63:6b:75:b9:14:ab:70:56:74:0c:95:55:76:6e:
19:1f:7c:e5:29:d7:f9:20:75:a5:d2:c6:fe:68:65:
17:fa:74:2e:61:6a:9e:b0:d5:e6:5b:6d:c2:b8:2b:
bb:f3:57:65:9e:6f:98:6c:4b:a7:5d:63:c7:2a:fb:
a0:2e:0a:e9:25:bf:63:d5:e1:e6:51:1f:c8:57:78:
06:60:26:7c:8f:cb:ef:bf:02:cc:be:4d:cf:b1:15:
f1:33:b4:c8:f3:98:bc:2d:dd:19:4b:c8:35:2e:c1:
b4:41:ef:b4:ba:d3:63:1e:f2:3b:12:2b:b8:0c:f0:
9d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:0C:43:0C:7E:BD:B6:5F:87:BA:E1:5A:35:1F:9B:0F:FD:00:93:53
X509v3 Authority Key Identifier:
keyid:7A:35:0D:02:4A:F0:1F:8E:AF:12:57:17:CA:A0:3A:AF:AD:18:4E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ejUNAkrwH46vElcXyqA6r60YTh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/qgxDDH69tl-HuuFaNR-bD_0Ak1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7966ae-9c88-43e9-b899-d003e56fe753/1/ejUNAkrwH46vElcXyqA6r60YTh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.248.0/22
Signature Algorithm: sha256WithRSAEncryption
40:0e:1a:6b:e6:a1:81:c3:07:b9:9b:1f:1c:b7:dd:23:5d:bd:
2e:bd:1f:d3:4b:04:bf:df:4b:ac:d1:89:19:f9:6e:a6:00:5a:
36:2e:1c:e4:27:2b:71:08:dc:4f:30:38:f9:4f:b1:78:4c:59:
f2:41:74:32:f2:f0:f7:5d:5f:af:78:92:02:49:c4:21:fa:34:
5f:c9:a4:57:16:55:4a:a0:d4:c1:a1:f4:ba:43:e1:30:83:f0:
8a:9f:d7:c3:e1:40:e9:aa:fd:cc:5c:2c:f0:93:70:0f:92:2a:
24:ac:f4:f7:5c:2f:85:d2:59:f2:54:49:6f:56:13:9b:a4:84:
d9:76:b0:d6:7c:c8:0e:54:c6:8b:64:74:ca:b5:f6:ee:64:44:
18:df:05:a9:1c:7a:9f:be:f4:f5:87:42:ca:5c:53:9d:f3:5e:
3d:c0:7c:a7:df:af:4f:40:b9:0b:b5:8a:fb:10:c9:95:12:4b:
10:b4:24:13:57:f1:f7:45:3b:40:37:04:3f:c2:79:54:5d:a5:
a0:02:83:12:50:1f:34:ad:d4:00:54:70:13:57:0e:fa:e7:cc:
2c:13:01:ff:fd:77:fc:69:dc:1e:44:60:b5:5e:c9:60:e0:aa:
c5:19:af:4e:51:4a:72:29:32:33:e6:0d:86:a1:1e:24:83:a9:
eb:e1:2a:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:25 2024 by rpki-client on console-ams.rpki-client.org