Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/qmMw8acqZNCxq7h_clnD6YDm7BA.roa
File: qmMw8acqZNCxq7h_clnD6YDm7BA.roa (raw, json)
Hash identifier: iz9GIVhri4o3LyryUwp6H7YsZWRHv/TD4TMCHeAm+Mg=
Subject key identifier: AA:63:30:F1:A7:2A:64:D0:B1:AB:B8:7F:72:59:C3:E9:80:E6:EC:10
Certificate issuer: /CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Certificate serial: 3C4EC1EB
Authority key identifier: 96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/qmMw8acqZNCxq7h_clnD6YDm7BA.roa
Signing time: Sat 01 Jan 2022 13:57:38 +0000
ROA not before: Sat 01 Jan 2022 13:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203761
IP address blocks: 134.97.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1011794411 (0x3c4ec1eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=969948d0fe4d7f99d54ba8bffcd99a1a608ae0d3
Validity
Not Before: Jan 1 13:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa6330f1a72a64d0b1abb87f7259c3e980e6ec10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:24:f8:40:56:d6:6d:59:8c:54:3a:87:75:25:
b1:cc:13:3f:7b:9e:43:ae:51:4a:80:78:38:3c:85:
67:59:38:19:93:fc:c4:2a:79:f3:e3:35:46:6b:53:
4f:93:7d:71:d9:5f:50:76:34:b9:e1:06:42:d7:a9:
d8:f4:8c:8a:9c:0c:0e:4f:6f:71:a5:00:ff:2f:96:
8b:e5:7d:56:e1:34:1e:38:95:6c:c2:b3:86:af:a8:
28:ae:4b:97:2a:6c:58:d2:9f:70:53:51:ae:7c:12:
0f:c5:a8:7c:1c:a8:b9:cc:db:21:d6:a0:d3:68:b7:
ca:c2:b5:d1:d3:61:49:1d:7c:bb:e2:1e:26:0e:7a:
a6:f9:2f:bd:51:af:8f:56:ea:6f:61:5f:d5:2f:24:
b6:fa:b5:10:4f:44:31:06:71:60:8c:a1:6b:8e:03:
8e:e5:86:91:0e:68:1a:e0:b8:dc:f9:fe:ae:9e:f0:
0b:27:5b:42:89:53:41:d8:60:31:b7:e4:83:d2:d5:
a2:e6:56:d7:91:b1:3e:22:d1:ff:81:bb:e0:b6:c7:
11:7c:6a:f8:1b:e7:d3:07:e8:3f:3a:70:e1:c4:96:
26:3d:42:9c:cb:f2:ef:75:0d:eb:ae:72:f5:05:18:
3b:2f:85:82:50:25:24:c0:1c:50:2e:d8:e8:e9:2e:
68:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:63:30:F1:A7:2A:64:D0:B1:AB:B8:7F:72:59:C3:E9:80:E6:EC:10
X509v3 Authority Key Identifier:
keyid:96:99:48:D0:FE:4D:7F:99:D5:4B:A8:BF:FC:D9:9A:1A:60:8A:E0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lplI0P5Nf5nVS6i__NmaGmCK4NM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/qmMw8acqZNCxq7h_clnD6YDm7BA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1a2fa2-eeb3-4312-9130-53cc5daf52cf/1/lplI0P5Nf5nVS6i__NmaGmCK4NM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.97.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2d:10:dd:24:99:c6:9c:25:17:02:60:9b:31:36:9d:2b:f4:ec:
b4:f8:0d:db:13:56:21:92:89:06:ce:c9:39:8c:50:a7:cd:1a:
44:56:60:a9:ef:7e:1b:d4:b9:bd:d7:5b:60:c6:b2:63:e6:51:
ad:7f:02:30:55:53:b6:73:c2:56:ad:c5:51:ff:3c:7f:97:3c:
12:a0:87:e3:ea:82:b2:f2:cc:04:b0:3e:c3:5a:bb:00:e8:73:
1d:1f:42:a4:85:74:f8:16:ac:cb:81:95:75:d4:da:ee:94:3b:
bd:29:2e:8a:78:88:45:5e:0a:4d:57:cd:b9:97:3e:12:4e:6d:
a2:6e:0e:20:ea:eb:b4:53:ce:3e:2a:93:4a:20:23:6d:e5:d9:
97:eb:cd:39:28:d1:ee:3e:e6:d1:20:c6:96:be:90:93:1b:41:
1b:64:0d:b9:78:2b:c1:81:6b:43:e4:32:f4:93:dc:2e:40:98:
86:a7:c6:dc:0c:55:04:a4:d1:9b:6c:5b:54:44:c8:45:ad:b6:
11:a0:c5:c8:67:cd:4d:c0:8a:d0:46:f3:94:e1:68:89:ed:48:
14:07:1a:84:b6:d7:bd:cf:59:e3:99:93:83:88:6d:d5:ad:f6:
91:31:65:49:74:96:14:49:72:44:88:17:32:2a:b7:ec:da:37:
23:c0:3b:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:09 2024 by rpki-client on console-fra.rpki-client.org