Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/887c1e-38eb-40bc-91d9-19c8eff620d8/1/QlkCxmgu4l8JFOGZwLktqPN3z0s.roa
File: QlkCxmgu4l8JFOGZwLktqPN3z0s.roa (raw, json)
Hash identifier: H/KpNrqUXHNsRbL6TxruQu0PBjD71Ud4NzjwDS5oXbY=
Subject key identifier: 42:59:02:C6:68:2E:E2:5F:09:14:E1:99:C0:B9:2D:A8:F3:77:CF:4B
Certificate issuer: /CN=ec6c347064cfc942699fcd67c522b8924074ae4d
Certificate serial: 741128
Authority key identifier: EC:6C:34:70:64:CF:C9:42:69:9F:CD:67:C5:22:B8:92:40:74:AE:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Gw0cGTPyUJpn81nxSK4kkB0rk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/887c1e-38eb-40bc-91d9-19c8eff620d8/1/QlkCxmgu4l8JFOGZwLktqPN3z0s.roa
Signing time: Sat 01 Jan 2022 02:01:46 +0000
ROA not before: Sat 01 Jan 2022 02:01:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34939
IP address blocks: 146.19.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7606568 (0x741128)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6c347064cfc942699fcd67c522b8924074ae4d
Validity
Not Before: Jan 1 02:01:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=425902c6682ee25f0914e199c0b92da8f377cf4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1f:e5:a0:52:03:e6:33:36:9c:df:bc:21:fa:
ad:2a:4d:dd:6c:48:16:bc:75:79:9b:b0:b2:f8:b6:
9e:66:43:0c:54:de:34:c6:52:b0:7f:2e:eb:1f:7f:
5c:b3:c0:f9:70:66:f0:30:b9:c8:37:2d:cc:92:0a:
61:a1:0b:66:59:bf:4d:29:50:36:b9:04:b6:eb:0c:
83:8f:12:04:6e:b7:ec:53:6e:8c:f8:48:0e:97:96:
3c:c0:a1:9b:51:b6:5b:f4:31:aa:54:1f:48:38:42:
80:b7:35:ec:b0:5d:af:47:25:98:cc:e1:4d:c2:1b:
6d:57:d2:7a:81:44:17:bb:ba:0f:40:34:04:10:7f:
6e:09:48:62:98:40:67:eb:46:39:9c:a3:ab:5e:40:
7b:4d:da:b1:fc:6d:23:93:c2:f7:7f:de:64:11:2c:
52:44:af:05:88:3a:9e:de:77:2b:f1:6a:c6:5a:b5:
fb:7e:51:cb:ba:59:fa:35:49:84:e6:69:0d:aa:b0:
7f:eb:52:ad:76:8a:93:b2:c3:72:34:70:63:af:e1:
25:2a:a5:47:e7:62:dd:c3:3e:ef:00:51:c8:56:dc:
51:d9:0e:8e:a1:46:d5:35:ae:c2:08:f1:e5:88:f8:
ed:2c:3e:cf:55:aa:62:d4:a5:a9:9f:b0:c7:d8:44:
1d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:59:02:C6:68:2E:E2:5F:09:14:E1:99:C0:B9:2D:A8:F3:77:CF:4B
X509v3 Authority Key Identifier:
keyid:EC:6C:34:70:64:CF:C9:42:69:9F:CD:67:C5:22:B8:92:40:74:AE:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Gw0cGTPyUJpn81nxSK4kkB0rk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/887c1e-38eb-40bc-91d9-19c8eff620d8/1/QlkCxmgu4l8JFOGZwLktqPN3z0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/887c1e-38eb-40bc-91d9-19c8eff620d8/1/7Gw0cGTPyUJpn81nxSK4kkB0rk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.14.0/24
Signature Algorithm: sha256WithRSAEncryption
98:c3:2f:42:08:35:bd:7c:b8:66:88:16:26:23:62:05:4e:0a:
03:c3:2c:8e:b3:a3:1d:03:93:13:40:4b:42:ab:c7:2a:b3:07:
69:7d:95:88:04:c6:3a:c0:e1:71:c5:34:d6:41:c7:f7:7b:93:
1f:41:13:e1:fc:19:97:31:29:3d:4a:f8:bb:e9:12:1c:ba:7f:
33:56:58:3c:1e:6d:0d:74:59:6b:5f:04:5c:55:42:2c:21:46:
36:2b:10:47:55:a7:86:14:31:d7:f3:5f:1f:3e:d7:32:79:f3:
0f:06:d7:fc:0f:5a:34:06:e6:36:68:5b:ff:2c:a5:42:ea:2b:
6a:70:85:89:1a:da:0c:d3:24:09:b5:5f:4d:a4:61:d7:00:b9:
92:47:b4:df:da:65:e9:be:a7:7e:0b:52:35:ae:3f:ff:00:37:
d4:eb:d0:de:f3:ca:ad:ca:21:3f:f3:e2:cb:da:78:96:fd:fc:
0b:66:35:06:92:80:4c:7b:b5:72:6c:45:e4:86:54:a5:c5:ec:
f2:0b:ec:f9:2c:04:9b:20:7c:37:b8:eb:75:44:eb:6b:5e:b5:
fd:f8:c9:62:0c:a1:5d:13:7c:a6:70:7d:17:bc:4a:ca:85:1e:
80:f4:7c:d7:39:77:11:b1:32:8d:c8:04:f2:2c:40:60:33:f8:
1b:21:84:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org