Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/fe59a1-2a56-4694-b4c7-d80b3c1f9d73/1/QEwY7x_ai68Eg-JxOGuNw46AClE.roa
File: QEwY7x_ai68Eg-JxOGuNw46AClE.roa (raw, json)
Hash identifier: L67RHcSrjEbuZJtyFlTlcKsjA5g5zz5J85DPlfVF/Z4=
Subject key identifier: 40:4C:18:EF:1F:DA:8B:AF:04:83:E2:71:38:6B:8D:C3:8E:80:0A:51
Certificate issuer: /CN=8e045bfecd2bbe24d33f5309db47c8aa77a3b10c
Certificate serial: 01847AC9EBEFAE4869D69D0881D740D166AA
Authority key identifier: 8E:04:5B:FE:CD:2B:BE:24:D3:3F:53:09:DB:47:C8:AA:77:A3:B1:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jgRb_s0rviTTP1MJ20fIqnejsQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/fe59a1-2a56-4694-b4c7-d80b3c1f9d73/1/QEwY7x_ai68Eg-JxOGuNw46AClE.roa
Signing time: Tue 15 Nov 2022 10:16:04 +0000
ROA not before: Tue 15 Nov 2022 10:16:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12447
IP address blocks: 77.75.24.0/21 maxlen: 24
185.132.96.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:c9:eb:ef:ae:48:69:d6:9d:08:81:d7:40:d1:66:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e045bfecd2bbe24d33f5309db47c8aa77a3b10c
Validity
Not Before: Nov 15 10:16:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=404c18ef1fda8baf0483e271386b8dc38e800a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9f:8e:8e:db:a6:a4:50:13:be:86:5e:d5:af:
0a:82:15:03:c9:8a:6e:ec:a3:22:27:83:e3:34:93:
cf:84:6a:19:2c:7b:43:82:f0:d9:34:79:3d:2f:65:
ef:b6:33:ec:83:ea:9d:b8:37:b4:8b:65:d9:11:31:
d5:56:34:fb:05:90:61:f7:a9:6c:d0:38:a4:00:c1:
2f:2e:7c:c4:99:07:ad:a0:3d:d0:55:1e:e3:2b:ef:
e0:44:0b:db:6d:bc:92:55:17:f2:30:1a:91:0f:24:
6d:fd:dd:10:8d:8e:5b:fd:b7:54:fe:9a:75:dd:73:
2b:5f:a5:c2:40:24:0b:c7:94:d6:f2:a5:12:98:e5:
92:ea:7e:da:41:22:0a:3d:cc:64:80:64:77:ba:1b:
c0:87:73:30:8f:70:d6:ed:77:e1:fd:d6:3c:e3:73:
f4:6c:88:bc:33:bc:0f:6a:31:5b:ea:ca:4d:5f:a2:
a7:d3:fa:9f:f3:34:c3:51:b9:8b:e3:49:cf:42:c3:
5b:2f:36:d7:53:76:0b:e6:10:2a:25:7a:2a:2a:6b:
9c:a2:c1:ed:0a:e5:e7:46:57:df:00:7b:aa:f2:38:
cb:da:1f:be:83:f8:84:d0:cd:fa:80:e7:b4:21:b4:
5b:51:6f:d0:32:f2:0d:1a:7a:3e:58:44:ae:05:64:
6f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:4C:18:EF:1F:DA:8B:AF:04:83:E2:71:38:6B:8D:C3:8E:80:0A:51
X509v3 Authority Key Identifier:
keyid:8E:04:5B:FE:CD:2B:BE:24:D3:3F:53:09:DB:47:C8:AA:77:A3:B1:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jgRb_s0rviTTP1MJ20fIqnejsQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/fe59a1-2a56-4694-b4c7-d80b3c1f9d73/1/QEwY7x_ai68Eg-JxOGuNw46AClE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/fe59a1-2a56-4694-b4c7-d80b3c1f9d73/1/jgRb_s0rviTTP1MJ20fIqnejsQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.75.24.0/21
185.132.96.0/22
Signature Algorithm: sha256WithRSAEncryption
54:61:ed:44:08:4a:13:a2:75:6a:fe:49:a1:8f:de:2d:87:aa:
5a:6c:1c:51:f8:26:aa:b2:83:3f:9a:df:82:60:be:86:66:6b:
a7:b6:21:68:e7:e3:a5:76:8b:84:7e:37:c9:91:74:59:08:9e:
42:e3:e3:17:28:10:17:5d:08:61:01:f4:3b:00:dc:f9:d3:aa:
25:7d:30:e6:ab:2a:60:ee:ad:22:38:58:c1:82:90:cd:93:f6:
ac:8c:fc:c8:67:d0:00:30:c5:02:1a:4a:fd:0d:13:95:05:8d:
66:74:cc:96:c1:aa:bf:ed:ca:5e:48:39:b2:1f:81:a5:7e:aa:
59:56:b8:f3:2c:76:0d:a7:6f:d0:b1:9a:01:6e:77:81:87:1a:
0f:89:2e:64:f1:e8:54:27:9a:5a:d5:43:21:18:25:e2:03:35:
3a:1b:59:45:a9:db:1a:56:41:65:f3:08:ba:c4:3a:41:77:ff:
07:a1:14:b5:5f:4e:7a:f9:39:24:ef:26:72:6a:91:7c:f9:89:
b8:23:b0:7c:32:05:8b:e7:d8:7f:c1:41:b2:e3:92:70:73:07:
fe:88:42:30:bf:6f:0f:cb:cc:b5:f7:80:29:34:5e:02:57:db:
b5:49:33:b6:c5:e0:d5:8b:ca:35:7a:e1:b4:4f:0f:d8:86:40:
aa:c5:ac:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:30 2024 by rpki-client on console-fra.rpki-client.org