Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/QxjMtoFISyWHN9r5QiN1g_QE_4s.roa
File: QxjMtoFISyWHN9r5QiN1g_QE_4s.roa (raw, json)
Hash identifier: HNoA+Q/z+BTMma/TwX9lGv9bDk1HBuUM6glKWZZ3YAM=
Subject key identifier: 43:18:CC:B6:81:48:4B:25:87:37:DA:F9:42:23:75:83:F4:04:FF:8B
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 01821AC7941A8F259030F635760B3642A347
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/QxjMtoFISyWHN9r5QiN1g_QE_4s.roa
Signing time: Wed 20 Jul 2022 08:44:23 +0000
ROA not before: Wed 20 Jul 2022 08:44:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 45.151.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:c7:94:1a:8f:25:90:30:f6:35:76:0b:36:42:a3:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Jul 20 08:44:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4318ccb681484b258737daf942237583f404ff8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:75:2a:8f:e0:c4:cd:29:1b:c3:89:91:35:66:
a1:a5:57:5b:95:16:99:ca:51:d7:3c:3e:c0:ff:98:
51:cc:f9:b8:46:76:c3:9c:eb:98:48:ee:05:0b:a5:
39:a9:84:ba:dc:c2:65:01:4f:a1:77:12:c2:b8:13:
29:d3:3e:28:98:76:fb:30:c0:72:64:51:01:21:51:
08:5f:c8:39:72:6d:ca:4b:18:a9:cf:2f:bb:cd:92:
9d:2d:34:b4:aa:b1:34:6f:ed:4c:42:e9:40:3a:17:
d3:b1:9d:7c:87:9d:10:80:41:2c:af:9f:a6:d6:74:
dd:2b:aa:14:e2:6c:97:62:6f:bc:85:32:73:84:48:
8d:9d:76:45:20:8a:e1:27:76:f4:09:06:c4:78:98:
ba:da:42:78:fc:29:95:a4:31:52:51:b5:5e:7c:a3:
7f:8d:a3:a2:83:6e:b5:e3:ef:1e:8f:a3:65:c0:4a:
de:57:be:e2:4d:20:b3:d4:f1:71:6a:18:03:9b:06:
94:58:65:ae:99:ca:9b:75:04:37:f3:55:cb:05:bc:
b8:71:b7:8b:93:ff:fe:13:d0:a9:7e:8d:23:da:d8:
7e:53:19:43:73:21:07:d4:0f:e6:af:64:a8:31:b8:
a6:58:02:42:1c:46:1a:52:5c:b4:74:d8:e0:f6:aa:
72:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:18:CC:B6:81:48:4B:25:87:37:DA:F9:42:23:75:83:F4:04:FF:8B
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/QxjMtoFISyWHN9r5QiN1g_QE_4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.97.0/24
Signature Algorithm: sha256WithRSAEncryption
74:42:1e:36:9e:95:c7:36:c2:e9:e9:03:5e:dc:26:25:a2:ac:
54:30:f4:71:e3:25:98:8f:fb:ed:b9:87:99:68:32:a4:19:8f:
76:42:24:ac:f9:28:a6:f1:4d:32:c8:8f:92:1e:04:8b:9a:bf:
37:01:b5:73:e8:a3:fe:d0:64:5d:52:aa:be:a3:94:4d:59:92:
2b:1d:9f:5d:50:a0:ba:8e:4b:cc:cd:7f:a3:06:2a:93:b1:10:
d1:72:ad:46:80:c7:3d:1e:b4:a3:c5:ed:43:64:97:21:49:44:
82:95:43:f2:b1:60:39:40:35:ed:14:7a:66:04:cb:d1:ef:09:
96:14:09:7e:8f:d0:44:a1:2e:5a:62:b8:8f:24:df:f3:4f:7a:
01:04:6d:b2:61:65:43:0c:18:0d:7c:3a:a7:b7:51:ac:a9:1e:
e8:21:bd:f5:1e:a2:4f:5c:c0:f6:52:20:01:51:a5:64:b3:55:
dc:49:e6:f9:d3:e8:4d:34:7c:8b:d9:dd:63:97:b4:77:6e:fe:
88:2d:30:80:39:1e:fa:e3:a7:81:d4:74:1c:52:f0:ce:2c:61:
ec:10:7a:dc:3e:f8:b1:1e:32:93:8d:0f:8c:69:a8:58:96:ff:
55:5f:4d:8e:78:fd:55:96:5c:e3:8c:3c:a9:64:ee:87:74:1d:
e6:46:33:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:11 2023 by rpki-client on console-fra.rpki-client.org