Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/QqibLtpYgjhVLgXPjWNeL00SLoY.roa
File: QqibLtpYgjhVLgXPjWNeL00SLoY.roa (raw, json)
Hash identifier: biFPtwndNtgPfRLJ3a8AibAI+qqcD2kwuCdWXP89a48=
Subject key identifier: 42:A8:9B:2E:DA:58:82:38:55:2E:05:CF:8D:63:5E:2F:4D:12:2E:86
Certificate issuer: /CN=121f13882dd06d098ec49a759101329b1f201f1d
Certificate serial: 08F9742B
Authority key identifier: 12:1F:13:88:2D:D0:6D:09:8E:C4:9A:75:91:01:32:9B:1F:20:1F:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eh8TiC3QbQmOxJp1kQEymx8gHx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/QqibLtpYgjhVLgXPjWNeL00SLoY.roa
Signing time: Sat 01 Jan 2022 07:52:33 +0000
ROA not before: Sat 01 Jan 2022 07:52:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2200
IP address blocks: 147.210.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150565931 (0x8f9742b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=121f13882dd06d098ec49a759101329b1f201f1d
Validity
Not Before: Jan 1 07:52:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42a89b2eda588238552e05cf8d635e2f4d122e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:70:53:01:a0:ae:81:8c:5f:aa:e0:ef:47:db:
95:5a:c7:75:67:b4:5f:9e:d4:a6:1f:e7:e7:cb:eb:
5b:6b:5c:98:93:40:25:3e:b2:48:8f:b3:ff:62:09:
a3:ee:a9:a8:65:0e:15:3c:9c:50:12:a8:fc:c3:80:
b9:4d:e5:6a:57:96:47:6b:0d:96:a0:a1:ff:ef:be:
44:72:8d:43:5a:89:60:15:dc:eb:9e:9e:69:10:b7:
8d:f2:4c:48:48:c7:58:3a:fc:6b:b3:c8:32:09:25:
35:92:7b:7d:17:d9:e6:4e:58:91:97:9a:76:1f:ae:
ca:68:29:d7:08:e5:6a:85:e2:dc:e9:07:c9:10:78:
5f:01:4b:3b:5a:5d:43:a3:c9:56:43:1e:22:09:dd:
2c:ba:e8:12:67:e1:fc:6e:99:aa:2f:0f:1a:05:16:
e1:b7:67:31:44:2c:c8:9c:8f:bb:0a:7b:51:6a:77:
c3:c1:5f:b2:82:28:ff:40:5e:1e:a9:31:8d:78:68:
d3:ca:20:12:40:0c:dd:26:19:77:3f:3a:11:eb:49:
a0:8c:af:9a:cb:c3:fc:86:56:82:12:76:73:05:b8:
30:1b:e2:c7:59:c9:e3:7b:2a:66:d3:f9:6f:91:01:
7a:e8:84:19:9d:6b:59:f5:8e:41:cf:ee:0c:0d:31:
50:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A8:9B:2E:DA:58:82:38:55:2E:05:CF:8D:63:5E:2F:4D:12:2E:86
X509v3 Authority Key Identifier:
keyid:12:1F:13:88:2D:D0:6D:09:8E:C4:9A:75:91:01:32:9B:1F:20:1F:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eh8TiC3QbQmOxJp1kQEymx8gHx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/QqibLtpYgjhVLgXPjWNeL00SLoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/Eh8TiC3QbQmOxJp1kQEymx8gHx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.210.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3b:71:9a:01:8e:56:aa:20:76:c1:d9:60:77:af:79:ea:f5:15:
8e:50:b8:91:91:94:22:3c:34:35:26:01:e7:6b:97:11:bf:81:
ee:58:23:a6:27:e0:e2:61:4a:8d:0d:e3:33:4c:c8:a7:5a:a8:
8d:aa:84:a0:59:a6:85:70:e6:e0:db:a3:ec:aa:96:33:b6:9a:
0c:c3:8b:37:a0:a7:f0:4d:b7:a5:09:11:4f:61:0b:95:80:ee:
4b:63:4d:6b:f9:24:5a:f6:69:b2:32:bc:22:85:2c:92:08:aa:
13:77:54:db:6d:fe:18:2c:ba:60:e6:ef:95:d9:19:15:91:b0:
30:d6:89:c9:30:f9:84:4d:97:b1:f4:23:4d:c5:34:f7:b4:b1:
9b:88:e4:4b:30:cf:6a:17:15:89:e0:e3:6b:38:92:a2:fa:6d:
67:83:ae:f6:ce:cc:ff:33:68:a2:5a:f6:9c:36:4d:3a:ca:9a:
97:c9:e8:00:2b:03:29:c4:ea:89:90:e6:dd:40:c7:94:2c:8a:
ec:10:26:9c:f1:c5:04:77:bf:e7:d0:25:ae:72:09:d6:07:c0:
08:dd:6e:7d:e8:93:d9:3f:9b:3e:8f:58:c3:f2:26:34:31:f6:
9c:af:a9:c5:b4:07:ad:6e:bf:1a:4a:f7:1b:16:1d:0e:2f:69:
ad:4c:08:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org