Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Q2vOGJLohpLIPJSJSl3aWXh3iVo.roa
File: Q2vOGJLohpLIPJSJSl3aWXh3iVo.roa (raw, json)
Hash identifier: GvZ+15PIshBaFj6EaEB4jgi+//1gPJJFCZmBCnQgK8U=
Subject key identifier: 43:6B:CE:18:92:E8:86:92:C8:3C:94:89:4A:5D:DA:59:78:77:89:5A
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01845D434ACB4ADD32EF1696075344800C53
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Q2vOGJLohpLIPJSJSl3aWXh3iVo.roa
Signing time: Wed 09 Nov 2022 16:40:01 +0000
ROA not before: Wed 09 Nov 2022 16:40:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 45.65.114.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:43:4a:cb:4a:dd:32:ef:16:96:07:53:44:80:0c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Nov 9 16:40:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=436bce1892e88692c83c94894a5dda597877895a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:02:a1:50:bf:1a:3b:0b:7e:79:20:f4:57:53:
a2:f7:a8:73:91:bb:06:70:62:7c:eb:1c:b6:a0:e6:
db:5f:fd:d1:43:cd:7c:15:82:55:82:8f:80:6e:bd:
c5:ce:c5:97:69:1e:09:54:20:d5:21:6b:26:64:a9:
a9:10:b9:4d:0f:c4:68:59:b3:c7:51:b9:70:14:64:
46:22:2b:82:e3:eb:43:9a:55:1b:68:06:6a:62:d0:
de:ed:49:d1:f0:43:3a:82:e6:e5:39:88:a7:26:b7:
34:33:4e:13:29:d9:64:20:c9:2f:1d:42:ec:63:50:
b0:fb:9d:63:18:8e:9f:0a:5f:93:02:5f:a8:bb:6b:
da:74:ca:7e:cc:fb:1e:60:9f:b0:97:bd:14:1b:a3:
0c:49:7d:d4:70:e9:2a:39:af:d7:50:83:6d:11:a6:
0e:07:bf:af:0f:4c:2a:30:e4:75:75:22:b1:34:a4:
70:a7:98:d6:77:95:bf:69:89:b1:54:ec:a2:2a:ae:
ea:98:f9:2d:5c:a7:ea:8a:f4:a5:42:30:f9:55:63:
e3:46:6e:66:e2:f5:fa:e2:8b:cb:29:43:12:45:df:
d3:06:3e:58:8e:4c:22:cc:e0:4f:76:f9:bf:a0:9c:
7d:ad:18:b1:ce:09:73:53:27:35:67:c5:a0:36:58:
5d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:6B:CE:18:92:E8:86:92:C8:3C:94:89:4A:5D:DA:59:78:77:89:5A
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/Q2vOGJLohpLIPJSJSl3aWXh3iVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.114.0/23
Signature Algorithm: sha256WithRSAEncryption
83:0e:58:98:b8:3d:5f:06:05:5a:d9:a7:61:13:5a:c4:e6:f8:
42:8e:8d:84:fc:54:94:39:77:55:b1:ba:c9:b1:48:0a:82:ef:
72:64:f1:c1:7c:33:1f:bc:3b:fb:71:26:02:9a:86:70:42:bf:
f7:c8:6b:3f:ca:87:ef:20:80:67:5a:af:19:32:5a:a0:47:c2:
73:d7:4f:01:04:a7:50:0d:1b:f1:ba:ec:cb:35:81:45:75:35:
ab:64:d9:04:7e:09:eb:a7:91:16:f4:e9:c2:1f:1a:a9:62:5a:
01:d7:0e:9a:cc:ae:32:66:cd:60:48:3e:4a:71:b2:75:b4:63:
78:99:95:d8:b4:4e:59:c3:65:d5:51:6f:79:6f:66:b1:b9:35:
63:54:d0:ba:38:d5:2a:f1:cf:24:fa:cc:b8:df:1e:27:10:07:
c8:47:c9:ec:b0:65:a9:e3:7a:45:7d:a4:97:c2:53:5f:71:c8:
95:71:f8:36:c6:7c:19:6c:e7:b9:94:9c:e0:47:80:49:bb:5b:
f9:b8:8d:8f:7f:f9:69:f2:4c:3f:13:57:4b:97:cb:91:5d:a1:
8a:80:3e:8d:44:26:cc:e4:02:b6:87:3e:98:ef:b0:b9:a9:82:
71:a4:9b:7a:7c:9c:aa:34:b7:62:ae:d3:86:2f:d0:bc:43:bf:
cb:f0:8c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org