Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/qBqG8cl0DqpVCQgn-HLXxTf69Mk.roa
File: qBqG8cl0DqpVCQgn-HLXxTf69Mk.roa (raw, json)
Hash identifier: qUHLfo3RJ7VHBspFLaSkm/cA01NjZgTmVp3WbXNz9HY=
Subject key identifier: A8:1A:86:F1:C9:74:0E:AA:55:09:08:27:F8:72:D7:C5:37:FA:F4:C9
Certificate issuer: /CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e
Certificate serial: 0461B9B0
Authority key identifier: 40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/qBqG8cl0DqpVCQgn-HLXxTf69Mk.roa
Signing time: Wed 25 May 2022 08:45:38 +0000
ROA not before: Wed 25 May 2022 08:45:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211857
IP address blocks: 188.214.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73513392 (0x461b9b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408af485b4fd0f03717cd4a709ef11c61d3ef46e
Validity
Not Before: May 25 08:45:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a81a86f1c9740eaa55090827f872d7c537faf4c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:62:3e:38:76:4f:bd:fc:7b:a0:6d:21:90:54:
57:f9:a6:ac:8a:f4:0d:93:b5:60:22:2e:ad:1a:87:
d8:bb:79:25:bc:0e:39:95:f7:55:1a:a8:d6:e4:67:
b8:18:52:e9:79:00:23:53:71:35:3f:72:a1:f1:50:
43:a8:ca:6c:4a:a0:c8:90:f6:36:6a:19:1c:5e:c0:
d6:a2:69:3c:4a:7d:cb:10:a3:34:d9:f6:be:8e:4c:
6a:ba:bc:99:c2:e9:c9:5e:13:c7:3a:0a:71:38:83:
73:07:ee:52:80:4b:77:38:5e:8e:9e:9e:5f:d0:49:
83:4b:ff:a2:b5:b9:58:49:e1:52:28:bc:e0:8a:3e:
41:5d:2f:bb:07:59:ef:6a:fc:7b:77:7e:af:39:ab:
b0:8e:99:0c:d4:09:af:f5:1e:56:83:bc:c9:c0:3e:
5e:a3:b7:ff:6e:ad:4d:50:1d:c6:58:67:2d:ca:43:
b7:88:ae:90:81:37:49:f6:8f:73:ce:2d:f0:a7:08:
58:25:74:a0:65:d7:4a:e9:56:48:69:08:12:6f:cb:
4c:cd:fb:4d:c4:29:58:b4:f0:1b:8c:15:42:a6:62:
a4:8e:77:ce:4e:81:e8:ef:b8:46:c7:30:4e:09:02:
af:dc:8f:74:1c:9f:1c:46:2a:b0:f7:c0:af:43:f6:
6a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:1A:86:F1:C9:74:0E:AA:55:09:08:27:F8:72:D7:C5:37:FA:F4:C9
X509v3 Authority Key Identifier:
keyid:40:8A:F4:85:B4:FD:0F:03:71:7C:D4:A7:09:EF:11:C6:1D:3E:F4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/qBqG8cl0DqpVCQgn-HLXxTf69Mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e1171c-5270-49cd-9379-b95b08a23ae1/1/QIr0hbT9DwNxfNSnCe8Rxh0-9G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.214.104.0/24
Signature Algorithm: sha256WithRSAEncryption
26:52:84:72:fa:7c:fc:e5:ad:d3:e9:15:3d:ea:1a:1e:8e:4d:
68:68:e4:b7:0b:cc:42:df:f2:6a:42:05:3a:5f:85:08:64:e8:
99:0b:fc:28:f0:af:f7:c1:24:ec:01:31:8f:da:fe:bc:f0:95:
9b:f8:cd:fb:b1:87:22:02:fc:3e:2a:ee:48:de:84:6f:7f:44:
63:2b:13:ea:ea:02:36:a7:3b:89:37:7a:bf:4b:37:41:84:ba:
60:2d:81:87:55:35:1a:df:a4:aa:1b:06:e7:f1:96:f6:42:a4:
65:2b:54:65:64:20:fb:80:6c:dc:63:ff:b4:fb:28:05:54:96:
ff:db:bc:ef:4d:3d:0a:42:5e:a7:c7:9b:bf:91:8a:f4:a3:86:
d2:50:2b:68:cb:1a:a1:b5:6b:d3:a4:92:92:ab:ed:a1:64:e2:
31:07:c6:e7:d2:2b:7b:b3:bc:39:b9:ea:fc:37:10:b7:79:09:
59:4e:28:d0:ef:e9:f9:9f:7d:2a:37:d9:4e:01:68:6e:22:c7:
53:6b:24:81:39:55:22:a8:07:25:d4:8f:55:3b:9f:f7:6d:df:
35:83:23:ba:36:f3:64:89:97:97:e2:2f:0c:a3:28:ff:f4:5c:
3c:77:17:a4:24:25:a4:24:d2:84:0f:18:9f:47:0f:a1:76:2d:
f5:b6:f9:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:27 2024 by rpki-client on console-fra.rpki-client.org