Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/QK3fxs65n268wSqC7R9g8KFp4Xs.roa
File: QK3fxs65n268wSqC7R9g8KFp4Xs.roa (raw, json)
Hash identifier: 8ccROVxXlPWgEbwD5EjT4dOuIKedQ2S0ucFN89ULLis=
Subject key identifier: 40:AD:DF:C6:CE:B9:9F:6E:BC:C1:2A:82:ED:1F:60:F0:A1:69:E1:7B
Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Certificate serial: 0DEE13AE
Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/QK3fxs65n268wSqC7R9g8KFp4Xs.roa
Signing time: Sat 01 Jan 2022 08:00:52 +0000
ROA not before: Sat 01 Jan 2022 08:00:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204708
IP address blocks: 80.67.184.0/24 maxlen: 24
2001:913:3000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 233706414 (0xdee13ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea
Validity
Not Before: Jan 1 08:00:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40addfc6ceb99f6ebcc12a82ed1f60f0a169e17b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:76:5a:31:54:02:a0:04:12:e9:ed:f7:c8:6e:
1c:32:22:d1:2b:67:fa:39:b3:b6:08:77:db:05:ab:
54:fc:72:38:42:bb:ef:81:1a:02:64:a2:50:72:0c:
42:cc:21:dd:f4:ec:60:5f:f8:54:e7:6f:f3:dc:e6:
05:ce:83:42:b2:47:28:1d:30:3f:86:da:35:49:2d:
ab:c4:5f:ce:89:3b:29:07:07:0f:0a:fc:fe:ba:7b:
1a:cc:c0:35:e1:3a:0d:e5:85:46:1f:a1:8f:92:95:
74:68:d8:b0:13:22:6b:92:3c:a8:1c:2b:3c:ea:35:
50:d1:e9:ad:d8:db:1f:c4:77:0a:e3:5d:4a:5f:0c:
53:27:3f:29:78:40:4e:68:99:9b:89:04:75:4d:36:
73:65:f1:c8:ee:e5:49:49:fe:94:40:d7:47:95:ac:
f1:ed:1f:c7:26:b0:00:04:31:a6:46:d6:d3:69:fb:
9a:f3:17:03:50:32:57:49:ba:07:98:f5:72:ba:98:
38:56:76:ab:e2:70:9e:38:83:e6:3a:dd:5d:42:60:
77:b7:f3:a7:65:04:ab:15:4d:9d:43:aa:76:ed:15:
59:5c:3f:6a:33:42:0f:d0:0d:a6:be:21:bd:17:2e:
a3:2e:fd:dc:90:7e:bb:a2:31:04:e4:21:cd:26:5c:
fb:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AD:DF:C6:CE:B9:9F:6E:BC:C1:2A:82:ED:1F:60:F0:A1:69:E1:7B
X509v3 Authority Key Identifier:
keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/QK3fxs65n268wSqC7R9g8KFp4Xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.67.184.0/24
IPv6:
2001:913:3000::/36
Signature Algorithm: sha256WithRSAEncryption
19:44:26:0c:80:9a:8f:df:06:2b:5c:1d:37:6b:7a:76:28:f7:
58:0d:20:0c:85:8d:40:75:22:53:17:ca:19:84:24:8c:6f:a5:
3c:bf:e1:c8:76:a8:3a:9e:aa:e5:16:6a:c1:23:47:a1:f1:f0:
8b:91:a9:82:87:85:6a:7f:b8:83:d8:23:65:e6:5d:11:28:31:
e7:78:7c:b7:35:4b:62:27:4a:c3:86:29:89:05:4e:22:ca:61:
73:ac:03:43:f6:a7:12:1b:3a:8b:5d:ef:40:d8:9e:ce:50:18:
8a:94:34:54:8d:1b:41:e8:b0:f8:42:cf:4c:57:22:95:49:18:
d7:41:da:88:15:64:f1:6d:ff:c9:be:e9:a3:92:8b:a2:9d:5f:
10:c0:52:2c:13:db:d7:ff:93:bf:d8:26:c3:10:73:8f:d9:97:
75:f7:26:34:04:9a:b8:22:8d:8c:ab:ef:69:7e:e3:7e:aa:41:
7e:d0:42:4f:90:a6:23:50:b3:ca:49:65:3c:55:93:0c:b3:37:
b3:af:d8:be:4e:9f:49:3c:dd:0d:af:f3:e3:7e:55:49:d2:20:
24:04:b2:fe:a8:fd:cd:34:82:2c:69:84:53:b4:5d:40:4f:4b:
c7:03:f4:8d:6a:9d:af:6a:9e:bd:93:fb:c5:27:fc:4c:45:5c:
d4:d5:90:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:20 2024 by rpki-client on console-fra.rpki-client.org