Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/QRsUZjvyxp4YPfvtrvvGykPfSQg.roa
File: QRsUZjvyxp4YPfvtrvvGykPfSQg.roa (raw, json)
Hash identifier: v5sKNkiWG40gN9GXdPUvFTbNhahrVR3lUZOtFstjG2c=
Subject key identifier: 41:1B:14:66:3B:F2:C6:9E:18:3D:FB:ED:AE:FB:C6:CA:43:DF:49:08
Certificate issuer: /CN=4840325995428043b5d905d8d2c17c302b8b3465
Certificate serial: 0652ED1A
Authority key identifier: 48:40:32:59:95:42:80:43:B5:D9:05:D8:D2:C1:7C:30:2B:8B:34:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SEAyWZVCgEO12QXY0sF8MCuLNGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/QRsUZjvyxp4YPfvtrvvGykPfSQg.roa
Signing time: Sat 01 Jan 2022 07:04:22 +0000
ROA not before: Sat 01 Jan 2022 07:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49322
IP address blocks: 92.43.96.0/21 maxlen: 21
2a00:1638::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106097946 (0x652ed1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4840325995428043b5d905d8d2c17c302b8b3465
Validity
Not Before: Jan 1 07:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=411b14663bf2c69e183dfbedaefbc6ca43df4908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9c:40:01:3a:69:2d:b0:2c:ce:b2:d6:89:32:
4d:0d:7c:2c:36:3d:f9:a0:1a:4a:91:c3:5e:19:fb:
48:0f:3f:34:e5:3e:43:d6:44:48:90:5b:cb:a7:af:
ef:7f:d0:4d:c8:9d:e4:79:de:a2:42:87:d5:c4:c6:
95:65:49:c1:55:1d:79:19:a1:ef:af:1a:8f:25:11:
06:62:36:6f:e1:8e:b6:03:ab:e8:2c:47:aa:25:7d:
15:9a:17:cb:91:0b:66:de:66:0d:36:14:d6:79:40:
56:96:ec:ca:18:41:b1:9a:00:33:b1:ae:ff:67:0e:
26:8e:cf:4e:79:d8:dd:4d:6c:53:c8:a2:8a:7c:54:
d0:39:1b:48:70:c8:0c:07:45:74:88:cd:79:16:ed:
b3:a7:f0:3f:92:d1:c6:81:34:72:35:a3:dd:3d:c3:
bf:90:ef:17:22:b5:95:58:5e:65:93:88:1c:76:2e:
d7:3a:23:28:8e:27:23:87:e8:7a:48:2e:27:82:79:
fb:39:2b:64:ba:e3:2c:5b:7b:16:25:86:72:8c:18:
38:53:bc:57:14:64:82:4e:67:00:f7:99:63:32:a7:
d1:da:05:11:fa:90:bc:70:3e:f2:d0:d5:01:3d:04:
f2:6e:64:4c:d4:ae:2c:f7:f8:e1:47:a6:85:78:dc:
10:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:1B:14:66:3B:F2:C6:9E:18:3D:FB:ED:AE:FB:C6:CA:43:DF:49:08
X509v3 Authority Key Identifier:
keyid:48:40:32:59:95:42:80:43:B5:D9:05:D8:D2:C1:7C:30:2B:8B:34:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SEAyWZVCgEO12QXY0sF8MCuLNGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/QRsUZjvyxp4YPfvtrvvGykPfSQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5e77bc-117a-4389-9dad-4ace3dc5a262/1/SEAyWZVCgEO12QXY0sF8MCuLNGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.43.96.0/21
IPv6:
2a00:1638::/32
Signature Algorithm: sha256WithRSAEncryption
32:7b:fd:f9:39:86:84:9e:8c:34:34:d2:f4:e3:3c:0e:dc:d6:
e0:af:58:e3:6d:55:a0:f9:ca:f5:d3:12:f7:e0:a6:2d:73:c1:
ee:99:10:4a:e6:89:d4:13:20:4b:bc:11:b3:78:c7:46:c3:60:
69:14:42:0f:86:c2:a6:82:de:29:4a:5b:a2:a9:36:ef:f9:25:
89:31:42:83:b4:2b:90:60:8d:1b:a9:f3:a6:09:98:a5:4b:0c:
03:c2:1f:1f:05:7b:09:0c:57:40:9a:11:1d:4b:90:5f:16:17:
2e:69:47:99:b5:83:d3:aa:1c:1e:e7:fd:d8:c4:9e:df:ee:59:
39:8a:b2:97:55:cc:35:be:01:f5:83:32:61:c1:e8:f2:8b:29:
eb:18:43:3b:01:c5:5c:fd:fc:6f:5e:ad:18:8b:10:81:0f:77:
31:9d:2f:fb:a8:d5:45:f7:07:00:cb:f6:8c:d6:e3:0c:36:c4:
71:d7:94:1e:b7:32:de:6d:82:85:32:0a:aa:30:b0:79:a9:33:
8e:23:ed:bf:38:f6:65:de:cc:51:0e:b2:94:6b:d8:90:9b:03:
a6:ae:5b:fb:4c:a6:cb:10:bf:63:b6:b3:db:97:82:32:89:ae:
ca:be:43:b7:28:56:8a:ea:94:73:94:d0:fc:d6:75:11:81:e9:
f1:8f:18:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:49 2024 by rpki-client on console-fra.rpki-client.org