Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/QA8G8zgu-0e3tSFj5kiMFM4xZck.roa
File: QA8G8zgu-0e3tSFj5kiMFM4xZck.roa (raw, json)
Hash identifier: r2ocRYvIUtqGPpcn4xOfhj78shPi45C8CqaSVM0/8Ys=
Subject key identifier: 40:0F:06:F3:38:2E:FB:47:B7:B5:21:63:E6:48:8C:14:CE:31:65:C9
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 0183C196FC2598F47A81A110CD2343CEFE8F
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/QA8G8zgu-0e3tSFj5kiMFM4xZck.roa
Signing time: Mon 10 Oct 2022 11:10:41 +0000
ROA not before: Mon 10 Oct 2022 11:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50250
IP address blocks: 45.159.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c1:96:fc:25:98:f4:7a:81:a1:10:cd:23:43:ce:fe:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 10 11:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=400f06f3382efb47b7b52163e6488c14ce3165c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1e:11:c2:b0:dc:6d:f9:da:2b:83:a8:4a:2b:
54:c7:73:a3:dc:1f:3d:64:02:c3:cd:2a:d5:cd:14:
01:e5:14:3b:c8:53:b2:b8:6e:a0:1a:0c:c7:f6:9c:
01:cc:bf:42:f6:38:d1:23:43:b6:13:19:cb:d3:f1:
de:47:3f:a1:83:4c:6f:08:93:de:a1:c0:01:cf:f8:
4a:f1:19:84:b9:7d:9c:25:45:55:16:44:bb:e0:0d:
50:75:4a:cb:eb:5b:e7:64:8e:8a:5e:4f:40:40:4e:
15:9d:79:51:87:ca:a2:86:a9:23:85:38:53:99:59:
ac:07:bf:72:d2:a1:cd:7b:3b:97:67:1e:a5:96:78:
21:6e:34:dd:b2:a6:1f:d4:0c:75:ba:5a:78:bc:a1:
a4:ff:ba:d8:c4:6f:1e:66:c9:24:c2:81:1e:43:d4:
8e:59:d7:2d:fe:e1:03:65:e9:10:69:8d:83:23:5c:
1b:5f:40:4a:21:fa:a7:73:ea:1c:95:ba:7f:9f:e2:
0c:c4:72:07:51:a5:0e:db:e2:54:40:47:37:82:9a:
50:49:55:0a:fb:de:71:40:57:c7:7f:43:f2:f6:54:
6e:e2:17:07:2d:ea:32:6c:5b:9c:03:9d:ab:14:07:
28:86:fc:e1:f4:28:4d:80:66:d6:ef:b2:d0:77:f0:
9b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0F:06:F3:38:2E:FB:47:B7:B5:21:63:E6:48:8C:14:CE:31:65:C9
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/QA8G8zgu-0e3tSFj5kiMFM4xZck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.72.0/24
Signature Algorithm: sha256WithRSAEncryption
85:24:0c:08:9f:b7:bf:b5:1c:fd:a4:0c:ac:94:79:ec:26:bd:
04:46:39:04:89:4a:a1:10:ea:b5:bb:70:94:3b:28:18:25:fd:
26:76:f2:08:8e:31:90:b5:84:11:18:3c:85:77:4b:51:92:aa:
c0:0b:1d:55:e0:f4:5e:75:0a:4c:54:43:17:e8:9d:19:39:0d:
a3:85:5f:68:33:74:9d:14:7d:17:c2:27:a2:60:f9:66:c6:db:
2f:00:5a:31:b2:1b:e4:3c:6a:e1:90:39:b8:57:4d:40:45:03:
41:f1:6e:4b:fb:03:bf:e7:95:a0:d7:43:cb:12:e7:49:6b:66:
20:89:2c:33:5a:e1:35:74:fb:dc:cf:fb:c4:2b:3a:b1:6f:47:
90:bb:53:3b:db:75:b3:e8:91:a9:37:57:d9:4c:dc:6b:fd:e7:
d9:e6:6b:b3:1f:d2:d7:e4:62:6a:3c:59:4d:b7:8d:3c:f7:0f:
24:6a:1e:84:d3:e4:86:89:56:af:44:be:53:a3:b6:20:eb:66:
8d:5e:79:f2:32:1d:be:3c:c0:48:65:94:15:3d:7c:15:fa:be:
50:98:a2:4b:3c:85:83:35:e6:e1:b1:be:d7:44:b2:b9:cb:b9:
2a:d1:5c:45:b9:84:1c:41:af:ed:48:a1:61:49:ff:a6:36:87:
79:bb:3b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org