Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/QDVi6FLSupwWL6WfPPzlPcKIx9o.roa
File: QDVi6FLSupwWL6WfPPzlPcKIx9o.roa (raw, json)
Hash identifier: 4ebE8rft2DnmA+oNAhMtBwsp1NvZ4tPdOOy5W2BLtIo=
Subject key identifier: 40:35:62:E8:52:D2:BA:9C:16:2F:A5:9F:3C:FC:E5:3D:C2:88:C7:DA
Certificate issuer: /CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Certificate serial: 018436FFE0D110BCCCE398F3E4BBFC0F395A
Authority key identifier: A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/QDVi6FLSupwWL6WfPPzlPcKIx9o.roa
Signing time: Wed 02 Nov 2022 06:20:49 +0000
ROA not before: Wed 02 Nov 2022 06:20:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42233
IP address blocks: 81.19.134.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:36:ff:e0:d1:10:bc:cc:e3:98:f3:e4:bb:fc:0f:39:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4ce9640a3ef2fea19374ad8f99f423d7aa7c76b
Validity
Not Before: Nov 2 06:20:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=403562e852d2ba9c162fa59f3cfce53dc288c7da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:73:3a:92:30:49:a0:27:ce:fc:48:c2:85:fd:
8b:da:98:cb:10:7b:d4:e3:4c:39:e2:23:4f:63:5d:
46:ae:a5:7f:a0:ea:2e:85:47:17:da:da:f7:82:d3:
d7:9d:d3:da:9a:c4:fa:fb:2c:20:b9:27:8c:e2:d5:
5c:c8:31:6d:52:03:d4:eb:20:72:ed:6b:4d:68:1b:
b8:f9:45:ba:fd:66:d6:c0:9f:03:5b:c4:d4:ca:23:
a3:ff:8c:6a:d4:92:6d:9a:53:00:8d:ca:5e:d4:02:
74:7b:8a:16:21:c6:45:d8:b7:76:a6:8b:9e:0a:18:
52:5d:b0:c0:04:c1:18:44:1c:e1:e0:3e:fd:b1:c4:
25:ab:02:ca:07:13:8c:3a:5d:64:db:5e:e6:8b:c1:
e8:aa:ce:e3:13:86:6f:f8:f0:2b:d7:0e:98:f6:b7:
22:97:a5:e4:10:c1:d7:92:ff:27:26:09:df:35:f6:
47:3f:12:e6:a1:8b:a5:83:4e:04:f8:4d:0d:d8:1e:
e5:7a:70:5b:6e:9e:29:91:c8:d7:e9:4d:99:69:90:
e4:a3:65:03:aa:76:04:1c:0f:41:e7:ae:4b:6b:8f:
33:cf:00:d9:91:7a:61:9f:7a:4e:92:46:67:8e:8d:
dc:27:e4:84:b5:32:fc:bf:3d:16:a6:44:f2:1f:ff:
fa:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:35:62:E8:52:D2:BA:9C:16:2F:A5:9F:3C:FC:E5:3D:C2:88:C7:DA
X509v3 Authority Key Identifier:
keyid:A4:CE:96:40:A3:EF:2F:EA:19:37:4A:D8:F9:9F:42:3D:7A:A7:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/QDVi6FLSupwWL6WfPPzlPcKIx9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f8a5d1-260a-46a4-a8e4-283fe54a6f2f/1/pM6WQKPvL-oZN0rY-Z9CPXqnx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.19.134.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:63:62:59:26:36:b9:85:03:53:c1:22:b1:02:50:00:1e:45:
45:df:5c:55:54:c3:49:22:a6:6e:40:5c:e2:9b:26:76:aa:de:
37:24:cc:d9:fd:71:09:95:91:6d:fd:ed:b3:86:55:cd:71:d3:
72:3a:d5:79:63:e3:fc:0b:a0:09:98:35:4b:7a:e4:46:7f:b1:
eb:2d:73:50:bd:2f:eb:7c:48:f8:dc:02:b3:61:b0:ee:e3:e8:
ac:65:a3:ce:3a:d7:69:a0:6a:f0:26:97:c5:47:c6:2a:82:6e:
74:38:39:3b:21:89:68:dd:6e:4e:42:ae:8f:28:48:73:2f:c3:
dc:e7:c3:0a:08:2a:79:56:71:fd:21:31:16:03:b6:ab:ca:a0:
9f:d9:bb:f8:1a:8d:31:c9:9f:c3:b6:94:2f:0a:ce:ee:50:f8:
a1:88:0b:63:88:6c:59:bd:06:6e:7b:07:58:bc:dc:8d:b1:c7:
d6:9e:0b:6a:55:19:3c:5c:76:24:9d:5e:70:b6:b1:1a:7a:08:
6f:e8:f9:86:fa:79:07:09:70:3b:02:1f:a7:63:4c:43:a2:69:
ce:21:a7:09:bf:67:b7:c4:20:02:31:e7:ce:4f:18:84:d7:79:
89:fc:7e:46:8e:ba:05:95:84:35:a3:79:a7:e4:36:85:2d:8b:
6c:5e:71:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:19 2024 by rpki-client on console-ams.rpki-client.org