Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/qkeBsQCBCvwelbjBT-yi-33cjqY.roa
File: qkeBsQCBCvwelbjBT-yi-33cjqY.roa (raw, json)
Hash identifier: 2ZKMSerwXwRuqXKTAG5eQQ0MMHo2e71dRt2CrXcggTo=
Subject key identifier: AA:47:81:B1:00:81:0A:FC:1E:95:B8:C1:4F:EC:A2:FB:7D:DC:8E:A6
Certificate issuer: /CN=b9b87b3b09ccb69a6de20468e90ecbb18f5ecbb6
Certificate serial: 38886209
Authority key identifier: B9:B8:7B:3B:09:CC:B6:9A:6D:E2:04:68:E9:0E:CB:B1:8F:5E:CB:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/qkeBsQCBCvwelbjBT-yi-33cjqY.roa
Signing time: Sat 01 Jan 2022 12:00:55 +0000
ROA not before: Sat 01 Jan 2022 12:00:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62047
IP address blocks: 185.48.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948462089 (0x38886209)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b87b3b09ccb69a6de20468e90ecbb18f5ecbb6
Validity
Not Before: Jan 1 12:00:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa4781b100810afc1e95b8c14feca2fb7ddc8ea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:94:4c:88:a8:64:c9:a4:06:61:e4:74:98:ad:
db:53:c3:7a:bc:d0:e4:c3:70:9b:5f:e4:07:39:cf:
5c:bd:58:ea:4c:e3:e8:ae:dd:86:2c:1c:ff:f0:a5:
7d:57:23:ab:8d:b2:98:ac:f8:fa:6f:62:2f:28:f5:
19:5a:5f:69:13:c2:91:5d:0d:cd:07:bf:95:0a:53:
43:b6:5c:00:02:61:40:f4:1f:34:59:36:02:c9:5b:
2a:64:88:56:1e:9f:d4:4b:9d:94:ef:bb:a0:e2:e1:
76:bf:55:93:fc:5d:db:29:16:08:a5:8c:43:e0:33:
5d:41:d5:69:17:3a:eb:91:d1:5d:5a:d2:9a:d0:4a:
f9:ac:62:3c:1a:f9:34:23:dc:d9:d8:c0:79:4e:53:
74:0c:a9:4b:f0:4e:ff:0e:5f:3e:e8:40:98:c4:1f:
61:f1:e6:68:1d:b3:00:5a:38:da:6f:51:34:48:76:
25:3e:b5:5c:e7:55:ff:46:f2:44:b4:d0:d9:db:b1:
19:35:f2:d5:14:1a:b1:02:3f:11:88:1e:13:2e:6b:
3b:16:5a:a3:24:aa:73:88:03:57:76:40:73:03:a3:
df:10:3f:41:3c:ae:d3:bc:5b:fb:2e:a8:c8:3c:cb:
eb:47:6d:8a:b7:de:de:cc:85:93:ed:7d:4c:ea:01:
25:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:47:81:B1:00:81:0A:FC:1E:95:B8:C1:4F:EC:A2:FB:7D:DC:8E:A6
X509v3 Authority Key Identifier:
keyid:B9:B8:7B:3B:09:CC:B6:9A:6D:E2:04:68:E9:0E:CB:B1:8F:5E:CB:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/qkeBsQCBCvwelbjBT-yi-33cjqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.48.9.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:b8:a3:d5:f3:e8:09:f1:10:c4:99:96:51:64:78:b4:d8:07:
dc:da:89:46:5a:42:9e:0a:c0:70:4d:ae:ea:8d:26:6b:e3:4c:
82:9f:9f:1c:5d:c0:2c:34:95:39:32:f2:82:18:b8:97:79:33:
9b:30:d4:ce:a6:c5:f9:7c:83:e4:7e:23:49:71:6c:d0:9c:e5:
51:4b:8e:1f:c3:84:7d:8d:45:db:54:b8:b5:f4:d1:67:8d:48:
72:dc:0f:69:84:73:74:04:b5:5b:77:7c:8c:c7:b6:69:e3:5e:
83:a1:e0:ae:49:46:43:2d:69:ac:9f:62:bf:0a:dd:42:cf:cb:
4e:97:85:ed:b0:ff:cc:8c:df:3a:08:93:34:b0:41:07:03:a6:
83:39:e9:4f:7b:3a:ef:59:49:cf:ce:c5:2f:51:4a:b9:bd:95:
78:29:be:86:4f:0f:20:35:c9:ff:04:2e:2b:42:e1:d1:57:6f:
85:7c:d0:e8:c3:8a:25:62:d5:67:8b:71:42:4d:5b:4c:a4:6b:
41:27:06:1a:65:7e:d0:8b:0d:67:62:a9:68:5b:46:f0:2a:b3:
0f:f3:67:38:c9:9a:d2:e9:39:70:11:2f:6b:9e:9d:a3:0d:a0:
05:bb:14:9e:e3:7c:7e:3d:67:e3:fd:f1:aa:68:54:5a:fa:ea:
4d:2e:66:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:05 2023 by rpki-client on console-fra.rpki-client.org