Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/Qh9Rj8XGwj8DQuMsPljIrVsKK-U.roa
File: Qh9Rj8XGwj8DQuMsPljIrVsKK-U.roa (raw, json)
Hash identifier: nb4Xf8w3TtXX2EIh0gyXYyHTz8nyVc854BF5HL7UumQ=
Subject key identifier: 42:1F:51:8F:C5:C6:C2:3F:03:42:E3:2C:3E:58:C8:AD:5B:0A:2B:E5
Certificate issuer: /CN=cebf65e0069dbcc76b7b556e8c1d705889df27e9
Certificate serial: 13EDE1DC
Authority key identifier: CE:BF:65:E0:06:9D:BC:C7:6B:7B:55:6E:8C:1D:70:58:89:DF:27:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zr9l4AadvMdre1VujB1wWInfJ-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/Qh9Rj8XGwj8DQuMsPljIrVsKK-U.roa
Signing time: Wed 19 Jan 2022 17:23:32 +0000
ROA not before: Wed 19 Jan 2022 17:23:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2856
IP address blocks: 185.119.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334356956 (0x13ede1dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cebf65e0069dbcc76b7b556e8c1d705889df27e9
Validity
Not Before: Jan 19 17:23:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=421f518fc5c6c23f0342e32c3e58c8ad5b0a2be5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a1:0a:fe:ca:da:33:61:c0:05:1a:d4:ad:2b:
92:ee:90:c4:0f:f9:a9:84:03:a2:6e:de:ab:f8:88:
9d:66:c0:ab:1b:7e:b1:75:6c:32:17:9e:01:63:dd:
ce:89:4d:dd:57:d3:63:db:a2:0f:e5:1e:0a:35:8f:
73:c9:83:a4:15:89:d4:c4:2e:b6:c5:2e:00:c5:3e:
b4:20:d6:bc:04:7e:26:f7:b6:81:2e:9f:40:1f:85:
c1:2a:72:02:74:32:98:8a:3e:84:bc:84:af:5e:43:
bc:64:92:40:29:c2:9c:61:b3:d2:2c:07:cc:13:41:
0a:18:3e:14:e2:41:0f:3f:ea:30:3e:ee:55:c2:e4:
61:dd:9b:8b:e5:12:ea:ab:a4:41:37:59:f3:af:82:
b2:e1:84:75:86:c2:3d:62:f2:ff:94:ad:3d:52:ad:
53:b7:60:f4:9e:05:aa:89:b1:ce:3b:2b:16:5d:dd:
f7:97:18:4a:2b:ce:a1:88:a3:39:80:43:44:b5:2a:
f1:8d:97:1c:c1:1b:52:3c:c1:fc:d7:12:45:64:ef:
f9:24:19:8b:50:9f:4f:49:a5:ee:ba:4c:25:2a:2f:
4b:94:78:e8:df:1c:f6:c2:ee:32:a1:fd:9f:d2:38:
62:8a:87:a7:3c:76:ca:da:9e:a4:77:87:bf:2f:9d:
61:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:1F:51:8F:C5:C6:C2:3F:03:42:E3:2C:3E:58:C8:AD:5B:0A:2B:E5
X509v3 Authority Key Identifier:
keyid:CE:BF:65:E0:06:9D:BC:C7:6B:7B:55:6E:8C:1D:70:58:89:DF:27:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zr9l4AadvMdre1VujB1wWInfJ-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/Qh9Rj8XGwj8DQuMsPljIrVsKK-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/ead79a-d8a1-4e87-bacf-23ba4a91a105/1/zr9l4AadvMdre1VujB1wWInfJ-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.110.0/24
Signature Algorithm: sha256WithRSAEncryption
04:4d:94:22:8d:d3:7b:52:f0:7c:d3:c7:0b:55:ee:bc:c0:6a:
77:cf:06:4f:40:56:4e:d1:66:a8:f6:3f:9f:9d:87:02:41:4c:
bc:af:4c:fc:44:e8:ba:93:53:18:05:9b:56:ed:43:a4:b8:dd:
f8:44:3c:1b:93:8d:89:5e:11:ad:dc:b7:ea:a5:34:d1:40:46:
9c:89:e4:86:ea:ca:18:fd:1f:6a:49:3b:df:4d:14:51:e6:2f:
5b:69:2b:9e:33:88:93:cf:38:a4:cc:86:c1:60:1b:b0:c7:86:
9c:e9:5f:cb:31:e7:a8:8f:99:b7:42:5a:66:71:45:e4:ab:52:
b9:20:44:64:0e:3f:95:bc:fd:2e:78:78:dc:fe:19:ed:1e:e0:
a7:d5:ff:51:ae:f4:8c:04:20:23:74:a6:b0:3f:40:26:69:5f:
56:3a:27:80:39:d7:f5:cf:e9:df:26:e5:84:f2:6f:db:1e:67:
9b:9a:0a:34:73:17:84:f1:2e:4b:90:5a:c5:33:4c:8e:61:5c:
9e:48:ad:c4:a5:88:04:e6:c2:6b:cb:d0:23:df:1b:7c:b4:66:
0d:ba:58:0b:a0:f9:30:a9:4e:75:d6:af:2d:6e:fb:43:e4:5d:
61:7c:c1:94:da:b1:93:4e:d0:97:b1:fe:a4:77:03:a8:26:9c:
3f:9d:31:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:06 2023 by rpki-client on console-ams.rpki-client.org