Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/qJ-iN6Nytzb33aJjqSxg5yxnQ_g.roa
File: qJ-iN6Nytzb33aJjqSxg5yxnQ_g.roa (raw, json)
Hash identifier: Ffp8B9Xcx2pSsg2yovH0ts+cvB+SOn+ItbfqzgH89VY=
Subject key identifier: A8:9F:A2:37:A3:72:B7:36:F7:DD:A2:63:A9:2C:60:E7:2C:67:43:F8
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03EB279F
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/qJ-iN6Nytzb33aJjqSxg5yxnQ_g.roa
Signing time: Sat 01 Jan 2022 13:04:14 +0000
ROA not before: Sat 01 Jan 2022 13:04:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271968
IP address blocks: 181.41.148.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65742751 (0x3eb279f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a89fa237a372b736f7dda263a92c60e72c6743f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9d:31:c9:7a:e8:39:48:02:57:a9:0e:57:c8:
6f:46:37:06:0c:12:0b:50:0a:4e:4b:82:a4:9c:57:
82:ad:ab:3e:4d:ea:69:78:62:52:a3:b1:e4:b4:5b:
cf:74:76:8f:fd:2a:0e:30:2a:04:b0:06:81:97:bd:
0a:f7:ee:9f:82:9a:b3:7d:07:8d:af:aa:6d:6b:81:
0b:b2:2f:a6:07:13:44:b5:79:54:9a:27:38:45:08:
e7:4e:51:ad:a6:e8:ba:cf:40:10:b7:ff:82:8d:7c:
28:63:d5:99:63:f5:3c:9f:d9:b1:f9:56:50:b3:15:
ab:c8:bb:47:de:a1:a8:14:19:fa:1d:13:0f:c1:3d:
53:64:3b:32:30:61:73:0d:37:9f:54:2e:f7:3a:6f:
e8:10:38:37:68:45:09:b1:ec:09:a7:2c:53:64:37:
b2:cc:07:e8:05:fd:b0:3f:7e:12:82:c9:c4:34:42:
5c:6d:f8:af:14:df:cc:92:51:50:b7:e1:df:7d:b7:
98:66:2f:c7:6e:de:10:cb:2f:14:22:88:fa:05:c3:
5d:0e:3f:67:ea:9a:77:f7:a1:fd:9e:c3:f1:9e:e3:
03:72:42:da:33:db:81:46:9c:37:2c:6d:96:3b:d4:
c7:e5:c6:c0:48:3a:29:34:2c:b3:85:d0:70:f3:b9:
50:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:9F:A2:37:A3:72:B7:36:F7:DD:A2:63:A9:2C:60:E7:2C:67:43:F8
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/qJ-iN6Nytzb33aJjqSxg5yxnQ_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.148.0/22
Signature Algorithm: sha256WithRSAEncryption
10:1b:4c:49:12:52:9c:ba:8f:dc:46:e9:e6:31:af:bd:eb:ca:
f3:da:ee:b1:8f:10:be:ad:1c:64:fb:07:73:c4:09:97:e8:87:
a0:f3:b2:79:76:b7:41:0f:ed:64:ea:5e:16:79:df:5d:63:5f:
87:d4:fe:2b:3c:44:e0:71:7e:99:0a:8c:4a:bc:a7:5b:44:d5:
b2:df:48:b6:06:eb:23:80:72:d5:1a:f6:76:a5:b3:92:42:de:
74:8f:08:58:b6:cd:b1:e3:25:ec:85:33:1b:84:e0:c1:96:fa:
2c:09:c6:5a:f0:33:63:b6:d7:b3:5b:38:f3:1e:ea:a6:18:c2:
06:df:a7:61:c8:37:c6:8a:7e:83:64:12:27:4a:17:ef:e0:51:
99:5c:c0:6c:6f:1a:e7:ab:68:0c:db:34:81:13:f4:07:82:df:
81:ab:b7:8f:39:29:02:00:96:cc:6b:71:72:3a:c2:48:52:33:
fe:22:d1:6d:ac:91:10:3c:88:c5:f5:51:c7:44:34:d8:72:e2:
3f:81:06:dd:57:7d:aa:a8:a3:05:a0:2b:ad:ea:03:af:cc:2a:
24:15:24:ae:8f:03:8c:43:96:ef:18:d3:a5:84:94:c3:01:85:
fd:3d:da:11:79:5d:b7:c2:d7:40:02:4c:d1:60:3e:3f:9d:7d:
a2:42:09:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-fra.rpki-client.org