Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/QPHoIYJj2sMdcAw8Hr68-XexNb4.roa
File: QPHoIYJj2sMdcAw8Hr68-XexNb4.roa (raw, json)
Hash identifier: PXvxhPQ+lgEUvWJWNi6Ksb7VYJkUJ/+a8pJ3Fl6pY3k=
Subject key identifier: 40:F1:E8:21:82:63:DA:C3:1D:70:0C:3C:1E:BE:BC:F9:77:B1:35:BE
Certificate issuer: /CN=ca3bca8764946932ba2da8bdb7d13cd86895af69
Certificate serial: 0ABA46ED
Authority key identifier: CA:3B:CA:87:64:94:69:32:BA:2D:A8:BD:B7:D1:3C:D8:68:95:AF:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjvKh2SUaTK6Lai9t9E82GiVr2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/QPHoIYJj2sMdcAw8Hr68-XexNb4.roa
Signing time: Sat 01 Jan 2022 15:57:50 +0000
ROA not before: Sat 01 Jan 2022 15:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1103
IP address blocks: 132.229.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179980013 (0xaba46ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3bca8764946932ba2da8bdb7d13cd86895af69
Validity
Not Before: Jan 1 15:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40f1e8218263dac31d700c3c1ebebcf977b135be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:69:da:a7:37:18:98:fd:e0:c8:a3:1f:39:1b:
e4:2f:4f:6a:6f:64:c0:27:a6:af:13:57:ff:74:57:
1f:cd:6c:a1:e9:83:58:d6:74:49:9c:77:60:f6:e5:
5b:5f:b0:10:c4:4c:76:bb:4d:f8:0d:4d:a8:0f:6c:
2e:ef:db:41:b1:76:1b:c8:e7:1e:c7:e9:80:63:8d:
f3:27:ef:f6:e2:64:a9:5d:2a:f0:a2:a1:43:f1:97:
70:69:66:bc:f6:d5:57:a6:65:fa:3e:87:0a:fe:13:
b2:3e:d6:1e:40:c4:90:ad:57:59:61:46:ff:a4:23:
a5:45:49:70:00:a7:17:d6:fe:4d:9a:a0:42:c2:36:
c3:83:54:c2:9d:20:9b:e9:94:5d:48:f2:e4:93:fe:
49:88:ff:aa:58:e7:29:e5:27:6e:5b:2c:c1:c8:2c:
0c:a6:74:72:7e:06:83:b3:98:57:14:0a:ba:a2:af:
cf:46:d0:4a:7c:f6:2a:6d:59:d2:0d:3f:e4:03:37:
b3:12:46:83:3e:8e:49:01:f7:12:31:70:80:fb:6b:
3c:06:ca:f4:49:1e:aa:31:af:6d:d8:dd:e1:84:f4:
d7:d8:7e:4e:1b:1a:2b:47:51:23:67:9f:d4:30:e8:
f9:36:f2:81:25:18:66:d1:60:2b:5d:fa:0a:a9:ed:
c0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:F1:E8:21:82:63:DA:C3:1D:70:0C:3C:1E:BE:BC:F9:77:B1:35:BE
X509v3 Authority Key Identifier:
keyid:CA:3B:CA:87:64:94:69:32:BA:2D:A8:BD:B7:D1:3C:D8:68:95:AF:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjvKh2SUaTK6Lai9t9E82GiVr2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/QPHoIYJj2sMdcAw8Hr68-XexNb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/yjvKh2SUaTK6Lai9t9E82GiVr2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8b:be:ee:64:ea:e3:0b:6f:1e:80:9e:3e:c3:06:51:67:85:09:
ef:b7:ca:47:b1:55:22:92:3d:bb:a5:93:46:f9:e7:0a:b7:94:
c1:19:23:51:65:e1:59:30:9c:9a:dc:86:95:fb:3e:70:0f:1c:
71:74:53:49:90:53:7a:8c:5e:89:16:84:05:5e:34:b1:7c:2a:
93:be:cb:14:4c:5c:44:35:57:7f:0f:9f:ec:f6:90:ee:7f:c9:
a2:c5:59:12:ae:ea:20:7e:dc:8b:fa:31:f2:a6:77:d3:d6:4e:
55:db:3a:d4:9a:71:1e:06:4d:d4:1d:32:2f:e3:c9:4a:b4:b3:
96:1f:ff:d9:94:51:14:76:68:c9:83:ea:6b:2e:4d:b2:30:8b:
92:a1:37:d4:54:8e:6e:6d:53:9a:d2:d5:1c:6b:2c:6f:1c:90:
36:cb:4f:63:8b:2d:24:1b:ef:94:cf:c1:a6:d9:3b:92:11:44:
a8:23:fe:b5:1e:bd:37:54:78:c9:dc:b3:2b:7c:ab:c5:6f:4f:
9d:af:47:cc:34:62:48:70:10:16:b3:3d:e4:9a:27:32:97:4d:
d4:0f:e2:3f:73:7e:5c:0c:8e:94:23:3d:bb:92:5a:c3:88:ba:
91:c6:1f:a0:e1:ff:f1:f5:a7:12:2b:dc:2e:4f:14:64:b1:12:
b9:10:7c:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:30 2024 by rpki-client on console-fra.rpki-client.org