Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/QquTN_9AQCXgmFYxME-imT91ha0.roa
File: QquTN_9AQCXgmFYxME-imT91ha0.roa (raw, json)
Hash identifier: Dh6c1uk2pL2Rm7S3PtU/Du340C/i2ERC0tbDIm+sCMI=
Subject key identifier: 42:AB:93:37:FF:40:40:25:E0:98:56:31:30:4F:A2:99:3F:75:85:AD
Certificate issuer: /CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Certificate serial: 01828B9CC54F8F5E84C47682969A91351A7F
Authority key identifier: 21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/QquTN_9AQCXgmFYxME-imT91ha0.roa
Signing time: Thu 11 Aug 2022 06:34:43 +0000
ROA not before: Thu 11 Aug 2022 06:34:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202001
IP address blocks: 147.234.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8b:9c:c5:4f:8f:5e:84:c4:76:82:96:9a:91:35:1a:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21bad74e7f6c0949a2736a57478496d7d8b450e6
Validity
Not Before: Aug 11 06:34:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42ab9337ff404025e0985631304fa2993f7585ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:10:bc:f2:d9:c3:89:05:bf:c6:4b:cc:47:4e:
db:36:59:a8:f7:d4:a5:62:87:13:a4:8b:31:ca:2e:
ef:05:a3:73:d4:57:1f:bc:c8:04:4f:4f:95:a6:77:
00:34:f7:69:ec:cd:5c:71:b4:94:fc:ee:cb:91:ba:
8d:bf:1b:dd:6d:1b:26:1a:7d:cd:04:47:4f:94:3b:
11:5d:1a:27:34:53:20:3d:ac:fa:ce:9c:eb:f3:17:
41:50:60:2f:84:b6:9c:92:c3:18:8f:cf:09:8b:45:
92:29:9b:6d:72:31:34:bb:f0:6d:92:3e:48:b2:f7:
8d:91:35:af:58:36:aa:46:64:c8:1a:d7:7b:ca:1b:
5e:c2:c2:f4:88:f8:2d:1d:b5:85:78:72:ec:01:1d:
b0:97:dd:8e:1b:4f:50:10:64:8b:68:b8:52:75:10:
a1:bb:e6:df:90:4e:fe:ea:e0:b7:96:ae:ec:17:24:
70:cb:71:e8:96:23:df:b0:b9:ec:70:69:13:52:72:
10:12:46:fd:3b:bc:7e:e3:ed:42:89:5a:ca:ae:5e:
a2:c4:ae:5a:f8:67:61:7d:8f:74:0f:82:4b:2d:5a:
fc:f3:55:f1:10:42:f0:a9:d2:63:53:49:ac:28:ce:
3d:f0:a9:b2:f7:84:95:7d:a5:fc:46:64:7d:70:7d:
81:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:AB:93:37:FF:40:40:25:E0:98:56:31:30:4F:A2:99:3F:75:85:AD
X509v3 Authority Key Identifier:
keyid:21:BA:D7:4E:7F:6C:09:49:A2:73:6A:57:47:84:96:D7:D8:B4:50:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbrXTn9sCUmic2pXR4SW19i0UOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/QquTN_9AQCXgmFYxME-imT91ha0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8ddc38-7a1a-4906-a8ed-4433229a8473/1/IbrXTn9sCUmic2pXR4SW19i0UOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.234.34.0/24
Signature Algorithm: sha256WithRSAEncryption
41:08:ec:6e:71:ec:3d:be:73:f9:a5:2e:ce:6b:6b:f2:1f:6c:
89:3b:12:0f:dd:a5:23:90:a8:96:89:38:18:b0:57:d5:ef:88:
4e:a9:cb:1f:e5:9f:9f:e5:6e:ff:93:06:c5:00:25:8e:29:2c:
4a:b8:bc:a8:2e:51:73:6a:df:f4:b5:61:de:df:ee:a7:f3:fc:
da:1f:b5:bd:3c:8f:9f:bf:77:0b:d8:63:d9:c2:19:81:b4:d8:
c3:07:46:3a:5d:ff:64:d4:f8:2c:d5:65:f7:5f:5a:d5:15:b5:
e7:d9:dc:61:b8:7b:3e:c7:79:24:55:88:21:19:c0:ef:8f:5f:
33:e5:b5:90:e0:3b:00:b2:0c:02:b9:46:37:84:dc:1a:47:1c:
a9:89:53:ad:b4:7c:4a:d2:f0:60:59:e0:81:d5:66:d9:34:ef:
96:b4:11:f4:69:c7:8b:0c:0d:d5:54:a0:ad:1c:ac:b9:77:8b:
e6:3e:cc:fb:c9:3a:2a:44:57:50:1a:a2:22:c4:1c:da:c0:3e:
9a:59:3c:01:ae:ea:df:f2:28:46:3b:11:ed:9d:f3:1a:d5:31:
da:37:4e:ab:e8:e5:78:ea:69:63:e6:84:ce:9f:df:8e:67:cb:
08:dd:74:38:e2:6b:7f:09:74:76:81:ed:5a:7c:68:f9:89:52:
11:c2:42:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:56 2023 by rpki-client on console-fra.rpki-client.org