Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/17e450-8818-4a27-9f35-518cd14713eb/1/Qm2C_RPW_S3hooTsQwYC-FRvlBM.roa
File: Qm2C_RPW_S3hooTsQwYC-FRvlBM.roa (raw, json)
Hash identifier: c/Jv3XXDRm0mMtZpth2WXK9wmBvvLqAUSzY7DNqgYhA=
Subject key identifier: 42:6D:82:FD:13:D6:FD:2D:E1:A2:84:EC:43:06:02:F8:54:6F:94:13
Certificate issuer: /CN=b7733e9de9485b44671c8e511da221e4153c711b
Certificate serial: 09ED51A5
Authority key identifier: B7:73:3E:9D:E9:48:5B:44:67:1C:8E:51:1D:A2:21:E4:15:3C:71:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3M-nelIW0RnHI5RHaIh5BU8cRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/17e450-8818-4a27-9f35-518cd14713eb/1/Qm2C_RPW_S3hooTsQwYC-FRvlBM.roa
Signing time: Sat 01 Jan 2022 08:01:06 +0000
ROA not before: Sat 01 Jan 2022 08:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25145
IP address blocks: 91.241.51.0/24 maxlen: 24
91.241.48.0/24 maxlen: 24
91.241.49.0/24 maxlen: 24
194.5.236.0/24 maxlen: 24
2a0c:8dc6::/32 maxlen: 32
2a0c:8dc5::/32 maxlen: 32
2a0c:8dc7::/32 maxlen: 32
2a0c:8dc4::/32 maxlen: 32
2a00:7540::/29 maxlen: 29
2a0c:8dc0::/30 maxlen: 30
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166547877 (0x9ed51a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7733e9de9485b44671c8e511da221e4153c711b
Validity
Not Before: Jan 1 08:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=426d82fd13d6fd2de1a284ec430602f8546f9413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5b:f8:c6:1a:22:65:6b:68:2d:f5:ff:df:cb:
3a:ff:b3:f7:89:35:b9:15:9a:e0:a1:8c:a1:44:0c:
62:14:f8:dd:d9:a7:a6:61:79:f8:ee:c1:06:5e:bb:
10:c7:94:9a:9f:cc:03:90:dd:55:6e:3e:79:65:2f:
a2:86:35:3d:2b:ac:77:50:cd:97:8b:48:bd:15:ea:
8a:b8:90:d6:4c:2f:0b:c7:d9:f4:0a:b8:15:e4:68:
57:6e:e0:db:16:2b:e8:a3:78:62:b5:77:15:cf:a2:
71:ad:07:3d:dd:88:3a:e4:51:e0:2b:f9:62:b7:98:
3b:2e:cb:0f:cb:f9:b8:4c:08:40:0b:0b:9b:d7:08:
77:4d:5a:9f:e6:87:88:a1:7c:95:ce:81:8f:b3:18:
c6:a7:11:d9:cb:d9:9b:73:a4:84:cb:3d:94:ee:1d:
0f:49:01:9e:82:d4:26:6b:2d:5b:91:a1:52:d9:cd:
ea:ff:6e:af:3a:42:65:55:78:bf:bb:7a:24:c4:60:
3e:64:f1:0b:c8:ed:cc:2e:f3:9f:c2:59:58:b1:50:
1c:43:7e:98:df:d4:2e:4c:c4:57:cb:48:2e:33:9e:
c5:91:36:bd:a6:c8:45:98:71:4e:7f:3c:64:de:cc:
96:0f:7a:92:fd:b3:36:f3:f0:0f:24:af:39:d8:c7:
70:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:6D:82:FD:13:D6:FD:2D:E1:A2:84:EC:43:06:02:F8:54:6F:94:13
X509v3 Authority Key Identifier:
keyid:B7:73:3E:9D:E9:48:5B:44:67:1C:8E:51:1D:A2:21:E4:15:3C:71:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3M-nelIW0RnHI5RHaIh5BU8cRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/17e450-8818-4a27-9f35-518cd14713eb/1/Qm2C_RPW_S3hooTsQwYC-FRvlBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/17e450-8818-4a27-9f35-518cd14713eb/1/t3M-nelIW0RnHI5RHaIh5BU8cRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.48.0/23
91.241.51.0/24
194.5.236.0/24
IPv6:
2a00:7540::/29
2a0c:8dc0::/29
Signature Algorithm: sha256WithRSAEncryption
0d:b0:67:f5:1e:b9:6a:eb:54:5c:13:ab:df:bb:37:de:95:52:
be:b4:03:c0:9d:6a:a0:b9:bb:c6:6a:8d:42:de:43:ab:21:d2:
33:a3:cf:f3:e1:06:ec:3c:e0:6d:10:9c:2b:b6:d9:56:0d:5e:
f7:38:98:4c:29:8e:fd:99:c5:54:09:c5:33:ec:96:6d:09:00:
6a:6a:72:db:9d:ba:3b:17:0d:e3:e9:11:99:b5:f9:2e:79:44:
c5:fa:7d:5e:5b:a3:30:17:3d:03:68:f6:13:cd:17:02:7f:2a:
b4:f7:d9:ed:74:b7:3f:58:57:15:36:1d:89:8b:19:a8:14:2d:
23:9c:ff:80:33:4a:ec:15:91:45:d6:7f:61:9c:b6:7c:78:c6:
a6:a1:40:f5:51:6f:69:d2:be:80:85:77:a6:25:7a:97:8c:85:
2c:32:9b:61:c3:e3:56:3c:b9:69:cc:f6:14:91:10:e1:78:5b:
40:5b:14:a9:f4:e3:d6:4a:f4:4f:93:22:5c:55:8e:81:97:36:
f6:23:80:b2:0d:1f:57:49:04:bb:3c:9d:57:13:ce:97:21:22:
88:14:8f:1b:d9:da:88:ae:a6:2c:8f:03:f0:10:e4:6f:48:2b:
6a:8d:1b:59:bc:28:4d:c6:57:25:17:59:af:12:14:09:76:fa:
d2:83:94:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:22 2024 by rpki-client on console-fra.rpki-client.org