Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/f9d547-c86c-44da-a9c0-007e84c0f9e5/1/qxaHotRJUdf11iRw5ZtpAf45nTo.roa
File: qxaHotRJUdf11iRw5ZtpAf45nTo.roa (raw, json)
Hash identifier: b6ys/RMSc9KayJgS/qXUcqjHtyc+EewDFbJkcZNk0xk=
Subject key identifier: AB:16:87:A2:D4:49:51:D7:F5:D6:24:70:E5:9B:69:01:FE:39:9D:3A
Certificate issuer: /CN=6255f073ffb04727d15cd758399c6c613faef10e
Certificate serial: 867EC5
Authority key identifier: 62:55:F0:73:FF:B0:47:27:D1:5C:D7:58:39:9C:6C:61:3F:AE:F1:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YlXwc_-wRyfRXNdYOZxsYT-u8Q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/f9d547-c86c-44da-a9c0-007e84c0f9e5/1/qxaHotRJUdf11iRw5ZtpAf45nTo.roa
Signing time: Sat 01 Jan 2022 02:53:36 +0000
ROA not before: Sat 01 Jan 2022 02:53:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34661
IP address blocks: 109.122.32.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8814277 (0x867ec5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6255f073ffb04727d15cd758399c6c613faef10e
Validity
Not Before: Jan 1 02:53:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab1687a2d44951d7f5d62470e59b6901fe399d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d1:ef:e9:6c:61:43:07:0b:0a:38:b9:e6:8a:
46:49:cf:08:60:bc:e1:2a:84:c6:59:9a:69:b7:5b:
7f:d3:95:50:98:f8:01:2c:78:c6:84:37:25:f8:1a:
c6:5c:c3:9f:4f:c3:a6:b0:c9:39:80:11:e0:8b:7a:
e0:85:67:7f:dc:cc:56:bb:43:51:0a:4e:7a:9d:bc:
91:37:6a:22:83:e4:84:f7:02:d4:8a:31:f2:37:21:
0d:35:50:6d:e7:3e:c4:0e:3c:fd:91:9f:fa:50:da:
73:a7:92:5e:60:7a:df:3a:df:40:53:a5:4a:98:97:
6d:0c:c4:86:6b:3e:73:a0:12:35:42:81:00:bf:5f:
ee:e0:dc:45:66:6e:f6:f7:65:36:b3:f8:35:88:10:
e2:db:08:ab:66:76:cd:a6:9d:5e:a9:62:98:55:8e:
68:2f:19:75:0f:44:6d:02:f8:8f:77:94:e4:05:61:
21:4b:8b:3a:09:2d:44:90:cc:23:e6:e6:58:b0:7a:
be:3e:93:f4:87:5d:f8:d7:7c:79:cc:11:58:bc:49:
07:ab:d7:60:17:cb:57:91:f8:96:fa:fa:86:ec:ee:
ad:fe:ef:e9:72:9d:ff:82:1e:04:24:00:f2:a4:42:
58:90:5c:61:9b:36:96:2e:a1:29:95:12:d3:60:eb:
49:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:16:87:A2:D4:49:51:D7:F5:D6:24:70:E5:9B:69:01:FE:39:9D:3A
X509v3 Authority Key Identifier:
keyid:62:55:F0:73:FF:B0:47:27:D1:5C:D7:58:39:9C:6C:61:3F:AE:F1:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YlXwc_-wRyfRXNdYOZxsYT-u8Q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/f9d547-c86c-44da-a9c0-007e84c0f9e5/1/qxaHotRJUdf11iRw5ZtpAf45nTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/f9d547-c86c-44da-a9c0-007e84c0f9e5/1/YlXwc_-wRyfRXNdYOZxsYT-u8Q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.32.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:0f:d2:76:63:a9:84:8d:7b:48:11:de:9b:de:f6:60:86:bb:
c5:d1:e9:48:ee:a7:4d:e3:01:79:d7:f7:93:db:8b:5b:5f:cc:
70:9e:b9:d2:70:e5:79:5d:60:de:85:11:02:9c:a0:da:d0:7a:
69:e2:33:93:41:3c:14:ca:12:4f:ea:40:cd:f0:d7:c6:9b:f4:
0c:cb:b7:e3:9e:08:6c:f7:82:8f:20:82:fa:98:e7:f5:d0:0b:
f2:0e:84:9e:81:ec:a0:7a:d3:00:d6:02:da:8b:0d:4d:77:29:
9e:d6:ed:78:2c:6b:88:8f:4c:b0:08:8f:df:f5:c9:80:30:01:
55:23:57:00:9d:af:55:8b:ff:2d:c9:00:b8:16:9c:22:da:08:
31:93:89:dd:25:55:1e:9d:88:02:a4:be:45:a6:9a:c5:bc:fd:
16:af:94:55:e3:eb:94:63:d5:68:ad:3c:75:45:c5:4c:f2:b4:
0d:16:ef:18:db:6c:80:32:03:fa:1b:5a:c8:cc:0c:32:a2:cf:
09:dd:1f:8a:7d:98:9a:1e:a9:8d:e8:2d:e7:db:01:da:42:be:
6f:4a:bf:82:13:a5:5b:b8:b1:16:a2:65:47:ce:b5:5e:9f:90:
ff:d0:af:56:ca:ee:a2:8b:d0:84:5a:46:62:c1:8a:44:5b:df:
42:58:c7:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org