Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Q__QMPVQN_lRCRb4qXvDYOWV-Qc.roa
File: Q__QMPVQN_lRCRb4qXvDYOWV-Qc.roa (raw, json)
Hash identifier: lUowGsCC0x7HC0eE0cxdfcse2hKDzdwsCv8/3/+1QmA=
Subject key identifier: 43:FF:D0:30:F5:50:37:F9:51:09:16:F8:A9:7B:C3:60:E5:95:F9:07
Certificate issuer: /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial: 0182A54103059F97AF8474A89BBB086F81FF
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Q__QMPVQN_lRCRb4qXvDYOWV-Qc.roa
Signing time: Tue 16 Aug 2022 06:04:37 +0000
ROA not before: Tue 16 Aug 2022 06:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 176.57.48.0/24 maxlen: 24
176.57.48.0/20 maxlen: 24
176.57.54.0/24 maxlen: 24
176.57.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a5:41:03:05:9f:97:af:84:74:a8:9b:bb:08:6f:81:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
Validity
Not Before: Aug 16 06:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43ffd030f55037f9510916f8a97bc360e595f907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:60:c3:ee:87:b3:05:d3:e8:94:03:7a:41:12:
db:18:51:a8:c5:8a:53:ac:28:b4:81:00:35:56:3d:
9b:dd:84:b8:09:cf:f2:1e:2e:03:e6:f9:3d:a6:7d:
08:f3:9f:7c:53:90:fb:4a:4f:04:1d:15:cd:48:b6:
04:fa:08:d8:7a:6d:28:9f:20:62:65:c3:e2:45:69:
a0:b6:76:be:23:4f:34:6f:bf:2b:ce:62:44:95:f5:
d4:52:71:65:2f:d2:33:92:7d:18:06:f8:9f:cc:42:
61:ee:21:74:c3:bd:86:ee:89:d3:87:04:ab:db:65:
36:2d:64:47:ab:60:5a:68:a7:bc:3d:b5:c1:fd:a1:
77:cb:01:57:9d:dc:e3:cc:b4:86:e3:1a:a0:90:18:
a0:a3:43:5e:c3:0f:bd:61:80:d2:61:a3:5b:6f:c2:
2a:a0:0e:fa:d3:98:0b:57:9d:5f:90:06:f8:53:d6:
da:c4:83:5c:f0:da:60:db:10:ac:7e:94:31:77:a1:
15:98:cc:45:da:49:31:c0:0b:f1:d5:40:b3:1f:26:
09:c6:1f:fd:09:cb:53:2d:1c:26:a0:22:77:7c:65:
c2:03:cb:ed:14:3f:45:e3:f9:f9:8a:6e:68:0b:6a:
9f:a6:98:f0:62:eb:71:73:c0:5e:de:72:aa:3b:7f:
fb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FF:D0:30:F5:50:37:F9:51:09:16:F8:A9:7B:C3:60:E5:95:F9:07
X509v3 Authority Key Identifier:
keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Q__QMPVQN_lRCRb4qXvDYOWV-Qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.57.48.0/20
Signature Algorithm: sha256WithRSAEncryption
91:a5:06:2d:59:3f:d3:6a:ce:21:42:34:a3:cb:e8:b9:6e:6c:
f5:3c:ea:51:16:a0:7e:13:ab:36:67:77:9d:1d:1c:c1:0e:49:
e8:e2:1b:86:ed:7d:5d:b7:8f:f9:47:95:90:3e:b7:c7:39:14:
14:d9:5b:fe:bc:38:7c:9b:4a:33:38:cd:4f:59:0e:fb:08:5e:
13:55:ff:df:af:45:0f:1a:68:b8:16:6c:dc:2e:d7:cf:01:0a:
46:7b:86:d8:c2:81:2f:f4:36:15:0f:6a:53:0c:c7:a3:43:ea:
57:0c:e4:34:58:e0:95:2f:af:7c:e1:7a:d3:2f:f1:d1:1c:97:
06:ff:02:9a:0e:81:55:cb:ad:e4:1a:5b:51:fd:83:0c:c5:0b:
be:05:26:ec:cf:74:3e:7f:b8:07:4c:8f:46:8e:c2:a9:68:c3:
92:8d:34:01:64:05:a1:58:7b:4b:b2:a0:ee:45:18:bd:2d:f5:
79:5b:24:74:55:a3:be:aa:7a:55:e0:fa:c9:8e:53:80:26:71:
4a:33:5c:9f:62:c0:1a:c1:f4:68:78:37:f2:6f:22:bc:4d:31:
c7:91:94:fc:82:8b:4e:8c:0c:2f:c4:8c:77:89:0e:88:ca:14:
52:31:6f:b6:01:30:fb:2f:6d:ac:3d:a8:ab:4f:e7:49:fb:50:
df:83:7a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:54 2024 by rpki-client on console-fra.rpki-client.org