Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/QMJX8TPtxtPDrX8uFoQxO4z5Xmc.roa
File: QMJX8TPtxtPDrX8uFoQxO4z5Xmc.roa (raw, json)
Hash identifier: K/WpABQqVUVv5DC2NvO9F0e1dRck9R4PNabt2LNp5MY=
Subject key identifier: 40:C2:57:F1:33:ED:C6:D3:C3:AD:7F:2E:16:84:31:3B:8C:F9:5E:67
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 1AC325F2
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/QMJX8TPtxtPDrX8uFoQxO4z5Xmc.roa
Signing time: Sat 01 Jan 2022 16:03:14 +0000
ROA not before: Sat 01 Jan 2022 16:03:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206595
IP address blocks: 176.235.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448996850 (0x1ac325f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 16:03:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40c257f133edc6d3c3ad7f2e1684313b8cf95e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:02:c7:90:16:3a:39:12:10:62:73:44:6b:85:
57:99:28:af:09:cb:bd:65:e9:03:65:05:ce:73:ca:
c5:70:ba:8f:77:8d:f5:64:37:17:b2:ad:fd:1b:39:
4f:5b:c2:bf:46:cf:41:b6:ae:94:cb:7e:71:7c:39:
b1:56:a8:2d:8e:43:ec:9f:8e:09:77:3f:c5:70:e7:
cd:6a:01:dd:3a:65:df:95:99:da:54:9a:01:62:d6:
08:8d:f3:fb:01:31:a0:dd:e5:92:e8:9a:52:71:e2:
cd:a0:78:b5:c7:bf:d7:f8:be:12:c9:e2:8f:49:63:
9b:1a:5c:90:44:97:aa:45:40:18:6b:4a:40:e4:9d:
ac:fb:2c:6a:db:f2:43:91:48:1b:08:d0:f4:88:58:
58:da:49:37:98:f0:4f:f9:2e:d6:06:64:b3:8e:99:
5b:88:e6:a0:f6:40:33:33:10:0e:a7:d5:11:87:cf:
c5:96:5d:33:7f:a8:94:2d:2c:92:a8:97:88:df:bd:
dc:6b:2f:cb:01:ae:92:60:50:26:57:7d:77:15:4d:
10:cb:98:b7:68:4f:c8:c4:b6:f7:6d:1c:f8:d6:e7:
47:f5:4d:08:f1:2a:ef:b6:67:42:d5:2a:fd:63:96:
08:ed:21:84:58:b6:b4:c7:5b:07:f0:aa:6a:7c:21:
65:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C2:57:F1:33:ED:C6:D3:C3:AD:7F:2E:16:84:31:3B:8C:F9:5E:67
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/QMJX8TPtxtPDrX8uFoQxO4z5Xmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.235.96.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ef:4e:e9:bb:ab:cb:26:d8:5c:96:0e:8c:ad:79:4a:15:ef:
93:28:69:cf:92:9e:fd:7d:b2:9e:6b:ea:4f:b4:da:92:b5:48:
31:1c:cf:bf:29:7e:54:8a:6b:f4:36:6e:08:12:be:ab:4c:a9:
8a:fd:73:a4:45:8f:40:01:1b:9d:70:d1:02:32:cc:c7:06:d4:
80:07:ea:f5:72:0f:9a:03:81:5a:1c:74:65:83:fe:d9:d5:0f:
dd:48:58:da:c1:24:88:33:03:64:26:4d:8e:44:04:70:b1:38:
e8:76:9f:0f:49:70:f8:77:5f:0c:35:23:35:ba:bf:16:a1:e7:
31:de:f0:00:26:a6:67:f6:4c:a2:70:b4:a9:c0:e5:6f:2d:57:
3e:73:31:e6:8d:1c:55:65:c1:1c:98:84:4a:b4:ae:3c:83:de:
16:44:8f:9c:21:6d:6c:d4:ba:6d:62:05:24:4a:93:ea:8c:89:
4d:39:c5:e0:30:c8:f1:f4:64:3d:9a:13:b6:37:15:8e:e2:f2:
6d:73:f1:00:98:fe:0b:de:14:f8:91:c0:6c:5c:ea:b1:0a:12:
31:f9:32:5c:57:41:e7:02:6b:f5:b2:db:20:0e:ff:8d:28:84:
c9:d9:41:07:9c:92:6a:40:f5:71:30:d5:01:05:36:c0:17:57:
20:f2:50:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org