Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/QOzDIdZH3PUjZqhQT-gF4AmbXt4.roa
File: QOzDIdZH3PUjZqhQT-gF4AmbXt4.roa (raw, json)
Hash identifier: Laj2QNQqsl8sYZpTFBdO8TulXwhQLsvu3eAOaw2xSOU=
Subject key identifier: 40:EC:C3:21:D6:47:DC:F5:23:66:A8:50:4F:E8:05:E0:09:9B:5E:DE
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38D0AA74
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/QOzDIdZH3PUjZqhQT-gF4AmbXt4.roa
Signing time: Sat 01 Jan 2022 07:55:12 +0000
ROA not before: Sat 01 Jan 2022 07:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2686
IP address blocks: 145.139.78.0/24 maxlen: 24
145.139.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 953199220 (0x38d0aa74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40ecc321d647dcf52366a8504fe805e0099b5ede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:83:f8:93:ec:e7:80:64:f6:7b:e6:42:dc:f4:
06:26:c8:9d:98:27:77:88:de:87:a3:38:e7:be:84:
ca:38:fc:71:f2:9a:99:c0:a0:6b:4f:cf:04:11:62:
cf:90:56:09:1d:ae:95:37:7f:8b:0d:43:f1:ca:08:
f6:93:c5:af:2b:18:39:b4:12:90:34:3c:ee:c7:b0:
2d:fd:82:2e:f0:fe:4a:75:1f:99:08:65:9e:13:2b:
3f:86:06:29:e0:66:94:aa:2c:4b:d1:0e:8d:31:8b:
7d:c9:02:3a:ba:79:da:f6:cd:b8:24:e3:6c:2a:b9:
07:01:88:62:7b:82:8b:12:fc:5d:43:47:c0:0d:08:
77:bb:97:a6:ba:21:d0:f0:dd:af:08:73:41:a2:36:
7a:24:a3:d7:ef:a0:65:5e:bd:c7:fe:77:3e:ec:a9:
3c:64:9c:dc:91:f3:ab:5f:6e:bd:fc:07:7b:05:ab:
9c:33:a4:74:e1:5b:bc:48:4a:36:40:40:77:d7:59:
3c:f0:39:c4:2f:d8:db:40:29:4f:5d:a0:7b:e1:c3:
51:ca:79:9f:4c:cb:a7:f7:78:ef:a7:97:0a:b4:1b:
b1:af:0d:da:8b:ec:f7:4b:98:43:a5:25:53:8f:26:
2b:16:77:8a:16:34:24:a8:ce:7a:c3:61:f5:b5:a1:
59:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EC:C3:21:D6:47:DC:F5:23:66:A8:50:4F:E8:05:E0:09:9B:5E:DE
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/QOzDIdZH3PUjZqhQT-gF4AmbXt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.139.77.0-145.139.78.255
Signature Algorithm: sha256WithRSAEncryption
30:00:9b:5f:91:03:89:29:2e:9a:58:72:6d:f6:69:4f:3d:a0:
ec:41:d1:7e:19:e1:2a:ec:9e:49:91:80:55:6c:8f:4b:b1:fa:
32:58:bf:98:d1:d1:44:fa:4e:59:57:da:78:85:f4:fc:c9:52:
41:25:92:3a:06:8d:45:dc:c5:37:28:7f:3e:79:96:af:90:07:
3b:44:ab:d3:a1:0c:a8:d5:32:cf:a6:9c:b7:e1:2c:07:33:6d:
ec:80:86:8f:c0:a8:2a:42:cc:7e:d7:05:ab:af:d1:4a:3b:1d:
95:30:47:25:ce:0a:92:40:22:d0:1f:33:46:18:02:fc:61:dd:
7c:28:58:a3:ce:2b:90:6b:1a:86:0e:30:ea:fa:15:50:d1:a0:
54:23:89:85:d5:bb:93:cf:e7:7f:a6:52:dc:7c:64:89:0b:e2:
3f:fa:1c:59:ef:24:fa:85:c6:bc:e4:54:84:ff:0e:cf:a2:68:
5d:4c:fd:c6:08:d4:77:9a:f8:a7:8b:80:52:ac:f2:dd:99:d0:
21:fb:e1:b1:b7:4d:8a:ca:6b:c0:7b:0c:ef:13:a7:16:dc:94:
70:b2:83:ac:b4:e1:0b:f0:21:fc:93:29:52:68:09:ae:46:4d:
04:d5:6e:00:0c:96:cf:b7:d3:e3:ee:10:05:70:c1:c8:1c:ab:
d4:75:a9:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org