Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/QK3e9E-sYUEdTmfftE7TO6w4Xb4.roa
File: QK3e9E-sYUEdTmfftE7TO6w4Xb4.roa (raw, json)
Hash identifier: kG2W7AKFm7BGatcKhgt78TY4pTbwUiQrSMQApGxLjT4=
Subject key identifier: 40:AD:DE:F4:4F:AC:61:41:1D:4E:67:DF:B4:4E:D3:3B:AC:38:5D:BE
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 3B62736A
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/QK3e9E-sYUEdTmfftE7TO6w4Xb4.roa
Signing time: Thu 07 Apr 2022 12:44:41 +0000
ROA not before: Thu 07 Apr 2022 12:44:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42388
IP address blocks: 144.208.214.232/29 maxlen: 29
213.227.160.0/24 maxlen: 24
188.172.248.0/24 maxlen: 24
213.227.191.0/24 maxlen: 24
217.146.18.0/24 maxlen: 24
217.146.26.216/32 maxlen: 32
188.172.219.64/32 maxlen: 32
185.81.208.0/24 maxlen: 24
188.172.235.188/32 maxlen: 32
217.146.22.170/32 maxlen: 32
213.227.168.222/32 maxlen: 32
2a00:11c0:e:ffff:1::1000/128 maxlen: 128
2a00:11c0:d::1a/128 maxlen: 128
2a05:8900:aa1::/48 maxlen: 48
2a00:11c0:aa1::/48 maxlen: 48
2a00:11c0:48:13::/64 maxlen: 64
2a00:11c0:63:350::1000/128 maxlen: 128
2a00:11c0:11c0::/48 maxlen: 128
2a00:11c0:1010::/48 maxlen: 48
2a00:11c0:82:359::1000/128 maxlen: 128
2a00:11c0:5:613::1000/128 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 996307818 (0x3b62736a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Apr 7 12:44:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40addef44fac61411d4e67dfb44ed33bac385dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:45:88:88:7b:19:3b:5a:4f:a7:c6:f8:49:58:
4a:76:19:0e:e6:84:7d:ff:bc:44:0d:24:2b:00:58:
66:20:cc:49:f1:e5:0b:7b:39:88:c1:6b:a0:44:ef:
24:02:82:08:77:52:a0:b9:06:fa:06:5f:fa:a4:0e:
a2:f3:d1:3f:56:74:b5:93:49:83:78:2b:2d:27:e6:
95:ee:de:30:8d:2e:24:dd:ec:9f:ca:0c:c5:cf:b8:
e7:b7:c6:17:97:4e:aa:2c:83:99:c8:c9:6a:ba:22:
42:e1:18:90:f8:31:63:48:49:d9:12:0a:a1:f6:a9:
e5:63:a2:95:33:d1:ff:b8:b6:1e:3c:16:fb:fb:5f:
51:2b:ab:a7:de:2f:f1:08:20:9e:e4:0c:8b:fc:c8:
2e:13:bc:5f:03:82:17:66:68:39:fa:2b:ed:7a:b3:
c4:18:3a:7e:68:2b:b1:d7:2a:5a:cb:c9:a4:f4:66:
d3:3a:86:7c:56:3f:fb:cf:a2:77:da:a8:ac:f9:b7:
aa:98:30:7f:26:00:9e:22:3e:34:3c:da:e1:95:74:
6c:00:02:dd:a8:42:07:ed:15:35:19:d4:9c:c3:79:
7e:c8:d0:8e:17:71:94:72:4e:05:37:c6:64:eb:35:
1f:b3:bb:53:ad:84:d4:c6:ef:22:14:1f:2a:44:d9:
91:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AD:DE:F4:4F:AC:61:41:1D:4E:67:DF:B4:4E:D3:3B:AC:38:5D:BE
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/QK3e9E-sYUEdTmfftE7TO6w4Xb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.214.232/29
185.81.208.0/24
188.172.219.64/32
188.172.235.188/32
188.172.248.0/24
213.227.160.0/24
213.227.168.222/32
213.227.191.0/24
217.146.18.0/24
217.146.22.170/32
217.146.26.216/32
IPv6:
2a00:11c0:5:613:0:0:0:1000/128
2a00:11c0:d:0:0:0:0:1a/128
2a00:11c0:e:ffff:1:0:0:1000/128
2a00:11c0:48:13::/64
2a00:11c0:63:350:0:0:0:1000/128
2a00:11c0:82:359:0:0:0:1000/128
2a00:11c0:aa1::/48
2a00:11c0:1010::/48
2a00:11c0:11c0::/48
2a05:8900:aa1::/48
Signature Algorithm: sha256WithRSAEncryption
4f:e2:50:2f:ab:01:a0:40:5e:df:64:c8:fc:b0:a2:75:89:01:
0c:04:50:7a:5e:ba:16:d9:e6:6a:73:1c:91:d9:2c:ec:ff:41:
ae:3c:9a:62:81:23:89:71:f7:45:89:db:c4:4e:ed:20:c5:2e:
69:ae:d5:6b:60:41:36:e2:f4:02:6f:94:1b:f3:c2:d1:be:56:
bc:84:df:0c:c2:03:28:f9:36:cd:5e:74:ef:68:2d:f8:fe:5b:
41:46:60:d2:e4:34:cf:54:f8:88:eb:6c:d6:77:16:7b:83:d1:
c8:df:d8:17:d4:72:8c:27:d3:d7:ea:be:79:9b:7f:b5:7e:13:
e6:89:25:36:86:73:bd:30:c1:48:c8:d8:b6:a7:ed:83:5d:2d:
3d:61:ad:f2:aa:6c:3f:76:5d:82:e3:56:d2:a3:95:e5:94:a6:
77:cc:30:75:a9:19:64:2b:8a:f7:52:3d:31:d0:33:38:72:29:
4a:a2:ae:bc:ee:0c:c3:c9:36:fd:a2:a2:bb:eb:f8:b9:81:4d:
33:4f:59:b3:68:ce:57:9e:75:76:de:46:d1:47:b1:35:eb:ea:
da:f5:01:25:22:0c:08:ce:24:f9:32:38:cf:5c:fa:14:05:bd:
75:ec:18:f3:30:70:54:5e:36:e1:5f:9e:13:ca:8c:0b:cb:60:
95:e7:41:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org