Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/QHrO-uvHSpdJYwyGQg5HfJr8vzs.roa
File: QHrO-uvHSpdJYwyGQg5HfJr8vzs.roa (raw, json)
Hash identifier: m6AlyQ9zOvvA2QN1+iIJWFE20xOE1v+g8J6Ii4/vgy0=
Subject key identifier: 40:7A:CE:FA:EB:C7:4A:97:49:63:0C:86:42:0E:47:7C:9A:FC:BF:3B
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 07404213
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/QHrO-uvHSpdJYwyGQg5HfJr8vzs.roa
Signing time: Tue 19 Apr 2022 10:40:07 +0000
ROA not before: Tue 19 Apr 2022 10:40:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 17558
IP address blocks: 57.197.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121651731 (0x7404213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Apr 19 10:40:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=407acefaebc74a9749630c86420e477c9afcbf3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:58:87:15:0e:0a:1c:8c:99:87:c1:76:5e:82:
f1:d0:94:d6:a7:37:66:ed:65:05:a3:78:05:5e:5f:
91:90:1a:8e:9c:77:92:9d:7a:cc:89:1f:37:a6:96:
ab:5a:4a:da:35:31:16:47:b7:09:f5:82:cd:70:46:
cf:56:a6:17:9e:bd:01:85:9c:62:ce:89:99:3b:f6:
a9:b1:0c:38:c3:af:3c:9a:c8:1c:99:f3:a4:ca:92:
2c:e4:f0:49:a0:c2:1f:cc:19:8c:78:76:5a:41:de:
b5:e4:62:08:0d:b1:dc:4c:c9:fb:7a:7c:f7:10:39:
30:bd:2c:83:37:c4:3c:ad:70:d3:96:e8:d0:6d:ce:
15:ef:d6:5e:48:6e:72:77:bc:66:f7:44:54:2c:a9:
3b:65:33:9c:a4:58:3c:50:a2:8f:f3:23:7f:33:5e:
23:f6:ae:1d:62:6d:83:11:9a:be:fe:ac:ec:1f:77:
b9:1c:58:44:f5:09:a9:57:22:b5:a4:88:54:da:a8:
e4:6e:1f:7e:63:27:49:37:60:4f:c6:4a:2d:aa:09:
c5:df:b2:d9:b1:8e:3e:2a:74:5e:95:25:fc:f3:09:
48:86:cd:03:c1:70:03:65:f4:cc:39:da:b2:e6:97:
89:17:ac:36:21:62:48:59:07:8c:3f:e4:33:5f:86:
b1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:7A:CE:FA:EB:C7:4A:97:49:63:0C:86:42:0E:47:7C:9A:FC:BF:3B
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/QHrO-uvHSpdJYwyGQg5HfJr8vzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.197.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ad:6b:15:b4:2c:fa:02:c4:b8:d3:b6:0c:93:5a:9e:a4:16:e2:
7a:fd:c4:a4:b9:3e:a4:41:de:89:2e:83:0d:6b:69:4c:1e:d5:
3a:1a:e0:b8:8d:ab:46:dc:62:b7:36:6a:56:77:06:ab:b7:b0:
27:da:0a:f4:25:6f:8f:61:4b:ab:fe:60:db:32:4a:33:a5:d4:
20:ce:ea:f7:6f:2e:33:e9:bd:03:20:1d:81:8e:68:b0:1e:09:
2b:f1:bd:33:a7:fc:94:8c:1d:d9:ce:c3:d1:8d:06:b1:95:00:
51:ae:43:d7:79:48:40:2d:62:55:61:39:f0:cd:31:77:29:82:
fe:99:42:d0:4b:e9:e1:aa:c9:e0:d7:8d:19:38:76:c8:38:95:
c0:c3:da:02:fa:39:10:fd:fd:47:8a:1a:f0:a9:60:1a:e6:5c:
d3:68:16:ce:31:fd:c7:79:f7:b6:67:11:48:bf:a1:18:d3:7b:
e0:07:f0:a9:da:d8:85:59:35:0e:84:98:a8:f7:16:5d:82:c0:
5d:79:04:ae:f2:9d:d7:d5:b9:b6:3e:08:8a:e2:5a:82:a5:a0:
99:d5:a3:b1:df:9b:2c:ca:94:23:07:2b:80:c1:cf:23:3a:4f:
45:76:49:1f:ea:c2:74:81:13:c7:d0:e4:31:0e:6d:5c:8b:2c:
5b:26:f0:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org