Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/qleUUVuIk6sBoOOX6g7PmIMAr0c.roa
File: qleUUVuIk6sBoOOX6g7PmIMAr0c.roa (raw, json)
Hash identifier: WC24HZEP0rdqkP2SoF6am8DA5R+1VcfQZClprycfpgc=
Subject key identifier: AA:57:94:51:5B:88:93:AB:01:A0:E3:97:EA:0E:CF:98:83:00:AF:47
Certificate issuer: /CN=c53b4cf0a7471f000f8a56a049b163967cc3bd99
Certificate serial: 0546968A
Authority key identifier: C5:3B:4C:F0:A7:47:1F:00:0F:8A:56:A0:49:B1:63:96:7C:C3:BD:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/qleUUVuIk6sBoOOX6g7PmIMAr0c.roa
Signing time: Sat 01 Jan 2022 09:00:19 +0000
ROA not before: Sat 01 Jan 2022 09:00:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210150
IP address blocks: 217.145.232.0/22 maxlen: 22
79.171.64.0/21 maxlen: 21
2a0d:9c40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88512138 (0x546968a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53b4cf0a7471f000f8a56a049b163967cc3bd99
Validity
Not Before: Jan 1 09:00:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa5794515b8893ab01a0e397ea0ecf988300af47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5c:28:f1:17:33:c7:5c:47:65:be:f2:2e:bd:
41:ea:a1:69:aa:a4:54:ab:5c:fe:63:ab:b0:71:d7:
da:ca:73:88:06:58:e5:e5:16:b5:f4:b2:40:ff:d0:
d6:5b:3c:3f:fa:23:23:7e:80:db:d6:0f:5b:92:4a:
db:6f:46:ff:66:de:e1:7d:0a:ea:68:8c:b4:b4:6a:
3b:f2:0a:70:f3:1f:c9:42:67:6c:cb:e8:a6:b0:37:
13:72:55:7c:42:49:1a:05:26:89:a6:e4:1d:8c:96:
a3:d9:cf:aa:1b:00:c3:96:1d:37:45:1a:f2:f7:5c:
55:a0:7c:dc:a7:07:3a:a4:d9:09:85:4d:07:9a:81:
6b:d1:b2:c4:b2:31:ad:25:d4:09:10:3e:50:95:61:
75:c4:ff:d3:7c:19:69:24:25:cb:5d:3e:7c:14:59:
0a:97:39:f9:9c:84:ab:18:01:06:61:08:72:7d:b3:
08:b9:70:30:8a:43:b8:d8:cc:71:14:dd:06:45:f4:
05:ec:41:7d:6b:73:81:11:00:59:4e:06:24:5a:d3:
82:af:d3:d4:66:29:ca:e6:4a:1c:5f:99:c3:3c:13:
0c:06:0a:96:b2:be:b2:b5:ff:70:7a:f4:a7:d5:dd:
7f:1e:09:b8:a1:ed:5d:bd:d3:0a:a2:53:2d:94:4c:
c4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:57:94:51:5B:88:93:AB:01:A0:E3:97:EA:0E:CF:98:83:00:AF:47
X509v3 Authority Key Identifier:
keyid:C5:3B:4C:F0:A7:47:1F:00:0F:8A:56:A0:49:B1:63:96:7C:C3:BD:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/qleUUVuIk6sBoOOX6g7PmIMAr0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.171.64.0/21
217.145.232.0/22
IPv6:
2a0d:9c40::/29
Signature Algorithm: sha256WithRSAEncryption
5f:b4:c7:06:80:4d:34:70:62:56:e3:04:99:74:4a:d0:7f:e5:
26:e1:5a:be:b5:2f:4e:15:33:65:5f:0d:0f:c8:26:74:8f:50:
b7:c6:78:47:5a:6f:bb:e6:1b:0c:74:12:b8:c3:7b:fd:6d:3a:
e5:21:45:86:a0:5a:dd:21:04:bb:c4:c4:f3:40:bc:41:bd:3f:
bf:8e:d6:09:4f:7b:6b:38:2a:eb:74:ed:81:58:ab:72:e4:1f:
8c:5d:93:c9:c9:28:d8:94:e6:28:7f:c6:a1:e1:76:c0:c6:04:
df:91:1b:97:12:5c:fa:7d:dc:58:30:16:73:da:c2:33:01:ba:
c8:9b:ea:0d:45:01:69:f3:5b:31:e8:7b:20:5b:ac:67:dd:7e:
18:26:37:b7:d0:b3:4c:b4:f2:41:d4:09:0f:d2:b3:54:64:38:
36:b0:4a:1a:ac:4a:39:36:ae:7f:c8:a8:04:1c:e4:36:d5:92:
cb:98:47:60:7c:1f:d1:08:e0:01:58:d8:49:da:dd:a4:81:47:
84:ca:7d:8a:92:e7:99:6b:99:c0:d0:ba:e7:b1:6f:de:e8:82:
e8:a2:7f:7b:e4:47:27:2e:d7:5b:6d:e8:f5:d1:7a:22:c4:7e:
03:1f:93:14:2b:c9:90:36:57:83:93:f3:8c:cb:47:31:02:15:
27:b9:11:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:38 2024 by rpki-client on console-ams.rpki-client.org