Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/001b9f-e4d8-4dac-bf08-7240c36000d7/1/QZ8ezGq6mQ-hd1wpZuMEEpV4znE.roa
File: QZ8ezGq6mQ-hd1wpZuMEEpV4znE.roa (raw, json)
Hash identifier: HSAhrePBFjybrh7VO12yUsh1jEg/0CU9YxqzlCWv2Eo=
Subject key identifier: 41:9F:1E:CC:6A:BA:99:0F:A1:77:5C:29:66:E3:04:12:95:78:CE:71
Certificate issuer: /CN=979586035abe23569c2135e320dbd1a255b84034
Certificate serial: 01629C67
Authority key identifier: 97:95:86:03:5A:BE:23:56:9C:21:35:E3:20:DB:D1:A2:55:B8:40:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5WGA1q-I1acITXjINvRolW4QDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/001b9f-e4d8-4dac-bf08-7240c36000d7/1/QZ8ezGq6mQ-hd1wpZuMEEpV4znE.roa
Signing time: Sat 01 Jan 2022 11:05:24 +0000
ROA not before: Sat 01 Jan 2022 11:05:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197470
IP address blocks: 91.220.221.0/24 maxlen: 24
46.151.232.0/21 maxlen: 21
91.221.170.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23239783 (0x1629c67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979586035abe23569c2135e320dbd1a255b84034
Validity
Not Before: Jan 1 11:05:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=419f1ecc6aba990fa1775c2966e304129578ce71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e3:1b:6f:9f:1a:58:d6:e7:a0:84:dd:e0:14:
88:c1:3d:b2:6b:5f:30:52:5b:7c:62:21:c9:78:eb:
20:12:13:d6:60:9d:44:8c:7d:0b:68:d4:91:0e:e8:
ca:09:02:dc:90:3d:8b:ab:ec:0c:87:5d:a2:41:a5:
a9:e8:3e:29:8d:f6:96:4b:ed:bf:e7:01:bd:1e:54:
3c:3b:51:27:b3:d8:6b:70:4e:53:87:c9:c3:ad:77:
05:ba:d3:0b:6b:0b:7b:14:e6:dd:36:0b:33:3b:28:
fe:54:ac:ac:c3:e7:af:d7:83:ac:8e:a1:6c:ba:f3:
1f:7a:27:f0:db:b7:e4:89:b0:55:11:75:ee:72:78:
18:22:ec:c4:9b:8f:b7:05:a5:0c:e9:36:f2:05:f3:
f0:e1:f6:ce:c5:4b:12:9b:c8:6b:81:d6:c1:3b:83:
9a:75:e7:b7:f6:97:4c:44:fa:36:5a:ef:80:d4:92:
8c:bb:71:03:52:1e:b3:e9:7f:32:57:10:7e:b5:6c:
88:07:cd:1c:ff:81:24:f1:af:5f:68:2a:c1:80:c7:
99:d6:39:93:03:6b:05:37:b4:ff:0a:fe:06:2d:66:
eb:d1:57:37:16:d9:06:1d:60:b8:c3:74:0e:76:c1:
9d:b6:5d:96:f0:cb:7d:92:51:c8:ec:33:99:b6:6a:
a3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:9F:1E:CC:6A:BA:99:0F:A1:77:5C:29:66:E3:04:12:95:78:CE:71
X509v3 Authority Key Identifier:
keyid:97:95:86:03:5A:BE:23:56:9C:21:35:E3:20:DB:D1:A2:55:B8:40:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5WGA1q-I1acITXjINvRolW4QDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/001b9f-e4d8-4dac-bf08-7240c36000d7/1/QZ8ezGq6mQ-hd1wpZuMEEpV4znE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/001b9f-e4d8-4dac-bf08-7240c36000d7/1/l5WGA1q-I1acITXjINvRolW4QDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.151.232.0/21
91.220.221.0/24
91.221.170.0/23
Signature Algorithm: sha256WithRSAEncryption
91:50:55:3f:31:2e:70:28:a2:8e:fe:e9:61:52:0a:e1:8a:f4:
12:d3:f4:20:ce:96:78:f2:73:74:25:a6:80:63:37:65:4b:99:
7a:ee:1b:d0:3f:58:90:ac:cb:43:40:db:10:49:13:da:2b:eb:
8a:79:73:b9:cf:02:fc:d4:c4:42:7b:e8:51:58:10:a7:2c:a6:
b8:25:fb:4a:4f:15:94:2c:8b:4e:32:1a:02:9e:5f:44:c9:64:
ff:ae:b7:93:fc:2a:b6:fe:8d:59:11:0e:67:15:1c:6e:a5:e9:
c7:46:f1:71:ec:39:9f:fe:37:7b:d2:ba:b4:ef:db:70:8a:a2:
69:5d:d0:6e:bf:3d:b5:34:9e:34:f4:6b:df:14:17:9b:04:96:
5f:8b:d3:be:31:a7:1e:80:b0:b3:26:55:b3:29:a8:43:83:7b:
6b:ca:16:d6:cc:5c:af:05:35:7b:5c:b9:69:bf:fe:4c:15:0a:
f8:dd:6d:c2:14:99:23:b5:fd:59:10:71:44:08:14:12:dc:70:
fc:69:49:34:71:37:bb:89:fc:0e:2b:f4:f1:52:eb:36:7e:2b:
01:1b:3d:6a:ba:98:9c:0d:b3:7b:a3:ea:0b:9a:0d:23:8e:82:
00:04:c4:09:44:47:be:aa:72:be:ea:64:51:ac:c7:cd:6d:59:
5a:de:40:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:51 2023 by rpki-client on console-fra.rpki-client.org