Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/77330b-607a-4af8-b8f4-2c0d43867d7b/1/QAtv7NasvCb9N3YVJUce76ttBz8.roa
File: QAtv7NasvCb9N3YVJUce76ttBz8.roa (raw, json)
Hash identifier: BZCiBU1QX56xE8I3dXt3PRGHln5BBWjxLCdlQ4QA9dM=
Subject key identifier: 40:0B:6F:EC:D6:AC:BC:26:FD:37:76:15:25:47:1E:EF:AB:6D:07:3F
Certificate issuer: /CN=2d3096d4951f5c6942341fcc0ccfb728dae8ce84
Certificate serial: 31E5CD12
Authority key identifier: 2D:30:96:D4:95:1F:5C:69:42:34:1F:CC:0C:CF:B7:28:DA:E8:CE:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LTCW1JUfXGlCNB_MDM-3KNrozoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/77330b-607a-4af8-b8f4-2c0d43867d7b/1/QAtv7NasvCb9N3YVJUce76ttBz8.roa
Signing time: Sat 01 Jan 2022 04:58:12 +0000
ROA not before: Sat 01 Jan 2022 04:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39609
IP address blocks: 46.17.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 837143826 (0x31e5cd12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d3096d4951f5c6942341fcc0ccfb728dae8ce84
Validity
Not Before: Jan 1 04:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=400b6fecd6acbc26fd37761525471eefab6d073f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:47:d1:11:c5:25:dc:df:1f:b7:bf:4c:ad:f3:
ca:c7:f6:76:37:e0:a8:45:b6:7e:4b:c0:33:db:7f:
61:95:63:65:89:ff:2a:4a:9a:ef:0b:a7:50:3b:c2:
ea:47:31:2d:6b:79:aa:0c:8b:6d:6c:21:05:91:e3:
bc:d2:b5:9a:ac:8c:7f:58:ef:9d:45:5c:24:3b:b6:
e2:7f:49:14:46:e0:97:81:a3:c8:d7:2a:54:e5:25:
e9:cb:c7:c8:bf:eb:43:98:a7:0b:7a:99:47:6d:da:
3e:2a:f2:b2:76:bf:52:5a:67:1a:11:5c:b4:93:ad:
ea:0e:c8:b3:06:99:2c:ca:7f:d5:38:8d:db:b1:3b:
3c:68:74:40:6c:8d:fd:bd:ef:6e:41:6c:0d:de:cc:
7a:52:dd:a4:42:ba:6c:12:ea:41:4c:1f:50:53:1f:
e7:f5:66:63:8e:90:78:4b:57:a0:bb:3e:99:e2:ef:
be:06:87:ba:d4:d1:ab:51:e0:ab:ff:08:0b:23:80:
2e:06:60:6a:39:d6:54:e9:93:58:0e:68:f1:cc:d2:
0a:fd:88:6e:67:3c:98:74:84:1b:09:37:c1:3a:1d:
e5:97:bf:81:9c:34:ee:c5:c6:6d:9d:34:0c:66:ac:
58:9c:07:00:2a:b5:e8:16:a9:46:9c:d9:fe:49:e0:
a9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0B:6F:EC:D6:AC:BC:26:FD:37:76:15:25:47:1E:EF:AB:6D:07:3F
X509v3 Authority Key Identifier:
keyid:2D:30:96:D4:95:1F:5C:69:42:34:1F:CC:0C:CF:B7:28:DA:E8:CE:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LTCW1JUfXGlCNB_MDM-3KNrozoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/77330b-607a-4af8-b8f4-2c0d43867d7b/1/QAtv7NasvCb9N3YVJUce76ttBz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/77330b-607a-4af8-b8f4-2c0d43867d7b/1/LTCW1JUfXGlCNB_MDM-3KNrozoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.17.176.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:87:31:63:db:47:ff:7d:76:c8:5e:0a:17:e6:76:ec:dd:ce:
e8:2b:85:f4:08:ae:2a:7a:85:cc:fa:de:1e:40:dc:34:d9:1a:
b8:e1:57:f7:9a:32:0e:2a:e6:88:7e:cc:fd:62:8c:b5:e4:20:
2d:61:23:f9:ec:6c:31:5a:42:85:f3:d6:b4:51:a5:56:7d:09:
88:35:01:9d:7a:3d:c0:70:91:f1:0f:d4:e1:59:36:dc:78:00:
88:fd:1f:bd:34:ae:e1:cf:a8:c3:c5:ac:16:4a:4e:27:cf:f7:
08:7f:98:9b:18:de:3f:b3:bc:90:49:13:cf:9e:c5:40:7b:18:
41:8f:61:ae:a4:2d:6b:ea:1a:c8:5b:93:7b:ff:45:4c:4b:1f:
41:a1:84:8a:5a:da:02:5b:12:e8:e3:f2:18:ad:b1:14:97:5a:
20:d2:dc:fb:af:2e:a7:4f:91:bd:6f:0a:25:c3:82:21:62:74:
9d:4e:5a:8d:a1:6f:57:b3:e9:ec:01:6c:39:5a:a7:87:3c:de:
89:a0:21:f5:4d:3e:ec:1c:1c:11:4a:f9:26:2a:da:47:9b:8b:
da:bc:56:c9:b7:98:f0:e5:32:d8:56:64:f6:9c:b9:9e:db:b0:
91:f9:c9:06:57:8e:8e:89:40:cf:00:d6:f2:11:19:9f:05:11:
2d:82:e5:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:56 2023 by rpki-client on console-fra.rpki-client.org