Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/Q_mV5RWHoryegBMTnokXg2pFIFE.roa
File: Q_mV5RWHoryegBMTnokXg2pFIFE.roa (raw, json)
Hash identifier: Nm6U8Ih223608W6/ErrIHv61lzGhU5g98z5lb9Z5Ngg=
Subject key identifier: 43:F9:95:E5:15:87:A2:BC:9E:80:13:13:9E:89:17:83:6A:45:20:51
Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Certificate serial: 0A07C966
Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/Q_mV5RWHoryegBMTnokXg2pFIFE.roa
Signing time: Sat 01 Jan 2022 13:55:09 +0000
ROA not before: Sat 01 Jan 2022 13:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206409
IP address blocks: 90.158.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168282470 (0xa07c966)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3
Validity
Not Before: Jan 1 13:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43f995e51587a2bc9e8013139e8917836a452051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:59:c1:45:77:72:65:a0:89:07:d7:f9:2b:d6:
f1:8b:eb:1e:36:f1:72:0e:5c:b5:47:87:1d:c3:1e:
f1:60:7b:6d:a6:d0:74:68:88:0a:a5:d3:d3:f5:91:
b8:91:bb:25:f4:3a:a8:35:8b:f7:d9:43:3c:df:88:
37:35:1c:b8:a4:d5:dc:e0:74:56:8d:dd:65:b5:28:
6e:4d:13:35:eb:d6:fe:d0:6c:af:9b:6c:51:c6:62:
b1:df:a2:8a:b0:92:f4:98:58:10:9f:aa:51:14:a8:
5f:ba:c4:56:51:64:62:31:0b:c8:0e:11:3f:cf:0d:
3d:da:b6:c4:7f:41:43:54:d4:05:57:f5:41:43:cf:
ba:e4:52:6e:10:11:c8:67:44:fe:e1:18:14:0c:6b:
85:51:10:32:58:96:9c:22:50:ca:09:00:ed:82:c3:
77:6b:76:d9:5f:3d:1e:6b:dd:13:76:67:7c:ea:02:
f0:de:2e:d7:c2:02:dc:8a:22:a6:2a:07:22:82:c3:
86:39:59:3f:7b:8f:cf:56:a3:ea:8c:a1:37:79:99:
60:d2:14:f5:4e:a5:c9:52:87:be:e2:fc:a2:75:59:
1e:02:62:e6:4e:0d:56:ad:22:a3:5f:2e:f9:22:c3:
8f:9f:36:ac:92:36:a7:b9:5d:fc:de:36:8c:6b:27:
4d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F9:95:E5:15:87:A2:BC:9E:80:13:13:9E:89:17:83:6A:45:20:51
X509v3 Authority Key Identifier:
keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/Q_mV5RWHoryegBMTnokXg2pFIFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.158.17.0/24
Signature Algorithm: sha256WithRSAEncryption
62:6a:c8:99:21:53:c5:7f:fb:d2:b3:3c:84:8d:02:50:f4:a7:
21:dc:b3:b7:35:13:45:81:ca:87:0b:6c:d3:02:53:c5:0d:a2:
ef:2c:ec:e0:00:6e:84:a4:48:a9:33:5c:33:49:e9:49:32:eb:
0a:7c:e3:b5:02:eb:9b:66:19:9c:4a:4a:17:52:a3:b1:df:da:
a5:8f:5f:ac:0c:92:6d:a6:0f:24:59:84:f9:51:78:a6:c2:1c:
46:26:28:df:2e:d4:f8:13:38:bd:18:fa:ea:18:f5:2a:77:4c:
8f:94:d4:f0:1b:bf:39:1e:ee:82:a1:cc:7b:51:e8:10:d7:09:
0f:04:89:b6:66:34:0e:71:3c:e8:01:49:77:d5:e8:10:c1:e6:
62:55:94:00:eb:75:30:a6:2e:28:82:9a:d6:02:45:6b:b6:fc:
4e:bd:fc:7e:1a:0c:b6:d5:e1:de:f7:fd:40:60:b4:73:f7:94:
13:30:c4:87:7e:60:84:0b:68:73:03:75:59:d5:c2:64:bc:99:
05:52:42:b6:78:8f:05:92:cc:50:5f:af:42:d0:71:27:f0:bd:
8f:85:54:7e:74:04:70:ca:62:2a:83:4d:d8:44:f8:56:9e:33:
b2:0a:66:3f:1d:8a:e8:ae:cb:8b:e5:37:9c:12:51:04:c8:12:
8e:a7:c4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:16 2024 by rpki-client on console-ams.rpki-client.org