Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/280b76-15ac-4c68-8032-f3797ef348ff/1/qw6XIK1hIul0Wv4FnzPfaFXCgW4.roa
File: qw6XIK1hIul0Wv4FnzPfaFXCgW4.roa (raw, json)
Hash identifier: fgnO+B8Ze056KKzKdtDIjP32yekSVV04mASmvXkishM=
Subject key identifier: AB:0E:97:20:AD:61:22:E9:74:5A:FE:05:9F:33:DF:68:55:C2:81:6E
Certificate issuer: /CN=05ad79492e809934d693b11855e75103241569eb
Certificate serial: 13E9BA0E
Authority key identifier: 05:AD:79:49:2E:80:99:34:D6:93:B1:18:55:E7:51:03:24:15:69:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba15SS6AmTTWk7EYVedRAyQVaes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/280b76-15ac-4c68-8032-f3797ef348ff/1/qw6XIK1hIul0Wv4FnzPfaFXCgW4.roa
Signing time: Sat 01 Jan 2022 05:59:49 +0000
ROA not before: Sat 01 Jan 2022 05:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2269
IP address blocks: 138.231.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334084622 (0x13e9ba0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ad79492e809934d693b11855e75103241569eb
Validity
Not Before: Jan 1 05:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab0e9720ad6122e9745afe059f33df6855c2816e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2d:0e:6b:94:81:a1:70:0f:97:ae:26:a3:f5:
b6:86:5d:8f:fd:d2:c2:a0:4b:35:62:84:f4:df:38:
41:70:e8:66:86:94:c8:06:47:49:1e:66:f2:33:32:
26:52:04:ca:94:da:11:d0:ce:81:5b:e3:5e:6e:a6:
7d:81:72:ad:fe:eb:22:27:84:e5:d9:ff:74:44:87:
29:a5:2d:23:4d:57:dc:0c:92:52:c0:97:89:49:f3:
35:7d:fd:03:ef:ed:99:ba:ab:9c:1a:c7:12:c5:08:
89:d8:f2:3d:80:5c:76:4b:3c:7c:23:ed:65:91:d3:
cf:84:63:0a:44:86:54:5e:0f:20:fb:70:07:6c:03:
1b:5f:d0:8e:34:eb:e2:55:24:78:d3:7c:a3:e6:ed:
18:57:12:0c:6d:76:51:44:a3:5c:ad:f0:5b:08:85:
d5:3c:d7:c3:01:5e:7f:39:12:9f:52:2e:fd:00:77:
71:ed:90:8b:e1:90:31:74:b2:5f:25:eb:10:83:cb:
5b:7c:12:d2:cb:9f:1b:85:66:ee:d1:ea:bf:5e:5a:
b9:4f:22:bd:5f:8e:aa:dd:e7:8b:fd:82:17:ff:7f:
6c:20:ff:a5:8f:6d:76:7a:c5:d7:a6:10:c2:c0:85:
55:6e:d9:cb:8d:fa:a7:ad:4d:ec:f1:f2:5f:b2:d6:
9e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:0E:97:20:AD:61:22:E9:74:5A:FE:05:9F:33:DF:68:55:C2:81:6E
X509v3 Authority Key Identifier:
keyid:05:AD:79:49:2E:80:99:34:D6:93:B1:18:55:E7:51:03:24:15:69:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba15SS6AmTTWk7EYVedRAyQVaes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/280b76-15ac-4c68-8032-f3797ef348ff/1/qw6XIK1hIul0Wv4FnzPfaFXCgW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/280b76-15ac-4c68-8032-f3797ef348ff/1/Ba15SS6AmTTWk7EYVedRAyQVaes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.231.0.0/16
Signature Algorithm: sha256WithRSAEncryption
05:5a:a7:8c:b5:1b:d8:f6:5f:51:dd:90:99:17:a2:f2:bb:84:
46:37:a0:18:86:85:fe:92:e3:e4:62:ba:a7:f6:ab:09:bc:63:
57:2d:35:c5:ab:1b:4f:13:a6:d2:f0:87:28:2e:62:3d:8b:a6:
b7:84:7d:b9:0a:5e:24:00:e2:27:5d:78:38:1e:3e:d0:06:69:
36:cc:be:67:90:8a:34:9f:75:f7:0a:92:0f:0e:7f:26:85:9c:
cd:39:4c:30:65:97:45:ca:88:2a:11:ad:6f:95:ea:3c:1d:d1:
6d:07:5d:37:85:8d:3a:39:db:17:e9:d7:83:61:5e:21:41:63:
ca:a9:b4:eb:01:bc:06:8e:76:7a:18:57:68:f4:55:43:4d:4a:
5d:52:df:ca:ba:b0:01:54:e9:37:4b:be:1f:04:77:0c:28:67:
06:0e:01:6b:05:b8:22:00:b8:4e:f8:f0:ed:c0:34:9f:95:81:
73:a4:70:fb:60:38:b3:dd:09:97:35:9a:af:c5:56:6f:f3:0b:
b3:43:4f:d6:68:8b:ec:9b:53:a0:41:54:b0:04:d5:28:3b:8d:
25:01:a4:50:dc:b2:2a:7e:75:5e:30:b4:91:2c:4a:5c:d3:52:
91:82:3e:9e:71:b4:09:67:28:28:4e:37:1f:70:50:4f:8b:a2:
a9:d5:c0:40
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIEE+m6DjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NWFkNzk0OTJlODA5OTM0ZDY5M2IxMTg1NWU3NTEwMzI0MTU2OWViMB4XDTIyMDEw
MTA1NTk0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWIwZTk3MjBhZDYx
MjJlOTc0NWFmZTA1OWYzM2RmNjg1NWMyODE2ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL8tDmuUgaFwD5euJqP1toZdj/3SwqBLNWKE9N84QXDoZoaU
yAZHSR5m8jMyJlIEypTaEdDOgVvjXm6mfYFyrf7rIieE5dn/dESHKaUtI01X3AyS
UsCXiUnzNX39A+/tmbqrnBrHEsUIidjyPYBcdks8fCPtZZHTz4RjCkSGVF4PIPtw
B2wDG1/QjjTr4lUkeNN8o+btGFcSDG12UUSjXK3wWwiF1TzXwwFefzkSn1Iu/QB3
ce2Qi+GQMXSyXyXrEIPLW3wS0sufG4Vm7tHqv15auU8ivV+Oqt3ni/2CF/9/bCD/
pY9tdnrF16YQwsCFVW7Zy436p61N7PHyX7LWnpMCAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBSrDpcgrWEi6XRa/gWfM99oVcKBbjAfBgNVHSMEGDAWgBQFrXlJLoCZNNaT
sRhV51EDJBVp6zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JhMTVTUzZBbVRUV2s3RVlWZWRSQXlRVmFlcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzcvMjgwYjc2LTE1YWMtNGM2OC04MDMyLWYzNzk3ZWYzNDhmZi8x
L3F3NlhJSzFoSXVsMFd2NEZuelBmYUZYQ2dXNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcv
MjgwYjc2LTE1YWMtNGM2OC04MDMyLWYzNzk3ZWYzNDhmZi8xL0JhMTVTUzZBbVRU
V2s3RVlWZWRSQXlRVmFlcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIrnMA0GCSqGSIb3DQEBCwUAA4IB
AQAFWqeMtRvY9l9R3ZCZF6Lyu4RGN6AYhoX+kuPkYrqn9qsJvGNXLTXFqxtPE6bS
8IcoLmI9i6a3hH25Cl4kAOInXXg4Hj7QBmk2zL5nkIo0n3X3CpIPDn8mhZzNOUww
ZZdFyogqEa1vleo8HdFtB103hY06OdsX6deDYV4hQWPKqbTrAbwGjnZ6GFdo9FVD
TUpdUt/KurABVOk3S74fBHcMKGcGDgFrBbgiALhO+PDtwDSflYFzpHD7YDiz3QmX
NZqvxVZv8wuzQ0/WaIvsm1OgQVSwBNUoO40lAaRQ3LIqfnVeMLSRLEpc01KRgj6e
cbQJZygoTjcfcFBPi6Kp1cBA
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:43 2023 by rpki-client on console-ams.rpki-client.org