Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/QVhp_zqsWHhZASGUes4_YtArTeA.roa
File: QVhp_zqsWHhZASGUes4_YtArTeA.roa (raw, json)
Hash identifier: m3C4RVeTsXYoMrPK0VnKzJlW+gJNGbmYEW1MreK+nfI=
Subject key identifier: 41:58:69:FF:3A:AC:58:78:59:01:21:94:7A:CE:3F:62:D0:2B:4D:E0
Certificate issuer: /CN=5fe58e732a0f71f4f01302d62167173bd9b17cc1
Certificate serial: 0183306E5BF180ABB5DBDCBF94606D2EBEC4
Authority key identifier: 5F:E5:8E:73:2A:0F:71:F4:F0:13:02:D6:21:67:17:3B:D9:B1:7C:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X-WOcyoPcfTwEwLWIWcXO9mxfME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/QVhp_zqsWHhZASGUes4_YtArTeA.roa
Signing time: Mon 12 Sep 2022 06:41:22 +0000
ROA not before: Mon 12 Sep 2022 06:41:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6085
IP address blocks: 57.0.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:30:6e:5b:f1:80:ab:b5:db:dc:bf:94:60:6d:2e:be:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fe58e732a0f71f4f01302d62167173bd9b17cc1
Validity
Not Before: Sep 12 06:41:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=415869ff3aac5878590121947ace3f62d02b4de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:55:2f:dd:95:6a:1b:47:d9:b7:c3:56:dc:d5:
98:d6:b2:02:73:0e:6e:3d:09:d4:d2:9d:4a:75:43:
6c:c0:74:73:45:36:bf:a1:9a:82:a6:d1:0d:13:44:
d6:d0:a0:ed:27:32:fb:70:32:88:6a:93:9d:c1:29:
af:8d:97:ac:90:a0:43:6a:7f:2b:b6:26:2c:97:e0:
6d:e9:90:7c:7c:fe:ba:98:11:d0:0e:2a:ba:24:02:
d6:38:ab:d0:10:0d:ac:99:f9:b6:bd:24:0d:c5:0a:
aa:5b:5f:bd:04:6c:eb:38:8b:4d:19:c1:b3:de:b1:
aa:74:af:72:5f:b6:44:3f:53:ab:60:86:a2:b4:4a:
db:0d:b9:f2:3c:a0:9c:5d:e7:55:79:b7:e4:2b:7e:
f7:95:aa:bb:e3:86:14:d7:74:60:15:84:2b:f5:96:
33:e0:ec:2d:4c:f3:78:0f:10:5b:b3:33:ff:a1:00:
95:a1:1e:df:69:de:ec:d8:d0:56:41:a0:cb:89:a5:
e6:82:b5:06:81:37:ee:b6:74:f9:01:31:47:29:3a:
7b:69:00:a4:fb:6f:16:40:7b:c8:45:77:8a:ba:f5:
8f:04:01:e8:b2:ab:f7:c2:ad:97:6b:da:5a:1d:a5:
cd:c0:97:12:3e:f2:ad:db:6e:c2:39:3b:86:0b:53:
27:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:58:69:FF:3A:AC:58:78:59:01:21:94:7A:CE:3F:62:D0:2B:4D:E0
X509v3 Authority Key Identifier:
keyid:5F:E5:8E:73:2A:0F:71:F4:F0:13:02:D6:21:67:17:3B:D9:B1:7C:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X-WOcyoPcfTwEwLWIWcXO9mxfME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/QVhp_zqsWHhZASGUes4_YtArTeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0d840c-952d-4702-aba3-b6e58f9c82e1/1/X-WOcyoPcfTwEwLWIWcXO9mxfME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.0.0.0/16
Signature Algorithm: sha256WithRSAEncryption
62:a1:05:71:cb:89:86:9c:af:5b:ae:fc:b2:f9:df:3d:72:59:
d7:e1:a6:92:29:cc:4e:ca:27:4c:9d:48:10:5c:55:95:90:9d:
35:3e:66:c7:d0:7e:c9:bb:60:68:ef:31:33:c1:98:26:42:18:
f5:f7:f2:cb:6a:1d:31:3c:87:04:92:87:68:9c:fc:e9:6c:62:
6e:24:bd:4f:b3:3f:6d:f1:db:f8:2e:f6:1c:b6:05:a8:aa:cc:
81:06:18:5b:5c:da:86:83:c2:d4:c0:7f:03:74:b2:d2:fd:8d:
0b:dd:bc:03:7c:44:d4:84:75:62:4f:17:52:50:5c:2b:e5:d6:
67:f7:1b:65:3d:72:9a:97:5a:8c:82:65:48:b3:f1:81:39:ea:
db:6b:e0:59:ae:f8:07:d5:05:1e:4f:00:6d:57:ce:08:e6:59:
ac:af:34:b4:dc:0c:dd:68:40:96:f4:db:fc:15:82:6c:85:58:
0c:d8:10:63:51:40:a3:5b:10:55:cf:2e:e6:94:53:93:40:45:
76:c0:af:75:0c:a5:06:4b:56:8f:97:83:29:02:f5:1f:2b:5b:
62:1a:67:64:d4:36:b9:73:10:02:f2:45:03:9a:5d:39:0f:6e:
d4:16:a1:a3:84:6d:00:5a:f4:a2:2e:39:45:3d:2f:20:1d:6a:
dd:67:73:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:55 2024 by rpki-client on console-ams.rpki-client.org