Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/c33cd7-aedb-43f7-a9d4-b77b59d300a6/1/QQqxQT_70SxCcXdudLE6246MbFY.roa
File: QQqxQT_70SxCcXdudLE6246MbFY.roa (raw, json)
Hash identifier: BTidFvGXL17dCpcmsriI5bfHagZjlyF/wNTD778Nmig=
Subject key identifier: 41:0A:B1:41:3F:FB:D1:2C:42:71:77:6E:74:B1:3A:DB:8E:8C:6C:56
Certificate issuer: /CN=0b6ab846c95bf6b1914f02f138049c219465fd3e
Certificate serial: 06828F95
Authority key identifier: 0B:6A:B8:46:C9:5B:F6:B1:91:4F:02:F1:38:04:9C:21:94:65:FD:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C2q4Rslb9rGRTwLxOAScIZRl_T4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/c33cd7-aedb-43f7-a9d4-b77b59d300a6/1/QQqxQT_70SxCcXdudLE6246MbFY.roa
Signing time: Sat 01 Jan 2022 09:03:35 +0000
ROA not before: Sat 01 Jan 2022 09:03:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207620
IP address blocks: 91.224.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109219733 (0x6828f95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b6ab846c95bf6b1914f02f138049c219465fd3e
Validity
Not Before: Jan 1 09:03:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=410ab1413ffbd12c4271776e74b13adb8e8c6c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:46:a9:ce:e0:b9:4e:e0:c7:b9:b8:99:42:c2:
12:3f:d7:8e:c4:b9:28:bd:21:4d:40:fa:96:bd:ae:
b4:b4:c9:9f:a7:7a:24:88:17:47:c4:0a:07:fa:90:
dd:9e:04:55:da:11:82:f2:fb:89:1c:82:c4:42:4b:
60:4c:4c:12:9b:c3:2e:8a:a2:bb:8b:20:77:37:da:
da:de:a6:de:cd:71:34:75:1c:14:41:c4:9a:4e:de:
a8:ee:ec:d1:55:5a:60:c4:59:8d:36:bd:cb:90:dd:
07:91:10:80:85:b1:ad:05:81:f3:3a:09:9f:5a:89:
69:38:3b:da:8a:65:58:d4:64:42:8b:44:9a:93:f9:
1d:1f:5f:d6:cd:28:3a:b7:8e:07:64:00:f0:bc:8f:
31:75:4d:5b:6e:64:9b:f7:a0:58:1c:19:eb:18:f6:
5d:ac:10:df:1d:3b:a1:28:26:2f:27:db:62:e6:c1:
1a:65:89:5c:85:a0:3f:67:ec:52:11:2a:d6:13:c5:
70:ad:a8:12:6b:86:f6:a7:38:bb:83:ca:69:53:42:
29:a2:64:61:ff:57:f0:f9:6b:80:80:1a:4f:b5:04:
c6:b6:85:92:97:9f:ef:27:4a:32:a3:4b:e7:4e:1c:
fc:99:ad:61:80:8d:ce:19:f8:e0:af:dd:91:b2:12:
e7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:0A:B1:41:3F:FB:D1:2C:42:71:77:6E:74:B1:3A:DB:8E:8C:6C:56
X509v3 Authority Key Identifier:
keyid:0B:6A:B8:46:C9:5B:F6:B1:91:4F:02:F1:38:04:9C:21:94:65:FD:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C2q4Rslb9rGRTwLxOAScIZRl_T4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c33cd7-aedb-43f7-a9d4-b77b59d300a6/1/QQqxQT_70SxCcXdudLE6246MbFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/c33cd7-aedb-43f7-a9d4-b77b59d300a6/1/C2q4Rslb9rGRTwLxOAScIZRl_T4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.170.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:19:93:ed:dc:15:61:72:43:1e:cc:91:68:d9:74:99:1b:62:
11:90:cb:35:d9:79:57:d0:3b:61:14:af:eb:93:2a:3f:1b:db:
d4:3d:6e:40:ca:b2:ba:54:af:e7:cf:86:57:de:0a:41:6d:df:
6d:c4:e2:65:f6:34:a1:bb:a3:ca:93:50:ed:f4:2b:ab:9d:fe:
60:c4:b8:70:cc:5d:37:d1:63:01:9c:ce:8f:74:55:25:b0:b8:
c3:12:1c:92:6a:57:82:7a:72:3e:9f:ef:0e:e8:6e:5d:14:65:
88:37:bb:81:f0:21:ec:26:43:d1:2e:c7:15:1e:b5:94:a3:42:
8f:12:96:89:35:d7:69:e1:92:ed:4e:1a:39:02:76:1f:90:c3:
e4:47:90:ba:85:79:2e:ff:9c:26:e5:f1:99:3c:aa:76:22:cf:
4c:0d:9f:23:61:59:02:9d:61:c7:45:00:4a:63:fc:4e:23:53:
62:cc:2e:ba:53:df:70:b9:45:17:65:05:11:7c:0c:3a:b0:73:
cb:3b:7b:4b:5a:27:a8:14:a7:34:02:bc:81:69:9f:82:98:f5:
cf:5a:0c:b2:be:49:b8:08:7a:0a:4d:12:be:6d:85:fb:ad:35:
a9:dc:12:b4:d3:04:66:e4:dc:93:81:26:61:b7:46:2f:90:60:
96:bb:0b:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-ams.rpki-client.org