Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/QR1JG1plcDZVmVGheygqKZab8n8.roa
File: QR1JG1plcDZVmVGheygqKZab8n8.roa (raw, json)
Hash identifier: iy9oi9aqugwlMsxOG5Lt9bqtl4goIqp6g8a0ebU1nEU=
Subject key identifier: 41:1D:49:1B:5A:65:70:36:55:99:51:A1:7B:28:2A:29:96:9B:F2:7F
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 054C2B1D
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/QR1JG1plcDZVmVGheygqKZab8n8.roa
Signing time: Tue 21 Jun 2022 15:44:46 +0000
ROA not before: Tue 21 Jun 2022 15:44:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49993
IP address blocks: 45.136.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88877853 (0x54c2b1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jun 21 15:44:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=411d491b5a657036559951a17b282a29969bf27f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e7:37:84:73:6e:87:7a:ca:08:f7:e3:60:e0:
b7:9a:1f:b8:2d:b6:52:61:9a:87:64:ea:f8:d5:76:
99:9c:3b:92:a7:c5:05:df:dc:6c:26:bd:d7:5c:ce:
29:f1:71:23:41:7a:90:96:b5:8a:62:18:92:67:11:
7e:9e:68:e1:4e:64:6e:7b:fb:53:c0:31:87:a2:6a:
fe:3d:a6:f6:02:1a:ec:3a:eb:60:b2:ac:1a:09:d1:
e5:e2:2e:71:1d:95:1e:fb:aa:4e:c5:f6:3a:dd:3a:
ab:9a:15:1d:aa:7a:b1:fe:53:3c:0a:fc:f1:44:b4:
e8:3d:84:f3:b4:52:be:1d:dc:df:7b:c7:b0:36:af:
d8:cf:c0:bb:36:2a:b6:10:f8:8d:65:9f:0b:00:13:
c9:a7:4e:c1:4e:7b:01:84:cc:b5:23:30:0f:40:fe:
91:76:7d:d0:1d:93:c4:d8:4d:ec:64:4b:67:02:51:
39:2b:24:34:65:9e:6f:06:d5:62:80:87:67:9c:f7:
83:9d:eb:2a:66:cf:4a:9f:34:f5:6c:01:38:69:83:
d4:c2:7f:b8:31:3a:05:73:83:a3:98:58:95:e5:a8:
67:45:62:58:d3:d1:14:c7:b2:95:d5:e3:99:57:4a:
73:6d:f0:27:be:4f:1e:9b:69:f0:16:a0:3f:41:31:
0b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:1D:49:1B:5A:65:70:36:55:99:51:A1:7B:28:2A:29:96:9B:F2:7F
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/QR1JG1plcDZVmVGheygqKZab8n8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.146.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:f6:42:2d:f5:c4:08:16:a3:be:53:45:9e:40:f2:0f:d3:fa:
a7:00:1e:72:d9:60:07:1c:9a:6e:84:91:64:9a:b1:e3:6c:1d:
7b:33:fa:70:38:22:44:4a:3b:39:3e:6f:f7:87:de:d1:bb:25:
1a:7c:69:3c:31:dc:f4:cd:ac:33:a0:57:c8:96:a9:73:41:ea:
3c:52:fb:7c:8d:8e:10:17:ea:be:7f:5e:4a:dc:fa:1b:d3:ff:
85:a4:6f:7a:57:42:8b:5c:99:0f:d9:f9:f1:c0:1d:f7:42:7f:
fd:00:8a:62:61:3f:f0:46:4b:f2:27:68:51:75:e2:8d:5c:70:
35:d4:5e:79:e6:4c:65:69:8a:98:3a:c7:26:a8:9f:24:4c:c1:
ce:be:5e:97:e3:20:64:a7:f2:b0:18:75:40:09:10:10:da:59:
2e:b6:e5:a4:12:f7:bd:33:21:81:35:1e:10:0a:f0:76:f6:e1:
a9:d2:49:a6:e2:4e:23:f2:17:9c:d1:c6:30:a9:a6:8d:21:1b:
f2:4b:1b:1d:3e:c7:c6:8b:eb:86:70:f2:2a:48:2a:1d:ab:95:
16:ac:88:f3:c3:1c:68:5b:ed:61:54:8d:55:a9:e2:3a:d5:04:
40:1e:55:a2:ad:dc:ea:10:e9:8d:ff:31:bd:87:0b:93:79:78:
11:eb:dc:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:13 2023 by rpki-client on console-ams.rpki-client.org