Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/QCW_K7Fc8Woptl0yXkkZ3ZXU2uI.roa
File: QCW_K7Fc8Woptl0yXkkZ3ZXU2uI.roa (raw, json)
Hash identifier: xLw2zR7ri08HsMJCUKA7HOkOajxeh4kyng5Gh4z5+wg=
Subject key identifier: 40:25:BF:2B:B1:5C:F1:6A:29:B6:5D:32:5E:49:19:DD:95:D4:DA:E2
Certificate issuer: /CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Certificate serial: 3280DBFB
Authority key identifier: C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/QCW_K7Fc8Woptl0yXkkZ3ZXU2uI.roa
Signing time: Sat 01 Jan 2022 11:03:36 +0000
ROA not before: Sat 01 Jan 2022 11:03:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201275
IP address blocks: 178.57.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 847305723 (0x3280dbfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Validity
Not Before: Jan 1 11:03:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4025bf2bb15cf16a29b65d325e4919dd95d4dae2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3f:22:53:6e:8a:55:b8:db:d9:a4:33:fa:4b:
ef:80:60:ee:99:a6:44:71:ac:d7:cb:54:0e:df:a1:
c7:68:f7:a8:9c:09:e6:7f:80:39:ed:32:41:2b:d0:
d9:9b:47:33:d2:e8:15:7d:b9:3f:76:fa:3a:cf:80:
d2:1a:01:53:d8:6c:a6:4d:57:c4:d7:10:fa:61:e2:
7b:50:e6:98:f2:da:c5:0e:49:9f:3a:ea:9a:3d:7c:
07:a1:c7:3f:56:0b:7d:3e:b4:3a:c1:1e:db:1c:95:
5f:a2:4d:85:0a:38:66:ff:db:7c:97:87:47:c7:00:
fb:ca:d4:77:29:76:3c:91:42:c5:22:ea:3b:f9:88:
62:28:59:a2:8e:60:0d:18:2e:dc:ef:c2:c7:66:7a:
06:95:12:e0:2c:9b:fb:7f:fa:02:a0:16:39:6a:fd:
c9:2f:79:a3:ac:bf:33:d8:d9:05:d1:27:77:16:ea:
cb:b6:2f:25:9f:02:00:70:c0:ab:3a:3f:0f:29:fe:
0f:eb:d9:dc:90:51:c4:79:77:01:71:f9:bc:3b:54:
a1:46:be:0f:f6:ec:1f:53:36:9e:56:3b:5b:55:f6:
7c:47:2a:eb:7e:2d:49:18:40:3d:e2:fd:6d:0f:bd:
b7:bb:98:ae:8f:bd:01:6c:af:23:b4:f0:62:74:d8:
86:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:25:BF:2B:B1:5C:F1:6A:29:B6:5D:32:5E:49:19:DD:95:D4:DA:E2
X509v3 Authority Key Identifier:
keyid:C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/QCW_K7Fc8Woptl0yXkkZ3ZXU2uI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.57.92.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:10:a2:85:bf:12:67:6c:2b:d7:5c:e0:fa:03:03:a8:fa:5c:
ea:c3:53:80:fa:b8:85:e1:ed:fc:a4:b3:41:12:03:1f:b9:6b:
24:f9:4d:bc:34:b6:1d:77:c5:c0:d6:1a:45:06:ed:7f:56:c4:
1d:ec:04:ee:79:4b:67:fb:42:45:b0:d0:ac:7f:89:8a:f8:21:
8a:ea:f4:5f:20:07:86:21:f6:eb:c4:ff:4b:a3:50:4c:2f:97:
22:0e:52:86:15:9b:2b:63:d4:e7:c8:da:3d:0e:87:c4:5d:c6:
6b:a0:80:4a:07:32:1e:e8:95:2d:21:d7:b8:f3:56:8a:52:56:
93:e7:4c:6a:d7:60:54:28:df:cb:75:e8:55:78:3a:85:b9:c0:
ba:9b:37:14:17:19:8b:64:b3:d9:d3:a7:be:5f:09:be:d2:cd:
4b:e8:74:c6:66:08:89:ca:dc:3c:f2:c7:67:39:22:d9:26:04:
da:b2:9f:4e:3a:ca:81:28:07:e5:b7:62:c9:40:7c:c0:39:9a:
15:af:32:7f:c4:64:94:8c:31:3e:ef:df:86:7a:26:48:26:a9:
be:61:fc:fe:6f:1c:96:fb:21:d6:91:28:7c:ae:34:fe:e2:2d:
37:33:e7:90:60:a5:f6:15:f5:90:92:b3:41:2e:5a:50:eb:20:
ef:c0:b8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:27 2023 by rpki-client on console-ams.rpki-client.org