Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Q7FTuifXAtZK6cCfchu7StMGopE.roa
File: Q7FTuifXAtZK6cCfchu7StMGopE.roa (raw, json)
Hash identifier: e2p4l7SklZ7mKkFlkofZ1W/U0gRw9rjj5LAY0Vvq6AQ=
Subject key identifier: 43:B1:53:BA:27:D7:02:D6:4A:E9:C0:9F:72:1B:BB:4A:D3:06:A2:91
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 0952B810
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Q7FTuifXAtZK6cCfchu7StMGopE.roa
Signing time: Fri 24 Jun 2022 13:13:31 +0000
ROA not before: Fri 24 Jun 2022 13:13:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 949
IP address blocks: 94.124.116.0/24 maxlen: 24
185.213.151.0/24 maxlen: 24
2a09:6::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156416016 (0x952b810)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jun 24 13:13:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43b153ba27d702d64ae9c09f721bbb4ad306a291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0f:f8:45:c4:37:38:b7:ca:3e:1b:40:f2:06:
03:72:88:6e:3e:b2:20:66:4c:48:1b:e4:2f:e4:31:
d9:a3:3f:53:c2:de:1f:e6:cb:a8:c5:b6:09:61:91:
00:3d:7a:41:ab:e0:2e:35:6d:92:1b:e8:bc:eb:15:
c6:f7:72:2d:ec:76:bc:6d:8c:a4:67:5b:40:d3:23:
9b:92:89:dc:1f:dc:49:9b:95:b5:3d:a2:60:f8:4b:
b9:89:38:ca:24:e8:11:b4:43:dc:65:26:11:5c:c1:
5d:65:07:aa:1e:71:3a:59:8e:f7:40:57:f3:87:17:
78:c5:24:b9:f5:a0:6e:05:72:ea:19:c1:b8:cf:70:
69:7b:b8:6c:3d:95:b0:6c:76:76:d1:90:34:a1:88:
d8:65:8c:c7:e8:45:e7:76:dd:e0:34:c2:58:a7:a9:
46:f0:5d:b2:77:aa:dd:93:93:e7:28:d3:8b:49:cb:
34:a5:73:d1:c7:9a:f3:6e:15:64:59:ce:78:19:fb:
d9:ba:01:de:4a:2a:29:4c:81:f6:52:4f:21:7a:51:
3e:8f:e9:51:8e:28:d1:e6:a4:29:ad:29:2c:f1:18:
bd:d2:e3:5a:72:fc:e4:5a:00:18:8a:ec:02:18:fe:
38:2a:f2:a8:d9:3a:8a:56:11:cb:d9:fd:81:27:5d:
d0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B1:53:BA:27:D7:02:D6:4A:E9:C0:9F:72:1B:BB:4A:D3:06:A2:91
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/Q7FTuifXAtZK6cCfchu7StMGopE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.116.0/24
185.213.151.0/24
IPv6:
2a09:6::/32
Signature Algorithm: sha256WithRSAEncryption
a1:77:44:64:eb:0f:3f:c8:f5:43:ae:a9:4d:9a:06:64:01:40:
68:db:e3:52:ab:c4:b4:b8:90:71:69:30:2f:2a:4f:a9:f9:40:
7e:67:a8:2f:b6:97:65:34:b4:95:53:72:32:ea:85:ad:2a:5f:
0e:1a:25:87:8f:67:c2:46:00:b9:d6:4b:d2:bc:13:98:4e:1e:
ba:12:8b:58:05:1e:ad:68:c9:4e:e9:8f:44:79:f9:20:f4:c1:
10:06:b0:d9:c7:3a:b2:cd:c4:3c:38:19:87:88:9a:cb:f3:a9:
43:aa:80:52:7f:4c:85:d8:e9:1f:73:aa:66:8d:55:ff:ad:93:
3a:e6:6c:4f:63:4a:4f:a0:f9:fb:19:c0:b2:cc:97:d6:3a:64:
71:23:45:b0:ac:c1:2a:24:d6:e4:d5:6d:72:06:53:2a:bb:c4:
f8:cd:9a:4a:28:49:a5:52:63:80:1c:0b:63:2d:80:ed:bb:5f:
ac:4f:77:8b:1b:94:ce:75:ac:6d:b4:95:3c:d3:e5:e3:da:58:
e9:64:f4:b6:a3:6f:0b:b8:b0:c9:60:01:8d:a0:c3:a4:49:fc:
e1:1f:2b:44:2a:a7:f4:c8:6e:28:af:f9:f5:da:dc:9f:af:66:
6c:b6:d6:42:ac:df:e1:f9:16:ac:6f:c8:9c:e0:00:04:53:41:
d8:73:b7:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:59 2023 by rpki-client on console-fra.rpki-client.org