Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/QQDdGM55DXbg1L9TBFv2weXyhcs.roa
File: QQDdGM55DXbg1L9TBFv2weXyhcs.roa (raw, json)
Hash identifier: 2g3ArRgPxmsp824giGn4tjMLl3y+D+rEgzi8yCsdvz8=
Subject key identifier: 41:00:DD:18:CE:79:0D:76:E0:D4:BF:53:04:5B:F6:C1:E5:F2:85:CB
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07D45F05
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/QQDdGM55DXbg1L9TBFv2weXyhcs.roa
Signing time: Fri 14 Jan 2022 21:20:15 +0000
ROA not before: Fri 14 Jan 2022 21:20:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35536
IP address blocks: 94.124.116.0/24 maxlen: 24
2a09:6:6::/48 maxlen: 48
2a09:7:2003::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131358469 (0x7d45f05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 14 21:20:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4100dd18ce790d76e0d4bf53045bf6c1e5f285cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:49:c6:79:26:35:e4:83:de:8a:c9:84:db:2f:
60:95:52:7a:3b:0e:bc:db:0b:66:22:53:05:78:43:
21:7e:fa:8e:ec:ca:c5:c1:07:8c:5f:b0:3c:55:86:
8f:02:e0:6c:6c:90:7c:10:3c:43:30:ed:3f:3f:bb:
39:4d:11:22:57:5a:78:a4:bc:30:bd:63:39:ef:2c:
ff:9a:91:51:86:3b:69:cd:a0:ae:e2:19:5a:6a:25:
fa:92:19:88:2d:af:07:a6:cb:41:80:8d:69:78:3b:
80:f5:13:65:f8:04:99:80:ae:1c:15:6f:8a:66:57:
80:36:fd:d3:3b:e0:b4:40:5c:68:e5:b2:aa:b9:5d:
39:84:b7:1d:4a:b3:fd:6c:83:4a:1d:b9:96:67:19:
ba:63:f3:00:6e:51:ad:4c:2a:52:ec:85:87:4e:d5:
75:a8:8b:65:74:40:c2:fd:eb:5f:d9:09:8c:c0:d1:
f8:27:ab:e8:79:ab:2b:2b:05:0e:a5:46:d5:f8:4a:
14:a9:df:28:1a:80:e6:ee:24:ab:c3:b9:93:7a:a1:
f4:7c:8f:89:e5:ad:3f:ce:c1:99:56:31:ab:48:01:
81:92:b9:b3:c8:b2:05:69:47:b0:68:b5:a5:fc:9a:
a0:78:46:62:06:20:cb:78:4f:61:39:e2:a7:ed:55:
90:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:00:DD:18:CE:79:0D:76:E0:D4:BF:53:04:5B:F6:C1:E5:F2:85:CB
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/QQDdGM55DXbg1L9TBFv2weXyhcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.116.0/24
IPv6:
2a09:6:6::/48
2a09:7:2003::/48
Signature Algorithm: sha256WithRSAEncryption
07:70:09:ba:4b:fd:cf:4f:db:48:bd:12:37:d5:9c:99:1d:e7:
95:bc:3f:aa:08:73:8b:4c:31:d7:cc:82:8d:da:6c:a6:a4:30:
45:a9:92:76:58:9a:36:b1:c4:31:2c:3d:ca:4b:34:f9:55:20:
5c:08:ca:8f:30:c5:f4:c8:ac:52:98:f6:94:71:43:e5:7c:d8:
4f:27:d6:b1:00:55:f6:94:6d:21:38:70:ec:17:c5:9b:ce:9d:
37:af:a2:40:a7:14:88:fd:cd:39:79:f7:28:ca:b7:94:23:e1:
70:cf:86:25:ca:41:68:ca:66:18:cb:88:62:03:e6:d4:e1:a2:
01:75:d0:17:66:43:e2:36:2b:0d:80:87:c2:7e:7c:69:e6:49:
22:e7:48:af:d1:f4:47:db:77:56:f1:a8:91:ca:5a:39:e6:84:
f8:71:f1:b0:46:c2:d1:35:16:2d:26:2f:06:89:4b:25:5e:20:
4d:da:d0:f3:2d:22:68:d0:6e:d5:20:c9:8c:b9:d8:90:c3:95:
28:d8:98:3b:8b:67:f6:02:7a:f4:0b:9f:40:cf:c4:db:0c:89:
b7:52:be:b7:20:18:54:a3:b6:fb:cc:c8:61:23:dc:3a:3b:2e:
b3:c8:4f:0c:49:db:ba:e4:10:15:85:32:f2:ba:a0:44:75:da:
9d:ea:12:a4
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgIEB9RfBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NTc2ZWIyY2M0NjJlNmU0YmYwZGU2OWI5ZjYzNDg3NWRlYmJhYWUyMB4XDTIyMDEx
NDIxMjAxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDEwMGRkMThjZTc5
MGQ3NmUwZDRiZjUzMDQ1YmY2YzFlNWYyODVjYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANlJxnkmNeSD3orJhNsvYJVSejsOvNsLZiJTBXhDIX76juzK
xcEHjF+wPFWGjwLgbGyQfBA8QzDtPz+7OU0RIldaeKS8ML1jOe8s/5qRUYY7ac2g
ruIZWmol+pIZiC2vB6bLQYCNaXg7gPUTZfgEmYCuHBVvimZXgDb90zvgtEBcaOWy
qrldOYS3HUqz/WyDSh25lmcZumPzAG5RrUwqUuyFh07VdaiLZXRAwv3rX9kJjMDR
+Cer6HmrKysFDqVG1fhKFKnfKBqA5u4kq8O5k3qh9HyPieWtP87BmVYxq0gBgZK5
s8iyBWlHsGi1pfyaoHhGYgYgy3hPYTnip+1VkOsCAwEAAaOCAiMwggIfMB0GA1Ud
DgQWBBRBAN0YznkNduDUv1MEW/bB5fKFyzAfBgNVHSMEGDAWgBSldussxGLm5L8N
5pufY0h13ruq4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BYYnJMTVJpNXVTX0RlYWJuMk5JZGQ2N3F1SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvOTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8x
L1FRRGRHTTU1RFhiZzFMOVRCRnYyd2VYeWhjcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
OTMxOTI3LTlmMzgtNDFiNi04N2ZhLTI1NGFjZDkyYjRlMS8xL3BYYnJMTVJpNXVT
X0RlYWJuMk5JZGQ2N3F1SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA5
BggrBgEFBQcBBwEB/wQqMCgwDAQCAAEwBgMEAF58dDAYBAIAAjASAwcAKgkABgAG
AwcAKgkAByADMA0GCSqGSIb3DQEBCwUAA4IBAQAHcAm6S/3PT9tIvRI31ZyZHeeV
vD+qCHOLTDHXzIKN2mympDBFqZJ2WJo2scQxLD3KSzT5VSBcCMqPMMX0yKxSmPaU
cUPlfNhPJ9axAFX2lG0hOHDsF8Wbzp03r6JApxSI/c05efcoyreUI+Fwz4YlykFo
ymYYy4hiA+bU4aIBddAXZkPiNisNgIfCfnxp5kki50iv0fRH23dW8aiRylo55oT4
cfGwRsLRNRYtJi8GiUslXiBN2tDzLSJo0G7VIMmMudiQw5Uo2Jg7i2f2Anr0C59A
z8TbDIm3Ur63IBhUo7b7zMhhI9w6Oy6zyE8MSdu65BAVhTLyuqBEddqd6hKk
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org