Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/62b342-7c20-41e3-8f1b-cdcf5f6a4c27/1/QnKVfi8SuoaBLtPulC4kUNaM-S4.roa
File: QnKVfi8SuoaBLtPulC4kUNaM-S4.roa (raw, json)
Hash identifier: hwTxypNWjjJQ+deVpCd7l0uEQuoWxbP1eJSd1ufwvGA=
Subject key identifier: 42:72:95:7E:2F:12:BA:86:81:2E:D3:EE:94:2E:24:50:D6:8C:F9:2E
Certificate issuer: /CN=d63d5529bda17713ebe6b4c22f7fce4cb8f1e8b3
Certificate serial: 03DC6408
Authority key identifier: D6:3D:55:29:BD:A1:77:13:EB:E6:B4:C2:2F:7F:CE:4C:B8:F1:E8:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1j1VKb2hdxPr5rTCL3_OTLjx6LM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/62b342-7c20-41e3-8f1b-cdcf5f6a4c27/1/QnKVfi8SuoaBLtPulC4kUNaM-S4.roa
Signing time: Sat 01 Jan 2022 01:53:47 +0000
ROA not before: Sat 01 Jan 2022 01:53:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210028
IP address blocks: 194.12.56.0/24 maxlen: 24
194.12.57.0/24 maxlen: 24
185.89.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64775176 (0x3dc6408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d63d5529bda17713ebe6b4c22f7fce4cb8f1e8b3
Validity
Not Before: Jan 1 01:53:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4272957e2f12ba86812ed3ee942e2450d68cf92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d1:3e:da:84:d9:73:f4:8b:55:30:92:3e:e6:
82:e5:1d:66:43:02:8a:20:24:41:10:6f:66:c6:02:
63:b1:7b:8b:5f:2e:61:7b:38:4b:fc:a4:41:35:37:
1b:a2:ac:d3:cb:34:7b:07:73:d9:62:ed:b5:cf:6b:
ef:44:e3:18:d3:c0:b1:7f:0a:de:49:0c:9e:71:05:
3e:0f:55:cb:88:41:b1:56:6c:43:b3:7b:55:22:28:
f2:c9:f5:fb:f9:1f:82:c3:52:10:36:83:80:0b:49:
1e:ad:39:a3:e8:49:2b:53:7f:68:af:c2:58:da:c8:
2f:bf:ba:c9:b8:d6:6f:d1:00:6e:f6:c6:9d:72:c9:
90:dc:2c:b0:93:c2:ce:8d:47:fb:ee:c3:47:c7:11:
ea:3c:03:b9:54:5d:66:f6:d1:df:95:ff:12:84:c6:
ff:d6:2c:3a:b6:81:77:cd:c3:04:3b:38:4b:ac:22:
89:15:1f:23:c1:30:18:d1:eb:e5:15:6a:ad:57:88:
53:ff:1d:f6:4c:ca:6b:01:d1:6e:00:da:29:03:df:
f2:c3:e3:ad:d4:ef:ea:d0:36:08:28:67:3e:f2:81:
88:78:6f:c0:c7:47:8f:ed:fc:3a:1a:8b:2c:f0:65:
b2:7e:11:40:f9:38:67:04:56:0a:6b:3f:8c:87:02:
42:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:72:95:7E:2F:12:BA:86:81:2E:D3:EE:94:2E:24:50:D6:8C:F9:2E
X509v3 Authority Key Identifier:
keyid:D6:3D:55:29:BD:A1:77:13:EB:E6:B4:C2:2F:7F:CE:4C:B8:F1:E8:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1j1VKb2hdxPr5rTCL3_OTLjx6LM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/62b342-7c20-41e3-8f1b-cdcf5f6a4c27/1/QnKVfi8SuoaBLtPulC4kUNaM-S4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/62b342-7c20-41e3-8f1b-cdcf5f6a4c27/1/1j1VKb2hdxPr5rTCL3_OTLjx6LM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.99.0/24
194.12.56.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:ef:1d:b0:79:92:e3:31:30:1f:97:d5:ed:fa:c4:ca:69:68:
37:b5:ba:f5:02:87:e7:bf:b9:c0:f9:53:a9:4b:99:5a:40:df:
a0:2a:8e:e3:d0:02:05:3a:32:ab:5a:59:7c:81:ac:17:56:6e:
da:65:1f:2e:8f:98:fb:10:3b:01:ed:d2:3d:41:e7:85:e5:c7:
22:d8:9d:c8:fb:0f:cd:7c:5c:9b:88:3a:62:fe:c2:67:a0:0f:
9e:f8:4a:06:2c:73:1e:2e:4f:ac:32:d9:39:05:b5:ca:5e:ec:
6b:c3:56:ee:91:bd:23:f6:e0:ed:12:10:85:ca:a4:97:19:f2:
32:d2:3d:2e:0a:51:ba:96:e6:76:d5:6e:69:c7:29:77:8c:a1:
33:c6:31:90:c4:53:23:4b:26:7e:56:62:46:e2:78:9f:f5:a1:
16:0b:99:20:c0:3c:b4:a8:81:93:88:2b:0c:ee:4f:f6:76:a2:
ea:fb:2b:7a:a3:26:65:cd:04:e7:0b:5a:d8:c3:9b:b1:46:72:
2e:b3:42:fe:64:5c:b8:9f:03:9b:c6:ab:ee:2d:ba:75:8b:4b:
46:40:6d:29:54:b3:d4:2f:5f:ca:76:12:b0:fc:8e:9e:52:09:
d4:74:d5:54:ff:60:41:e4:27:01:df:96:85:ba:ed:0d:cc:7d:
c5:a6:ed:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:11 2023 by rpki-client on console-fra.rpki-client.org