Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/qaltzKh7SSUd1j75CqEdc8ucAtI.roa
File: qaltzKh7SSUd1j75CqEdc8ucAtI.roa (raw, json)
Hash identifier: Fasf/ZEpA+Cv+99rCkBPOedFUqQJE0/3rKCZ0GbbFw0=
Subject key identifier: A9:A9:6D:CC:A8:7B:49:25:1D:D6:3E:F9:0A:A1:1D:73:CB:9C:02:D2
Certificate issuer: /CN=6988519de918185fb6e1ebafd1e0835caa1132e4
Certificate serial: 01E58A2A
Authority key identifier: 69:88:51:9D:E9:18:18:5F:B6:E1:EB:AF:D1:E0:83:5C:AA:11:32:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/qaltzKh7SSUd1j75CqEdc8ucAtI.roa
Signing time: Sat 01 Jan 2022 16:02:50 +0000
ROA not before: Sat 01 Jan 2022 16:02:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197157
IP address blocks: 178.249.136.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31820330 (0x1e58a2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6988519de918185fb6e1ebafd1e0835caa1132e4
Validity
Not Before: Jan 1 16:02:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9a96dcca87b49251dd63ef90aa11d73cb9c02d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e6:70:02:f9:84:63:87:d0:b9:8e:40:3b:4a:
15:4c:f7:b6:c7:d4:e5:d3:d9:d8:20:e5:bf:28:58:
f2:94:ff:71:df:40:18:06:42:f3:60:6f:0b:03:e7:
c0:f7:02:45:a9:94:62:0a:b2:6a:f0:db:bc:4d:8a:
1f:0d:e6:ef:28:0a:90:8d:85:19:fc:ad:7d:71:ac:
6d:25:48:28:25:f0:82:f1:e1:1e:a3:fc:e1:08:6d:
4f:7f:2e:94:40:bf:01:4f:9a:da:ab:51:d8:e7:6b:
1d:39:38:07:67:d9:a8:85:77:f0:03:1c:41:61:f0:
a0:30:c1:b7:2c:7e:9c:d0:06:06:15:8f:02:0c:b0:
76:28:7b:49:d7:dd:0b:3b:f1:1e:62:53:eb:df:9d:
92:b3:d9:98:55:d0:52:f1:21:c2:20:00:13:3b:82:
6a:73:4b:d1:fc:d7:37:0c:de:f8:22:e3:19:19:da:
3c:2b:f6:cd:c1:b4:ec:5a:de:78:2d:e0:5e:ed:46:
7d:29:0e:f1:62:ee:07:c4:f2:21:69:ce:bd:e2:3e:
a5:25:59:64:47:d6:6c:40:c5:59:8f:f6:0e:b6:22:
d8:89:7e:91:1f:a7:61:50:d1:5f:c9:c8:a0:f5:69:
c8:35:9f:27:25:3b:36:70:04:70:9e:f2:a4:1e:e6:
5b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A9:6D:CC:A8:7B:49:25:1D:D6:3E:F9:0A:A1:1D:73:CB:9C:02:D2
X509v3 Authority Key Identifier:
keyid:69:88:51:9D:E9:18:18:5F:B6:E1:EB:AF:D1:E0:83:5C:AA:11:32:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYhRnekYGF-24euv0eCDXKoRMuQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/qaltzKh7SSUd1j75CqEdc8ucAtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/515240-b594-469b-a992-ec72d6ada04a/1/aYhRnekYGF-24euv0eCDXKoRMuQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.249.136.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:ea:b7:7c:a3:1f:d1:a2:98:b4:52:ce:07:3d:ec:b3:f1:d2:
26:aa:0e:75:b8:73:a8:46:af:80:05:c1:3e:73:90:cc:4f:ef:
d0:e3:e3:b6:05:bb:63:1d:08:0b:a1:ea:d2:7a:cd:c9:09:89:
53:82:f1:46:77:71:32:5f:b8:2f:ce:69:b3:60:1d:8b:e4:47:
ff:0b:06:0f:ac:35:c3:8f:83:f9:a8:2b:d7:af:ed:93:3c:63:
78:3d:45:4d:5e:89:82:21:99:df:49:17:0e:d2:23:dd:3d:e1:
72:0a:f0:0d:74:d1:05:56:03:7f:2a:de:5a:75:b8:33:6a:18:
9c:62:06:4d:07:aa:a2:29:c2:25:3a:6f:e1:18:4f:e7:46:34:
b0:2e:12:e2:6c:4e:0f:bf:f7:44:38:cc:f9:d5:bd:f0:5f:1c:
de:63:11:b5:2f:94:d0:2a:f5:f5:6b:26:6b:5f:74:03:c6:45:
7d:e2:68:ca:80:f1:22:71:b9:eb:81:48:29:3f:98:dd:05:9b:
46:52:76:db:a2:4c:b8:83:80:f7:6d:1d:9b:7a:38:cc:26:db:
4a:5c:6d:e0:57:d7:0e:40:b3:77:f1:f1:90:d8:80:32:49:10:
f2:6c:26:81:ef:20:ed:a2:d1:32:42:f4:59:7c:1c:10:df:7f:
25:1c:99:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:15 2024 by rpki-client on console-ams.rpki-client.org