Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/qc3iHgnYATFuYomQkl8ZEmYm8ZA.roa
File: qc3iHgnYATFuYomQkl8ZEmYm8ZA.roa (raw, json)
Hash identifier: 7MMctwcf/qn56a8IVUiZ+pXIoIZsHp1CCZJJ1gAQ44M=
Subject key identifier: A9:CD:E2:1E:09:D8:01:31:6E:62:89:90:92:5F:19:12:66:26:F1:90
Certificate issuer: /CN=b27261d715348bfd73ce9dbb72488656993ba2f1
Certificate serial: 018359837496F1729FDB2E65D310E12F4C86
Authority key identifier: B2:72:61:D7:15:34:8B:FD:73:CE:9D:BB:72:48:86:56:99:3B:A2:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/qc3iHgnYATFuYomQkl8ZEmYm8ZA.roa
Signing time: Tue 20 Sep 2022 06:08:50 +0000
ROA not before: Tue 20 Sep 2022 06:08:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57712
IP address blocks: 91.184.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:59:83:74:96:f1:72:9f:db:2e:65:d3:10:e1:2f:4c:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b27261d715348bfd73ce9dbb72488656993ba2f1
Validity
Not Before: Sep 20 06:08:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9cde21e09d801316e628990925f19126626f190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:da:42:c3:0c:da:26:e8:bb:e2:9e:f4:25:e8:
41:64:9f:d5:43:91:4f:40:75:a7:3c:52:0f:6e:6d:
15:14:77:28:41:4a:c9:f7:9f:0c:c6:a2:52:e1:2c:
05:e9:0f:b2:52:4c:06:0d:71:9d:26:b9:58:45:cd:
a9:6e:eb:f6:31:c0:1b:32:c4:6e:dd:c8:9e:07:89:
96:77:87:42:c8:37:d5:2c:81:1e:65:f7:16:44:c6:
21:69:25:7e:a1:49:a7:4a:8a:2b:84:a5:af:02:4d:
f9:63:b5:36:06:19:53:c1:a6:c1:23:f8:13:e2:56:
b5:be:f9:87:4d:b3:a5:a5:71:73:5d:ff:19:b8:48:
1a:9a:31:2f:89:7e:52:68:ad:83:82:e1:a6:c8:c2:
ba:22:4a:cf:1a:fd:a5:4e:10:1e:f8:82:08:9b:8e:
55:e8:89:f5:2b:ce:34:12:fc:9f:23:39:71:e8:f5:
a4:c3:66:21:94:82:42:10:ec:28:97:92:cb:7c:5d:
ec:fb:b3:cd:7d:73:a1:d4:da:25:7f:17:1e:19:7a:
4a:57:ff:48:20:5c:6c:a3:a1:1d:57:f0:b2:74:12:
af:a3:b8:8c:8a:bf:48:e7:25:c1:50:df:c9:2e:41:
23:df:95:d1:9c:80:43:17:fc:8a:1e:70:52:45:e3:
cc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:CD:E2:1E:09:D8:01:31:6E:62:89:90:92:5F:19:12:66:26:F1:90
X509v3 Authority Key Identifier:
keyid:B2:72:61:D7:15:34:8B:FD:73:CE:9D:BB:72:48:86:56:99:3B:A2:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/snJh1xU0i_1zzp27ckiGVpk7ovE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/qc3iHgnYATFuYomQkl8ZEmYm8ZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aba502-d191-4fd7-a7cf-504f2766760f/1/snJh1xU0i_1zzp27ckiGVpk7ovE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.184.253.0/24
Signature Algorithm: sha256WithRSAEncryption
84:01:d5:60:3e:36:38:8c:5f:b8:58:9d:0a:7f:5f:6f:96:c6:
75:68:4b:28:2e:d8:ce:df:97:ae:42:fc:39:25:e9:e8:a1:fa:
13:a5:3e:d2:2f:36:d5:fe:ab:ac:31:e8:2b:7b:e9:84:e1:41:
d0:15:fe:78:ae:bf:68:aa:5c:41:79:1d:db:83:5e:85:dc:4c:
a8:d8:12:dd:a3:2d:01:82:c3:fc:5e:2f:99:dd:ad:f6:82:5d:
0b:08:83:41:9b:9b:e6:c5:6d:fa:2f:c9:9c:f8:5d:6b:22:cf:
3b:f2:40:15:f7:94:ea:60:09:e1:75:64:89:fb:34:ef:45:2b:
09:b0:b7:54:47:b2:02:93:f9:86:4a:e2:63:4e:43:44:50:64:
bb:b5:6c:48:50:5e:95:24:85:a9:5d:87:11:1a:c4:f1:db:03:
38:6f:3c:3b:60:c2:ad:56:93:64:95:63:7a:a3:93:83:28:de:
6a:9d:00:e3:a2:0f:2e:ce:2f:6c:ab:2e:31:1b:ee:48:96:8a:
04:f9:4d:8a:57:35:4c:cf:01:f7:db:8a:3e:0c:51:50:4c:a8:
2d:ea:2b:ca:dd:9b:2d:07:dd:3d:fc:79:f1:8d:11:04:b2:1d:
37:c7:b9:ec:9c:3d:8d:d5:c7:e1:2b:a4:46:2e:4e:59:af:1b:
6f:39:5c:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:25 2024 by rpki-client on console-ams.rpki-client.org