Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/QAVgT76XNZv2JjdHz5dmA6kb1n4.roa
File: QAVgT76XNZv2JjdHz5dmA6kb1n4.roa (raw, json)
Hash identifier: 5zguaO4+sBwBQiU9dIZ2gt9QtsWrPheIT+Ljc8XfcKI=
Subject key identifier: 40:05:60:4F:BE:97:35:9B:F6:26:37:47:CF:97:66:03:A9:1B:D6:7E
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19D236DC
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/QAVgT76XNZv2JjdHz5dmA6kb1n4.roa
Signing time: Sat 01 Jan 2022 15:56:39 +0000
ROA not before: Sat 01 Jan 2022 15:56:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14178
IP address blocks: 45.86.248.0/22 maxlen: 22
45.85.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433207004 (0x19d236dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4005604fbe97359bf6263747cf976603a91bd67e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b6:00:03:c0:c4:de:b0:33:86:71:c3:5e:01:
49:7c:74:f1:0f:99:83:00:5b:36:55:24:9c:f4:25:
66:07:fb:14:df:c9:ae:26:85:86:f0:9d:32:64:d7:
b8:10:f4:94:5b:33:fa:21:14:a5:c4:e5:48:9a:d9:
c9:9a:70:5f:46:fe:14:fd:f4:5e:06:f3:83:57:69:
ce:0e:1c:e5:73:11:e3:a1:ad:f8:44:b0:51:70:f0:
b6:38:53:f2:15:ec:5d:a3:37:51:2e:ea:1f:fb:54:
39:8c:1d:89:2a:3b:7d:d2:00:db:22:72:67:3c:66:
8b:70:56:51:bd:7f:eb:bf:65:5f:cf:fb:ae:ae:fc:
c3:d7:1a:01:d6:03:24:ea:f3:74:ef:fa:72:6c:cc:
83:99:f6:b7:4f:05:ff:e6:29:46:7d:00:02:f4:69:
87:f8:df:b4:58:92:1a:ee:f0:eb:ef:08:30:73:f7:
c4:60:f5:d0:ab:33:76:e8:57:fb:69:a0:9a:30:9f:
fd:8e:ea:52:81:d1:d1:0b:de:13:49:53:6f:1b:4b:
2a:42:bb:77:7a:08:62:8a:05:72:e8:13:fd:50:71:
f0:cb:6c:1a:87:4f:13:7a:03:7a:45:04:52:1d:9c:
1b:20:53:40:de:ce:41:e2:19:e9:1f:26:55:c8:bb:
ee:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:05:60:4F:BE:97:35:9B:F6:26:37:47:CF:97:66:03:A9:1B:D6:7E
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/QAVgT76XNZv2JjdHz5dmA6kb1n4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.224.0/22
45.86.248.0/22
Signature Algorithm: sha256WithRSAEncryption
45:aa:3a:3e:a4:ab:55:b6:47:5e:f5:0c:0e:4f:fe:ab:f8:fd:
c7:72:20:5b:cb:14:62:89:03:6a:96:d0:9c:01:10:73:f2:31:
6b:27:c4:62:2e:5a:79:06:5a:5b:be:9c:c8:68:c3:93:01:83:
2b:12:44:28:96:dc:63:d6:b1:48:6c:8b:8f:f4:cd:51:0e:12:
07:f0:b8:0f:cb:bf:d0:ce:17:2f:3c:a9:ca:e6:56:b2:0a:8b:
6f:72:7e:19:03:c7:ed:46:3a:89:2d:01:10:95:00:4d:9f:34:
d9:20:e2:bf:23:bc:8e:d8:ec:07:09:b6:0f:b8:70:cf:9b:8d:
fd:98:8d:5c:77:16:46:72:a7:a6:bc:be:07:25:ab:ed:7e:f6:
e5:db:cc:88:47:74:44:95:b9:57:9e:88:24:d8:ad:56:b4:00:
4d:0e:ea:93:55:cd:27:3a:82:14:b3:c5:94:f6:25:ac:c3:a4:
d8:06:68:82:ed:cf:cb:06:72:ab:0d:16:10:64:4a:fd:02:f9:
b2:7a:86:80:18:94:b5:39:76:8b:0e:2f:19:1a:53:2b:a2:0d:
f0:a6:23:f2:3e:be:ad:69:95:5f:68:7a:29:48:3c:c4:31:cc:
63:45:75:ae:16:8d:de:7b:60:3c:b3:f1:19:d7:87:42:c7:61:
5d:17:69:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org