Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Qnp6ubS5xKFE6a4vLjgU3-BNuLo.roa
File: Qnp6ubS5xKFE6a4vLjgU3-BNuLo.roa (raw, json)
Hash identifier: Us9q7fnev1uHQKCz8MLgxvD1PriKMfFey6PGz+m5Uws=
Subject key identifier: 42:7A:7A:B9:B4:B9:C4:A1:44:E9:AE:2F:2E:38:14:DF:E0:4D:B8:BA
Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Certificate serial: 01821A668840432ED8477877D69DD27676BF
Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Qnp6ubS5xKFE6a4vLjgU3-BNuLo.roa
Signing time: Wed 20 Jul 2022 06:58:23 +0000
ROA not before: Wed 20 Jul 2022 06:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205003
IP address blocks: 212.183.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:66:88:40:43:2e:d8:47:78:77:d6:9d:d2:76:76:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725
Validity
Not Before: Jul 20 06:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=427a7ab9b4b9c4a144e9ae2f2e3814dfe04db8ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:65:69:f8:01:dd:1f:65:1e:f0:a9:9f:06:00:
d0:75:02:74:44:c1:26:23:48:36:6c:33:08:77:dc:
6b:a6:b8:63:ac:0e:99:25:6b:ed:a7:a3:aa:0d:13:
ad:fd:5c:0a:03:b0:6b:8d:e4:02:97:2f:ff:b7:84:
7a:f7:e9:86:ba:7e:29:55:01:74:f7:b8:31:8f:91:
ff:68:a7:81:9b:2a:fe:7f:67:f9:8c:a3:1a:54:90:
46:fa:50:35:70:1c:0d:45:5c:37:62:d2:37:d0:75:
7c:09:ac:37:07:40:b4:cc:08:dd:8f:18:2c:4a:96:
29:0f:2d:bc:5f:d9:29:50:e2:7e:ef:3c:20:db:8f:
fe:fe:78:3f:b8:6c:cb:c4:1e:70:e6:07:ee:f4:1d:
3e:ff:8c:f3:4d:f8:e1:29:e7:9d:97:61:40:7a:3f:
86:18:7e:9d:df:ae:99:8a:3a:89:a0:d2:4e:ad:88:
cc:07:95:84:57:86:57:5d:2a:a1:fc:51:fb:39:02:
56:1f:a1:7c:3a:28:5f:d9:19:07:7e:2f:84:9f:14:
9f:0a:28:e3:e9:93:a9:73:9d:a2:c9:57:b0:24:33:
a9:c2:c0:1c:c5:a3:90:1d:79:1e:61:2d:5b:c1:c1:
e3:4f:78:32:8f:6a:4d:70:0c:f7:b9:7d:eb:72:01:
52:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:7A:7A:B9:B4:B9:C4:A1:44:E9:AE:2F:2E:38:14:DF:E0:4D:B8:BA
X509v3 Authority Key Identifier:
keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/Qnp6ubS5xKFE6a4vLjgU3-BNuLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.183.28.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:e2:72:f6:76:60:a6:1d:d6:59:62:cc:b1:96:d7:ab:83:b8:
0b:56:07:81:0b:9f:72:69:68:bd:69:03:19:8c:29:fc:79:df:
ae:0f:5b:6a:7c:ed:02:dd:9b:73:ae:47:d0:b9:84:74:c4:b5:
bf:2c:6b:e5:63:eb:f8:4d:de:18:ed:c1:01:48:94:1a:bd:f0:
ff:8b:03:74:8d:92:2b:67:47:12:a2:9f:32:82:95:7b:8e:c8:
1f:ea:d8:52:f9:8a:e7:01:91:90:cd:37:10:7f:61:d8:4f:6e:
8f:1a:87:5c:70:29:1c:21:05:46:7b:f5:fb:0b:26:b5:16:af:
ac:c1:d9:12:7d:09:39:74:77:39:6e:c9:3b:81:91:f3:30:b5:
d7:86:b9:e4:31:8d:a2:36:a0:6b:ac:7c:8f:a0:4a:5d:d1:f3:
39:d1:4b:5c:ff:d2:17:e9:fe:8f:59:0a:df:dc:89:ab:4c:3c:
a3:f1:d6:55:a0:b9:e5:40:cb:5d:21:f4:1f:8f:2b:7d:41:03:
f5:bc:07:c1:d4:5d:9a:11:8b:b2:07:61:9e:87:77:f7:85:af:
07:44:2a:98:52:01:99:ac:9a:ca:59:e3:25:8c:97:2c:61:d1:
e5:96:42:e5:97:0a:19:95:84:7f:41:2c:aa:30:0e:cf:a8:06:
84:e9:6d:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:05 2023 by rpki-client on console-ams.rpki-client.org