Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/QjlXTGSfVGaGQweddmTIhN0VGeI.roa
File: QjlXTGSfVGaGQweddmTIhN0VGeI.roa (raw, json)
Hash identifier: pU6SlGw0ugMwt3vhbG06FFz39D2J+IDaKFURcl9AbLY=
Subject key identifier: 42:39:57:4C:64:9F:54:66:86:43:07:9D:76:64:C8:84:DD:15:19:E2
Certificate issuer: /CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Certificate serial: 579517
Authority key identifier: FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/QjlXTGSfVGaGQweddmTIhN0VGeI.roa
Signing time: Thu 19 May 2022 10:19:29 +0000
ROA not before: Thu 19 May 2022 10:19:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 217.28.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5739799 (0x579517)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Validity
Not Before: May 19 10:19:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4239574c649f54668643079d7664c884dd1519e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:52:1f:6a:41:65:c1:9a:1f:2c:fd:3d:25:8d:
f4:88:01:39:f5:4d:6e:b6:eb:5b:eb:49:7c:a3:47:
d6:72:2d:37:97:0b:be:3d:0a:9e:b9:90:32:34:98:
1c:d4:24:c5:58:f3:3f:1a:1f:a3:3c:fc:13:5c:d7:
aa:78:8c:33:76:17:c1:1f:6f:93:cc:93:fc:83:cc:
cb:dd:17:5b:3b:76:63:0c:90:06:26:6c:fa:c1:71:
9c:81:fb:54:53:5f:fa:97:11:56:9c:97:7e:0e:c3:
c7:42:04:e9:26:a6:91:0b:77:aa:ea:dd:0c:35:d5:
79:78:84:fd:ab:17:30:da:37:a4:ee:34:62:f2:20:
7e:b5:b6:c1:c0:e7:f3:8c:b0:f6:6d:84:33:15:ae:
83:51:a5:1e:09:91:39:af:d1:c0:35:f2:25:33:07:
28:57:a7:ff:cb:37:86:d0:9c:df:bf:94:b2:56:8f:
f4:d6:b4:d6:cc:73:ce:65:99:5d:80:d9:2d:93:be:
c3:e3:a8:b7:bb:27:d7:6f:f7:84:0b:5e:e3:f2:59:
47:34:c4:c0:89:4c:d6:7f:a4:61:72:25:8b:cd:7d:
4a:a0:a6:87:c8:99:68:a5:aa:a5:18:40:88:52:76:
2b:85:f7:f3:51:61:23:c8:49:28:62:9c:fc:82:8d:
9d:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:39:57:4C:64:9F:54:66:86:43:07:9D:76:64:C8:84:DD:15:19:E2
X509v3 Authority Key Identifier:
keyid:FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/QjlXTGSfVGaGQweddmTIhN0VGeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.130.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:e1:ef:19:92:45:2b:5b:2d:0f:28:5a:6b:86:0d:9b:bf:8e:
ec:bb:96:72:54:02:c2:12:d8:e1:a1:52:08:14:69:2c:fd:17:
40:f5:87:3d:ef:bc:ce:fb:19:e1:7a:e7:d2:50:0e:26:47:21:
23:e7:e6:aa:13:c3:e2:b3:9d:1d:28:1f:47:90:75:70:4c:40:
2b:3a:c7:5e:9b:2e:33:19:21:10:28:d0:05:5f:d8:31:7f:09:
7e:fc:3f:cf:c3:c5:63:7b:59:88:bc:be:c3:98:2c:50:f5:10:
b5:e6:a5:0a:a4:65:d0:c0:63:fe:45:6a:5b:3e:0b:f7:b7:9c:
0b:b3:9f:aa:c1:2d:31:2e:8b:58:4b:74:b3:11:ce:e9:39:2d:
de:8a:aa:a1:fb:be:5a:8e:2d:e4:ea:71:41:2c:31:24:34:1b:
61:e7:ac:04:4b:cd:7b:f8:40:35:3f:49:57:90:7e:f2:46:e3:
68:ec:29:aa:0c:52:6d:06:4f:e5:bf:db:a0:62:fc:c5:15:0a:
ae:ae:00:3c:3a:2d:fc:8a:92:70:e1:97:91:6d:73:4f:7c:45:
2f:88:19:7a:c4:d4:ac:cd:c9:48:e4:34:6a:7d:c4:d5:a9:25:
28:23:f9:4a:d5:72:35:e4:6d:5c:ca:b7:16:2f:3b:09:83:8f:
c2:16:07:fc
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIDV5UXMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGZi
MjljZjIzZmM5Y2U2ZTJiOGMzOTMyM2QyNzBjZTUyZTg5Mzg3MDIwHhcNMjIwNTE5
MTAxOTI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0MjM5NTc0YzY0OWY1
NDY2ODY0MzA3OWQ3NjY0Yzg4NGRkMTUxOWUyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAtVIfakFlwZofLP09JY30iAE59U1ututb60l8o0fWci03lwu+
PQqeuZAyNJgc1CTFWPM/Gh+jPPwTXNeqeIwzdhfBH2+TzJP8g8zL3RdbO3ZjDJAG
Jmz6wXGcgftUU1/6lxFWnJd+DsPHQgTpJqaRC3eq6t0MNdV5eIT9qxcw2jek7jRi
8iB+tbbBwOfzjLD2bYQzFa6DUaUeCZE5r9HANfIlMwcoV6f/yzeG0Jzfv5SyVo/0
1rTWzHPOZZldgNktk77D46i3uyfXb/eEC17j8llHNMTAiUzWf6RhciWLzX1KoKaH
yJlopaqlGECIUnYrhffzUWEjyEkoYpz8go2d1wIDAQABo4ICCzCCAgcwHQYDVR0O
BBYEFEI5V0xkn1RmhkMHnXZkyITdFRniMB8GA1UdIwQYMBaAFPspzyP8nObiuMOT
I9JwzlLok4cCMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEFBQcBAQRZMFcwVQYIKwYB
BQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MS15blBJX3ljNXVLNHc1TWowbkRPVXVpVGh3SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvOWZkMDAzLTA2ZjctNDVkOC1hNWRkLTA3NmJmMDJkY2RkOS8x
L1FqbFhUR1NmVkdhR1F3ZWRkbVRJaE4wVkdlSS5yb2EwgYIGA1UdHwR7MHkwd6B1
oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
OWZkMDAzLTA2ZjctNDVkOC1hNWRkLTA3NmJmMDJkY2RkOS8xLzEteW5QSV95YzV1
SzR3NU1qMG5ET1V1aVRod0kuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADZHIIwDQYJKoZIhvcNAQELBQAD
ggEBAMzh7xmSRStbLQ8oWmuGDZu/juy7lnJUAsIS2OGhUggUaSz9F0D1hz3vvM77
GeF659JQDiZHISPn5qoTw+KznR0oH0eQdXBMQCs6x16bLjMZIRAo0AVf2DF/CX78
P8/DxWN7WYi8vsOYLFD1ELXmpQqkZdDAY/5Fals+C/e3nAuzn6rBLTEui1hLdLMR
zuk5Ld6KqqH7vlqOLeTqcUEsMSQ0G2HnrARLzXv4QDU/SVeQfvJG42jsKaoMUm0G
T+W/26Bi/MUVCq6uADw6LfyKknDhl5Ftc098RS+IGXrE1KzNyUjkNGp9xNWpJSgj
+UrVcjXkbVzKtxYvOwmDj8IWB/w=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:22 2023 by rpki-client on console-fra.rpki-client.org