Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/QzP3Cevrp-0qo7yd2QjkOUc7lYY.roa
File: QzP3Cevrp-0qo7yd2QjkOUc7lYY.roa (raw, json)
Hash identifier: TcdTZgmZ/4GKq5W8yh28ikHCpMxiq1EHrTOTa/+jh0Q=
Subject key identifier: 43:33:F7:09:EB:EB:A7:ED:2A:A3:BC:9D:D9:08:E4:39:47:3B:95:86
Certificate issuer: /CN=230d311fc19463fdd30adecc917b5f0298741b44
Certificate serial: 016C3DD2
Authority key identifier: 23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/QzP3Cevrp-0qo7yd2QjkOUc7lYY.roa
Signing time: Sat 01 Jan 2022 09:01:56 +0000
ROA not before: Sat 01 Jan 2022 09:01:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49121
IP address blocks: 185.65.69.0/24 maxlen: 24
2a0d:3180:7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23870930 (0x16c3dd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=230d311fc19463fdd30adecc917b5f0298741b44
Validity
Not Before: Jan 1 09:01:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4333f709ebeba7ed2aa3bc9dd908e439473b9586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:11:39:eb:ee:47:14:6f:6a:be:e1:e1:8c:71:
cc:cf:8c:67:8d:fe:de:11:6e:4c:19:0c:b6:f9:3e:
88:7f:f9:bc:99:2a:cd:2f:00:86:12:8b:c0:2a:f4:
43:3a:91:e9:28:84:7e:c0:df:2b:9e:20:aa:7a:7f:
4a:c4:ae:f2:3c:d6:1c:b0:13:5d:2a:cd:95:52:1c:
e3:74:d6:24:ac:ca:0d:7a:e6:d3:42:7a:b3:5f:9e:
99:bc:a3:dd:10:97:2d:db:6a:91:0f:c9:bd:b5:eb:
82:4e:22:7b:61:d7:89:b5:bf:ed:d0:5e:6b:8a:ba:
26:7b:82:ed:b0:a3:6a:9f:01:97:ec:39:c3:f3:43:
98:41:82:16:d0:38:45:6d:06:13:de:cd:c1:f6:92:
f4:a2:24:d5:f0:7d:48:7f:b3:30:70:9b:65:c9:12:
8d:7a:33:5b:b0:f9:05:7b:ab:b1:f8:3c:18:75:37:
76:8e:f2:af:d3:7b:05:bb:f7:72:ca:b8:fe:80:0a:
ad:49:23:97:05:e4:c6:b2:d7:23:16:d9:c0:6b:37:
d1:cb:cb:62:12:fd:59:ea:ed:4d:2a:0a:89:58:53:
d9:96:6e:de:2b:9a:bd:21:5b:7b:99:76:05:09:1e:
3d:63:28:af:b1:73:90:17:5f:3c:18:76:38:7c:64:
15:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:33:F7:09:EB:EB:A7:ED:2A:A3:BC:9D:D9:08:E4:39:47:3B:95:86
X509v3 Authority Key Identifier:
keyid:23:0D:31:1F:C1:94:63:FD:D3:0A:DE:CC:91:7B:5F:02:98:74:1B:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/QzP3Cevrp-0qo7yd2QjkOUc7lYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/281dfb-3293-4bab-ba22-1becb5dcd7aa/1/Iw0xH8GUY_3TCt7MkXtfAph0G0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.69.0/24
IPv6:
2a0d:3180:7::/48
Signature Algorithm: sha256WithRSAEncryption
6e:c0:3a:16:b8:bf:0b:b5:c3:e5:11:77:ed:5a:82:42:ba:ff:
c4:28:2f:6f:b8:30:04:c2:65:39:db:8b:85:52:c1:5c:2a:3d:
bf:aa:a4:b1:3a:aa:d6:8b:bb:da:e1:c1:96:44:0d:24:09:0d:
89:3e:60:72:4a:a8:09:52:14:cb:93:9d:a1:77:ff:c6:05:d2:
72:6a:ea:e4:ac:60:1c:3d:2b:86:35:87:73:4c:b8:b2:d7:72:
5d:ad:1b:99:c1:38:12:50:c5:29:6d:78:ad:27:e8:c8:7d:0f:
a7:0e:0d:6b:38:7f:55:6a:31:86:d2:4b:bb:c9:4d:ed:7b:32:
f1:d6:97:9e:aa:e6:68:02:82:ec:ae:d2:44:81:ca:99:b4:f6:
90:4a:18:5f:60:34:7e:82:9b:a6:78:56:de:8d:9b:97:e2:c5:
43:d9:43:56:23:90:95:94:64:aa:f9:b6:56:5f:9f:53:65:55:
05:e9:ea:1d:fb:05:bb:b6:42:a5:78:53:bb:40:df:5d:f0:b4:
d4:8d:bd:e1:65:b2:b8:8a:96:3b:6b:5d:3f:bc:a0:6c:e5:1c:
40:77:16:ca:d7:88:e2:d6:24:5f:47:e4:ce:77:4d:40:e0:e7:
df:5c:b6:90:7f:36:8f:00:5e:01:cd:73:fa:68:ac:17:62:9a:
a5:69:06:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:17 2023 by rpki-client on console-ams.rpki-client.org