Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/8db002-9080-4f0b-845b-9b7c44dc193b/1/QSwpShlgb4Lxy11cbxuqneq5sV0.roa
File: QSwpShlgb4Lxy11cbxuqneq5sV0.roa (raw, json)
Hash identifier: 7pmpQqXnsZEqGnPD5f50HENvVsI0ah02j3ZBnhzyt+E=
Subject key identifier: 41:2C:29:4A:19:60:6F:82:F1:CB:5D:5C:6F:1B:AA:9D:EA:B9:B1:5D
Certificate issuer: /CN=098b1c79bfae12a5b87f35c998bb60b3fa4e6621
Certificate serial: 018382EA7D413BC5F8122C2C18186B85E8C5
Authority key identifier: 09:8B:1C:79:BF:AE:12:A5:B8:7F:35:C9:98:BB:60:B3:FA:4E:66:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYsceb-uEqW4fzXJmLtgs_pOZiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/8db002-9080-4f0b-845b-9b7c44dc193b/1/QSwpShlgb4Lxy11cbxuqneq5sV0.roa
Signing time: Wed 28 Sep 2022 07:05:48 +0000
ROA not before: Wed 28 Sep 2022 07:05:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16073
IP address blocks: 213.162.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:82:ea:7d:41:3b:c5:f8:12:2c:2c:18:18:6b:85:e8:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098b1c79bfae12a5b87f35c998bb60b3fa4e6621
Validity
Not Before: Sep 28 07:05:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=412c294a19606f82f1cb5d5c6f1baa9deab9b15d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:83:6e:70:ff:7f:ce:38:8a:95:4c:b2:c3:d2:
a6:20:3d:6f:b0:f0:54:f7:47:3b:bc:e7:3b:54:3e:
ec:08:bd:3b:88:7c:9d:1d:8d:08:a1:6f:e9:05:bd:
c1:76:cc:24:41:15:7b:7d:7b:58:35:fb:9b:2f:29:
51:2f:06:c9:cf:ce:f6:56:4f:a9:f3:a1:4e:3e:32:
ca:97:88:76:b9:14:18:7b:ad:2b:92:1d:98:32:0a:
78:59:75:db:e1:61:09:b8:e5:aa:6b:86:e0:91:31:
82:41:0e:b6:3b:b2:63:38:fb:68:ad:21:5b:1d:45:
8e:0b:9f:ca:0c:bb:a7:a9:c5:c0:b6:b7:2c:00:cb:
6f:50:a2:2d:0b:d4:be:36:35:52:99:c0:00:0e:cb:
8a:71:0e:36:f4:48:75:8a:0b:92:d1:f3:b1:19:08:
be:24:12:6e:e2:f2:6e:df:5e:e8:f0:eb:6a:e3:15:
ed:73:f9:55:3b:49:6d:1a:16:42:8d:50:1d:18:2a:
26:16:d6:23:3b:72:97:a3:e8:49:12:5b:57:18:f7:
43:c5:12:ff:68:37:60:ec:8f:b6:4d:f7:8d:8f:76:
6c:37:53:46:50:b3:5f:83:e4:4a:c6:1a:6e:10:37:
4d:73:23:fd:d4:5d:d1:10:db:ad:1d:0a:c6:72:d3:
aa:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2C:29:4A:19:60:6F:82:F1:CB:5D:5C:6F:1B:AA:9D:EA:B9:B1:5D
X509v3 Authority Key Identifier:
keyid:09:8B:1C:79:BF:AE:12:A5:B8:7F:35:C9:98:BB:60:B3:FA:4E:66:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYsceb-uEqW4fzXJmLtgs_pOZiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/8db002-9080-4f0b-845b-9b7c44dc193b/1/QSwpShlgb4Lxy11cbxuqneq5sV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/8db002-9080-4f0b-845b-9b7c44dc193b/1/CYsceb-uEqW4fzXJmLtgs_pOZiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.162.48.0/20
Signature Algorithm: sha256WithRSAEncryption
bf:7b:72:e3:a0:e8:08:fe:f7:0d:96:5e:86:bc:9f:ef:8b:a2:
90:5d:be:5a:50:4f:b0:ee:11:58:bf:f2:df:db:12:0d:42:b2:
1b:5e:7a:f5:66:2a:13:a2:a5:a1:98:fd:7a:64:38:31:41:f3:
7c:1d:80:46:7f:e4:e7:e2:69:d9:6f:13:5d:66:b1:ad:b9:43:
e0:cc:86:21:f0:65:b1:92:1f:98:32:8c:90:c2:7e:99:5f:e3:
96:7a:d0:8f:73:23:0a:56:66:38:2e:0a:08:d4:c4:89:39:d8:
23:09:ef:43:1e:50:5a:46:70:47:b7:4c:33:24:8a:2f:c8:01:
97:de:e7:8e:68:ae:9b:09:d3:53:19:58:91:78:f8:a9:8d:4a:
61:54:97:9c:af:03:83:a3:31:d4:f6:e3:25:2e:92:33:07:0c:
23:0e:07:d5:1b:77:4e:87:af:e9:3e:0c:d7:83:b7:ea:ea:ba:
6b:10:85:f2:b1:78:b9:25:36:2e:40:93:04:3c:a2:1a:3a:a0:
cd:23:ee:a9:37:51:d7:ae:95:6b:bf:57:3e:e1:9d:47:92:70:
0e:c5:d0:8f:7b:1d:e8:97:d7:52:d9:01:68:12:7f:fe:35:03:
15:05:13:88:5b:c4:e8:6f:0b:f1:a6:89:de:7c:d5:67:63:b6:
cb:dc:8f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:59 2024 by rpki-client on console-fra.rpki-client.org