Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QebRELeb85mfaKOmTu2cn_G2DBM.roa
File: QebRELeb85mfaKOmTu2cn_G2DBM.roa (raw, json)
Hash identifier: sKXKNDQVVd+ik3ul4DLjNnm40CbUHQ+xP2TuSPaGOkM=
Subject key identifier: 41:E6:D1:10:B7:9B:F3:99:9F:68:A3:A6:4E:ED:9C:9F:F1:B6:0C:13
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03DA2195
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QebRELeb85mfaKOmTu2cn_G2DBM.roa
Signing time: Thu 17 Feb 2022 14:28:18 +0000
ROA not before: Thu 17 Feb 2022 14:28:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208413
IP address blocks: 45.138.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64627093 (0x3da2195)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Feb 17 14:28:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41e6d110b79bf3999f68a3a64eed9c9ff1b60c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e0:28:d6:22:1f:c0:b4:5f:01:63:94:57:c7:
eb:c8:22:15:b8:f7:42:11:7a:77:df:91:5c:64:36:
de:5a:98:e8:fb:bc:3e:ad:46:1f:a2:b0:21:0c:a5:
d9:94:79:d3:4b:7a:e3:e1:ca:1c:c0:51:1d:68:b9:
3b:92:e6:9b:ef:f8:f8:df:7b:4e:66:df:41:cb:96:
fd:d8:7b:c4:5e:ff:ce:00:b6:88:a2:48:95:09:fe:
bc:2f:65:4b:23:92:37:d7:36:80:39:d5:72:2e:65:
a8:91:01:a3:4b:71:50:7a:2c:17:8d:06:86:71:98:
84:be:ec:3b:f1:7e:3d:3f:42:22:bd:7a:02:bb:06:
55:16:cd:ef:05:47:85:0a:77:d4:b3:6d:59:4e:f1:
e6:9e:a4:a2:e6:7d:1b:ac:96:bd:73:56:3c:69:e5:
74:6e:67:1e:15:22:cd:db:78:45:2e:57:58:1a:69:
d5:14:d0:7d:b1:b8:cb:f4:1e:96:6e:d4:42:6f:23:
1f:13:ec:36:0b:2a:4d:85:b8:ab:cc:59:0a:d2:4a:
06:bc:d6:bd:d0:bf:b1:67:df:e6:9f:d3:e3:14:41:
02:55:4f:b0:57:ba:b1:1f:63:4e:6e:c6:d7:bd:54:
b1:80:8f:4f:c4:03:18:ca:57:4d:fa:aa:6e:a6:01:
85:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E6:D1:10:B7:9B:F3:99:9F:68:A3:A6:4E:ED:9C:9F:F1:B6:0C:13
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QebRELeb85mfaKOmTu2cn_G2DBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.75.0/24
Signature Algorithm: sha256WithRSAEncryption
85:26:d7:63:f0:13:b0:16:d8:f7:6f:a4:bc:ef:4f:bc:06:76:
71:03:cc:dd:31:0d:c5:e9:ef:3e:04:57:7b:34:b7:b0:11:af:
17:4d:fe:02:7b:d3:97:41:9b:6d:cb:51:22:9a:c1:da:d1:b1:
b0:85:e9:b8:3e:84:79:2f:f9:73:54:d0:a6:f4:75:0e:75:28:
ba:26:68:1c:0e:d8:e5:d0:56:dc:5a:67:13:01:ca:92:cf:55:
8e:28:e6:05:30:7f:bf:b8:aa:88:74:01:b5:bc:24:03:36:7c:
d2:d9:b9:d1:c6:5b:7c:29:fe:86:92:77:02:1f:55:ca:4b:1c:
68:0d:f2:fe:ed:20:79:fe:54:cc:5c:8f:74:f5:e5:99:4f:4f:
54:59:b7:18:cb:39:27:35:ac:c0:0d:7e:75:1c:e5:51:1f:f8:
6b:5a:11:a1:3b:f3:11:e2:de:5e:7e:99:33:b7:ab:a1:9e:06:
d3:f3:be:71:70:82:a8:b1:68:42:9d:32:35:4f:27:13:84:8a:
d2:42:1d:4e:03:f3:31:33:c7:c6:8e:f1:43:80:ed:10:99:9e:
8f:4f:ef:0b:1d:92:5f:76:7e:17:00:f7:b1:88:c9:15:1e:c4:
7c:ce:dc:15:e5:91:4d:bd:9f:ad:a9:f2:22:dc:9f:63:96:16:
2a:21:28:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org