Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QgdTAJUJYz36MmV2WxT4EABOA4c.roa
File: QgdTAJUJYz36MmV2WxT4EABOA4c.roa (raw, json)
Hash identifier: 2qpR93qnA0AZzKS5zfDEa5n3BAqXR3D54CgvKegAfVg=
Subject key identifier: 42:07:53:00:95:09:63:3D:FA:32:65:76:5B:14:F8:10:00:4E:03:87
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 03500127
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QgdTAJUJYz36MmV2WxT4EABOA4c.roa
Signing time: Sat 01 Jan 2022 16:04:44 +0000
ROA not before: Sat 01 Jan 2022 16:04:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212936
IP address blocks: 82.115.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55574823 (0x3500127)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=420753009509633dfa3265765b14f810004e0387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a6:b8:cf:5e:43:17:6c:78:ed:22:a6:4e:a5:
12:df:78:24:4e:7d:0b:bd:93:05:bc:bd:15:d5:e7:
37:00:44:f6:11:13:2e:2b:fc:ae:94:e8:84:06:93:
db:96:df:4d:9e:1b:22:64:19:60:01:82:29:1b:25:
9c:86:70:0f:33:92:51:27:53:d0:bf:ad:0f:e4:17:
84:2a:69:de:80:8a:2c:ef:c4:79:3a:18:88:a5:2d:
41:44:81:30:94:8f:51:7a:e9:b0:1a:7b:cd:90:fb:
d7:4e:38:64:04:04:4c:07:b7:30:62:b0:13:f7:2d:
e6:62:85:f5:fd:73:cc:24:5a:7d:5d:cc:39:52:e2:
42:7b:3e:f4:4e:0f:8b:3b:ea:72:84:f5:01:6d:4b:
ff:e7:f1:ef:a1:29:e0:f3:8b:7b:5e:c9:df:ae:25:
52:fa:f0:af:55:8d:3e:b1:5f:6e:de:ca:37:44:bc:
21:99:0e:37:7c:f3:99:34:e4:b5:3f:91:a5:82:6a:
b2:5f:ae:ab:9f:ab:bb:f0:ab:b1:ae:79:d2:b4:de:
b3:fd:9d:ba:b6:9d:f3:2f:22:6c:4d:96:50:e2:d5:
db:79:67:90:72:fb:01:6a:3b:a1:a1:fd:44:da:b6:
96:9c:01:51:e0:58:2d:b8:80:95:55:95:30:bd:f7:
ea:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:07:53:00:95:09:63:3D:FA:32:65:76:5B:14:F8:10:00:4E:03:87
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/QgdTAJUJYz36MmV2WxT4EABOA4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.221.0/24
Signature Algorithm: sha256WithRSAEncryption
35:d9:b0:97:89:f4:18:a9:5b:2c:6e:47:a3:5f:a8:19:3c:10:
f1:71:04:83:3f:f0:e7:4e:61:9b:0a:b4:a2:19:19:64:e0:e2:
92:0b:1c:25:7a:8a:cc:55:89:b9:35:a2:42:be:17:d2:d6:b3:
4a:43:5c:8c:43:4e:18:6d:4f:bb:5d:95:2c:bd:ce:6d:7f:4d:
71:6c:ad:e7:d6:02:c7:76:5e:91:6a:f8:93:f2:f8:7c:a7:a1:
7d:2f:18:f4:7d:a9:82:9e:6b:08:d6:55:a0:7f:e2:7a:75:d4:
ed:30:e7:d4:04:d9:ba:b7:c4:3c:7c:51:33:2c:6e:57:84:d3:
00:71:cb:39:ed:bd:08:e0:84:7e:f0:e0:6a:0b:1e:e5:61:a9:
f9:fe:f8:f3:8f:cc:5b:5c:0c:4c:8a:29:ca:7c:d8:dd:98:38:
77:51:f4:cd:2b:1e:a4:a2:60:79:9e:82:41:86:97:e7:45:df:
cf:47:09:26:14:2b:e1:51:71:be:34:d6:d6:4c:71:07:ba:af:
88:c1:9d:51:7b:8a:5a:ef:1f:3a:c3:ed:ac:78:db:42:c6:fe:
59:be:5f:2d:f0:8a:1c:c6:a2:0a:c9:8f:de:c1:5f:6e:46:7a:
18:75:80:6a:3c:41:2c:c7:e7:2c:00:1c:85:4e:cc:e3:19:4b:
2d:93:84:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org