Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/QDkbAlwbgWRbBJwpGmdJujRfPvQ.roa
File: QDkbAlwbgWRbBJwpGmdJujRfPvQ.roa (raw, json)
Hash identifier: XY86ZaO7rEd+zkKxYtvnDX9ME7fNNZ7oBENjVepI6no=
Subject key identifier: 40:39:1B:02:5C:1B:81:64:5B:04:9C:29:1A:67:49:BA:34:5F:3E:F4
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0A8912EA
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/QDkbAlwbgWRbBJwpGmdJujRfPvQ.roa
Signing time: Sat 01 Jan 2022 16:07:16 +0000
ROA not before: Sat 01 Jan 2022 16:07:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199230
IP address blocks: 151.237.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176755434 (0xa8912ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 1 16:07:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40391b025c1b81645b049c291a6749ba345f3ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:da:fe:17:0f:fd:a9:95:ab:da:a2:25:b7:29:
c8:41:19:7e:0e:26:1c:d5:f9:99:1d:5f:66:c0:52:
dc:80:c8:3d:d4:f9:4d:b3:a4:2d:96:74:fd:da:66:
9c:d9:21:ea:07:e9:a7:68:44:8f:81:dd:8d:6c:bc:
c1:5d:6a:c3:50:19:c2:52:b7:10:a6:de:0b:88:c4:
45:66:2c:e7:33:74:fd:dd:c2:55:80:3b:d9:3a:da:
62:7f:a1:d2:75:74:c5:bf:23:ee:fb:4a:e8:de:4e:
b3:08:c6:98:2a:62:0f:92:62:34:43:c8:6a:b6:33:
50:14:07:62:92:3b:03:b5:c6:e1:3a:ad:41:a6:3d:
ae:65:c6:ad:6a:63:be:da:3c:41:17:68:16:f6:9e:
df:6f:aa:52:4f:1a:6b:8c:a7:10:e7:e4:15:03:b7:
26:53:1c:e8:c2:1a:3b:0e:3d:05:6b:85:7f:38:8d:
ad:e1:37:be:97:f8:0e:5b:95:24:38:e8:d1:fa:9c:
e0:06:6a:b3:6f:33:68:87:e4:2b:c9:a9:bf:54:0b:
9d:fe:8d:87:40:98:cf:1d:a6:9b:26:05:31:c7:af:
76:bf:48:13:ee:a2:8b:b9:f4:05:9d:36:95:2d:39:
6d:8f:32:40:79:79:55:45:2e:10:6c:39:1b:83:40:
20:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:39:1B:02:5C:1B:81:64:5B:04:9C:29:1A:67:49:BA:34:5F:3E:F4
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/QDkbAlwbgWRbBJwpGmdJujRfPvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.129.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:04:c8:db:b8:91:c0:1a:0f:11:8e:56:f2:fe:bf:df:12:8a:
65:dd:af:ac:36:c8:fc:16:81:b4:db:32:01:d3:bb:8b:40:fa:
35:5c:80:65:6f:14:d3:ab:f7:9b:e2:5d:a7:bf:dc:a9:19:81:
45:db:b2:e1:d4:e8:14:fc:54:c8:bd:ee:7c:1b:46:ef:ac:74:
8b:10:1c:f6:47:4d:27:39:82:b3:68:44:1b:2c:38:2e:f6:51:
aa:4b:a6:82:6c:d8:00:08:dd:20:0d:41:fe:77:1c:ca:07:48:
94:bb:03:d4:af:f5:8c:cf:c3:fe:14:07:28:ee:5d:ef:8f:67:
11:83:b3:3c:63:d8:64:66:dc:96:03:2a:a4:77:8c:51:82:c9:
0e:fb:61:d9:80:87:89:e9:da:4a:4f:75:07:8e:6e:02:37:b6:
5e:0d:00:34:9f:bb:d6:b2:4e:be:1e:bf:21:7e:22:8c:9f:8b:
12:6d:c0:a4:b6:01:26:f0:df:ae:94:51:f9:b9:65:96:05:82:
8c:05:5e:59:db:72:c9:07:3c:6b:db:95:d0:18:96:e1:8f:4e:
8e:c9:d6:40:ea:bf:0e:0c:2d:3a:e1:2b:10:f5:81:d7:41:72:
39:d9:b4:50:fa:38:30:6c:d9:a7:d8:b1:e3:21:20:77:98:a3:
76:5a:58:5c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECokS6jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZWJmMzAyMDFmMTJhMDQwZDM4NmQyYjRlZWQ0NDg0NjIzZTRkMTFiMB4XDTIyMDEw
MTE2MDcxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDAzOTFiMDI1YzFi
ODE2NDViMDQ5YzI5MWE2NzQ5YmEzNDVmM2VmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMLa/hcP/amVq9qiJbcpyEEZfg4mHNX5mR1fZsBS3IDIPdT5
TbOkLZZ0/dpmnNkh6gfpp2hEj4HdjWy8wV1qw1AZwlK3EKbeC4jERWYs5zN0/d3C
VYA72TraYn+h0nV0xb8j7vtK6N5OswjGmCpiD5JiNEPIarYzUBQHYpI7A7XG4Tqt
QaY9rmXGrWpjvto8QRdoFvae32+qUk8aa4ynEOfkFQO3JlMc6MIaOw49BWuFfziN
reE3vpf4DluVJDjo0fqc4AZqs28zaIfkK8mpv1QLnf6Nh0CYzx2mmyYFMcevdr9I
E+6ii7n0BZ02lS05bY8yQHl5VUUuEGw5G4NAIPMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRAORsCXBuBZFsEnCkaZ0m6NF8+9DAfBgNVHSMEGDAWgBT+vzAgHxKgQNOG
0rTu1EhGI+TRGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19yOHdJQjhTb0VEVGh0SzA3dFJJUmlQazBScy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2MvZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8x
L1FEa2JBbHdiZ1dSYkJKd3BHbWRKdWpSZlB2US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Mv
ZjhjNGEyLTk2YWMtNGI0ZS1hMTk1LWE5N2MwZGMwYTc0OS8xL19yOHdJQjhTb0VE
VGh0SzA3dFJJUmlQazBScy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJftgTANBgkqhkiG9w0BAQsFAAOC
AQEAygTI27iRwBoPEY5W8v6/3xKKZd2vrDbI/BaBtNsyAdO7i0D6NVyAZW8U06v3
m+Jdp7/cqRmBRduy4dToFPxUyL3ufBtG76x0ixAc9kdNJzmCs2hEGyw4LvZRqkum
gmzYAAjdIA1B/nccygdIlLsD1K/1jM/D/hQHKO5d749nEYOzPGPYZGbclgMqpHeM
UYLJDvth2YCHienaSk91B45uAje2Xg0ANJ+71rJOvh6/IX4ijJ+LEm3ApLYBJvDf
rpRR+blllgWCjAVeWdtyyQc8a9uV0BiW4Y9OjsnWQOq/DgwtOuErEPWB10FyOdm0
UPo4MGzZp9ix4yEgd5ijdlpYXA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org