Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/1a8b06-9fda-4115-be48-8df71ba03915/1/1-1-QbSjRNM8AK55KGYu8TAj6wJo.roa
File: 1-1-QbSjRNM8AK55KGYu8TAj6wJo.roa (raw, json)
Hash identifier: +mRKJV8z5rGikepe3jxZiGGKhQwFhihIUabsagTG80Q=
Subject key identifier: FB:5F:90:6D:28:D1:34:CF:00:2B:9E:4A:19:8B:BC:4C:08:FA:C0:9A
Certificate issuer: /CN=f0e69cc79d3a0c49c291fd407fb2bedc23ea7a89
Certificate serial: 01851510634091672082EEAC09271997AB1A
Authority key identifier: F0:E6:9C:C7:9D:3A:0C:49:C2:91:FD:40:7F:B2:BE:DC:23:EA:7A:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Oacx506DEnCkf1Af7K-3CPqeok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/1a8b06-9fda-4115-be48-8df71ba03915/1/1-1-QbSjRNM8AK55KGYu8TAj6wJo.roa
Signing time: Thu 15 Dec 2022 09:14:33 +0000
ROA not before: Thu 15 Dec 2022 09:14:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29122
IP address blocks: 82.101.64.0/18 maxlen: 18
217.30.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:15:10:63:40:91:67:20:82:ee:ac:09:27:19:97:ab:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0e69cc79d3a0c49c291fd407fb2bedc23ea7a89
Validity
Not Before: Dec 15 09:14:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb5f906d28d134cf002b9e4a198bbc4c08fac09a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b6:b2:44:69:6e:67:95:a8:18:c8:cf:99:2f:
92:d6:0c:7f:9c:65:78:d9:3b:f6:b9:30:a6:0b:14:
45:32:71:da:04:19:77:6c:a4:3c:89:98:51:78:95:
f5:f7:9c:99:20:9e:60:0d:46:da:e1:e0:0a:10:88:
81:66:5b:e6:ed:e5:ff:9b:76:62:5b:b1:30:6c:8d:
89:c4:93:8f:d0:1b:2e:76:3c:08:92:c4:4c:4d:80:
df:73:79:28:6d:30:5f:03:ca:a1:45:54:ea:dd:ff:
d5:08:d4:0f:8a:d6:13:de:75:0f:25:ed:44:70:65:
5e:5e:a8:87:a8:06:b8:9d:96:18:5c:6a:f6:22:c3:
a0:0d:8f:5c:74:72:db:ad:e1:02:33:44:c2:94:3c:
6b:bb:a8:bf:e3:14:62:2f:01:80:68:81:3d:8a:2c:
1e:8e:21:e4:af:16:27:df:96:80:2b:81:8b:64:30:
07:53:db:cf:59:d8:ff:72:c5:50:d9:cd:b3:d0:7c:
24:bf:11:78:34:f9:66:cd:88:7a:64:86:d9:c2:13:
1c:21:3e:dc:5a:c4:51:2d:79:98:e6:2b:ce:9e:dc:
66:71:24:b8:2a:90:f1:46:de:6a:f3:fd:0e:00:31:
6f:1f:93:2b:19:50:39:37:e2:17:59:31:bc:2d:ca:
45:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:5F:90:6D:28:D1:34:CF:00:2B:9E:4A:19:8B:BC:4C:08:FA:C0:9A
X509v3 Authority Key Identifier:
keyid:F0:E6:9C:C7:9D:3A:0C:49:C2:91:FD:40:7F:B2:BE:DC:23:EA:7A:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Oacx506DEnCkf1Af7K-3CPqeok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/1a8b06-9fda-4115-be48-8df71ba03915/1/1-1-QbSjRNM8AK55KGYu8TAj6wJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/1a8b06-9fda-4115-be48-8df71ba03915/1/8Oacx506DEnCkf1Af7K-3CPqeok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.101.64.0/18
217.30.208.0/20
Signature Algorithm: sha256WithRSAEncryption
02:e1:78:c5:c2:8d:0c:22:5b:48:af:06:85:aa:0f:a0:32:0d:
33:0f:55:f6:45:89:8d:f6:6a:54:1d:b3:9c:c2:e6:d1:b7:36:
b4:0c:a8:14:42:7b:d9:9f:17:34:be:ef:c0:5b:bc:35:2f:da:
df:9d:60:00:f9:0d:12:22:9a:dd:bb:93:b7:7c:f2:59:5e:67:
bf:23:ed:39:fa:7e:b1:d0:56:51:17:3b:1b:dd:0e:50:59:c2:
46:6c:6f:1b:9e:04:bb:fe:86:9d:10:15:63:2c:dd:43:db:ec:
bc:1c:79:b1:79:1b:db:d9:4a:7c:bc:2e:7a:24:4f:82:ac:07:
5a:45:9e:1b:b5:e3:b4:74:3c:29:70:52:cb:d5:50:fd:37:a6:
29:43:d2:67:18:1b:ea:42:e7:1c:e2:79:c4:c6:3b:af:38:cb:
57:17:ea:8f:0e:3c:0c:d4:d3:4f:96:fa:ab:0b:34:64:0a:91:
c8:15:19:8d:4f:17:44:ee:49:8c:bc:23:dc:12:de:af:bb:bc:
a3:e9:e8:8a:a6:48:fa:a7:17:8a:fd:6e:b1:51:9b:7b:98:0d:
8b:7f:42:0b:ff:8e:35:b9:be:30:d2:bc:cc:35:bb:28:99:a0:
95:0a:ad:96:98:a5:da:77:2c:40:7f:75:f9:11:e2:80:e2:9f:
9b:f8:3e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:21 2023 by rpki-client on console-fra.rpki-client.org