Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/q7iWCWDUCqhlGsOnvmgtVEjNEjs.roa
File: q7iWCWDUCqhlGsOnvmgtVEjNEjs.roa (raw, json)
Hash identifier: CTt/JLej9EAEF5fK6C6gL4upJfC63dM0vJLjokyv/sQ=
Subject key identifier: AB:B8:96:09:60:D4:0A:A8:65:1A:C3:A7:BE:68:2D:54:48:CD:12:3B
Certificate issuer: /CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Certificate serial: 081B007D
Authority key identifier: 42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/q7iWCWDUCqhlGsOnvmgtVEjNEjs.roa
Signing time: Sat 01 Jan 2022 02:57:30 +0000
ROA not before: Sat 01 Jan 2022 02:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207671
IP address blocks: 45.91.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135987325 (0x81b007d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=429c54be1da7e738e3c96ffb41f1ea3900a67be8
Validity
Not Before: Jan 1 02:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abb8960960d40aa8651ac3a7be682d5448cd123b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3f:6a:4f:a1:ff:c0:71:07:c3:34:75:6f:8b:
78:c7:8d:74:46:10:1b:8e:be:3a:c6:ab:2f:07:0d:
bc:ee:07:a4:a2:ef:65:3d:06:64:b7:18:38:c2:b9:
e9:67:d1:25:c5:8c:de:3c:cd:3b:3b:f0:32:9d:a8:
e3:1d:d2:08:e5:e1:f0:11:07:13:99:0c:cf:62:53:
59:e0:db:13:8e:96:b0:99:9f:4c:ba:f6:94:7d:f5:
22:19:57:3c:7c:04:d4:ff:9c:f3:3d:73:67:4b:1c:
e4:eb:a5:23:3f:45:b8:46:ee:0d:d3:ab:4f:8a:51:
91:c6:84:3c:b4:4d:28:0f:a9:e4:2a:64:f7:ec:c1:
81:b1:da:76:c7:6d:20:3e:f5:6c:3b:2f:31:dc:b8:
22:9e:97:3c:80:02:1d:96:2f:19:48:fe:4f:db:c1:
81:95:e9:7d:fa:95:11:86:66:75:c7:23:6d:ad:cb:
83:6a:a4:cb:c3:94:b3:4d:2b:03:f1:47:e7:33:e2:
18:78:a5:e9:53:70:04:24:df:6c:78:ab:4e:fa:10:
78:24:c1:d5:5d:95:94:57:ec:8e:72:33:76:02:b8:
2e:54:3f:d2:26:39:bf:e3:4b:82:2f:d2:0f:0d:52:
ac:b0:0b:a5:e9:7f:33:d8:5c:02:22:70:d0:1a:3f:
93:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:B8:96:09:60:D4:0A:A8:65:1A:C3:A7:BE:68:2D:54:48:CD:12:3B
X509v3 Authority Key Identifier:
keyid:42:9C:54:BE:1D:A7:E7:38:E3:C9:6F:FB:41:F1:EA:39:00:A6:7B:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpxUvh2n5zjjyW_7QfHqOQCme-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/q7iWCWDUCqhlGsOnvmgtVEjNEjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f6f5c3-6146-48ca-affa-3d8584cf53fe/1/QpxUvh2n5zjjyW_7QfHqOQCme-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.77.0/24
Signature Algorithm: sha256WithRSAEncryption
21:34:09:d7:78:4b:08:72:5a:43:b1:1c:53:b5:d6:eb:4a:a2:
03:2a:8b:2b:30:80:98:67:b0:34:f1:1e:74:c7:47:7f:da:f5:
e4:bd:17:72:91:b6:64:21:f1:b3:56:7a:f6:05:94:a3:7b:b1:
7c:1b:22:e5:08:7a:4d:3c:ba:0c:17:96:6d:14:2e:11:d1:5b:
35:81:2e:36:66:ba:31:c8:2e:3f:77:54:5c:69:2c:de:24:d2:
a3:1c:97:6f:5c:fc:96:c0:c0:3c:9d:79:a6:5d:76:de:6a:5f:
96:2e:d6:3c:b0:8c:c2:d8:f8:20:6c:14:16:6c:f9:c1:ff:15:
33:d7:4c:21:a9:e5:9c:ce:cd:b5:c3:19:7f:5d:72:d3:66:98:
04:af:25:92:08:98:b1:8f:ec:e1:5a:10:41:52:99:c3:e0:5c:
ce:b2:a2:40:a8:98:40:7d:b8:b4:f4:c5:35:00:cd:e1:9c:50:
02:9a:87:ff:22:17:7e:11:0b:d2:ce:2c:b3:fd:e0:b3:6f:42:
b7:dd:2e:fb:08:a8:b8:e2:e1:46:03:07:44:a2:52:3e:dd:55:
eb:4c:b1:59:6f:2a:fb:19:cf:9f:0a:48:a0:15:75:82:bd:11:
fc:37:59:8d:03:f3:f0:76:be:36:77:f7:3f:b3:cf:6c:51:02:
6a:8a:b3:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:55 2024 by rpki-client on console-ams.rpki-client.org