Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e1c7c9-cc80-45d7-a6d8-af334a0a1e93/1/QtvpSd82CNQNWdHXyLgsvWBHM1I.roa
File: QtvpSd82CNQNWdHXyLgsvWBHM1I.roa (raw, json)
Hash identifier: /DWL0WgAs8lcvN2tyAOJsqgvmylDIP7b2/ms8sn2KWk=
Subject key identifier: 42:DB:E9:49:DF:36:08:D4:0D:59:D1:D7:C8:B8:2C:BD:60:47:33:52
Certificate issuer: /CN=8e57b1447642c14f11c04b641cf1d8de8adac784
Certificate serial: 01853909564406819354930A0E52BB6931CC
Authority key identifier: 8E:57:B1:44:76:42:C1:4F:11:C0:4B:64:1C:F1:D8:DE:8A:DA:C7:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jlexRHZCwU8RwEtkHPHY3orax4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e1c7c9-cc80-45d7-a6d8-af334a0a1e93/1/QtvpSd82CNQNWdHXyLgsvWBHM1I.roa
Signing time: Thu 22 Dec 2022 08:53:11 +0000
ROA not before: Thu 22 Dec 2022 08:53:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205239
IP address blocks: 91.229.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:09:56:44:06:81:93:54:93:0a:0e:52:bb:69:31:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e57b1447642c14f11c04b641cf1d8de8adac784
Validity
Not Before: Dec 22 08:53:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42dbe949df3608d40d59d1d7c8b82cbd60473352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d4:63:66:06:d2:b5:42:7d:ae:d1:23:b3:8b:
9b:05:e7:36:59:2e:70:83:e5:e4:05:aa:70:49:b6:
79:ff:41:65:5d:4c:30:9b:5a:55:c2:bd:10:0f:e4:
0f:54:00:88:85:9f:e8:22:18:e8:31:5c:6f:c4:dc:
93:4d:15:46:79:08:9b:e5:54:b8:cb:be:70:f7:b3:
02:eb:e9:44:0a:a0:8b:e8:c0:2d:3e:77:17:47:fa:
d8:b2:52:8a:bf:2b:b9:ba:79:3c:70:d6:72:fd:b7:
db:9d:d8:9f:e9:16:ef:b2:9b:c5:87:24:4e:6f:a5:
51:23:45:e1:75:39:b1:24:28:6a:77:0b:45:5b:79:
ca:dc:f4:9b:b4:1f:46:d1:71:29:fb:2e:3c:1c:1b:
1e:7f:ac:33:d4:3c:81:c6:c8:d6:9a:1a:df:3e:8d:
e0:79:d5:0d:e1:75:39:17:a5:21:be:ac:4d:0c:ed:
00:4f:23:aa:d5:bd:c4:e5:70:f5:5a:14:d9:5d:73:
2e:45:16:ae:77:09:76:a8:10:0f:e4:15:13:3c:51:
f1:9b:fb:99:d9:71:73:f9:59:32:bc:b3:7b:98:2b:
94:9e:45:c7:66:90:8c:f3:40:b5:ab:b1:34:67:f2:
63:dd:0c:b3:05:c1:73:67:95:e3:51:ef:e6:26:4f:
29:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:DB:E9:49:DF:36:08:D4:0D:59:D1:D7:C8:B8:2C:BD:60:47:33:52
X509v3 Authority Key Identifier:
keyid:8E:57:B1:44:76:42:C1:4F:11:C0:4B:64:1C:F1:D8:DE:8A:DA:C7:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jlexRHZCwU8RwEtkHPHY3orax4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e1c7c9-cc80-45d7-a6d8-af334a0a1e93/1/QtvpSd82CNQNWdHXyLgsvWBHM1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e1c7c9-cc80-45d7-a6d8-af334a0a1e93/1/jlexRHZCwU8RwEtkHPHY3orax4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.101.0/24
Signature Algorithm: sha256WithRSAEncryption
50:40:dd:76:85:e7:f1:aa:4a:97:ee:a4:23:bf:f0:bf:82:5f:
89:c4:87:98:c7:e5:c8:05:fe:1d:0d:42:dd:d4:48:37:7a:d5:
8b:59:40:a1:2e:74:9b:1c:22:85:0a:2a:70:0d:71:39:66:03:
52:f5:42:91:22:e1:50:7c:01:5c:8f:cd:ea:e1:4f:59:97:55:
c3:cc:d1:bb:f6:99:71:88:29:95:73:b3:32:ac:c8:73:03:b7:
d6:5e:70:80:c4:b9:ab:03:a4:13:61:33:e5:bf:55:86:c1:3d:
a4:c8:34:55:b4:ae:84:8a:51:5b:0f:f4:83:00:36:2f:8f:5e:
fe:14:62:87:b0:c5:e9:99:db:8a:76:81:c6:e4:47:7e:ab:06:
b9:4d:d7:69:f9:c9:18:69:ac:3f:74:33:f8:9c:ab:87:e8:72:
05:b5:27:f2:6c:b9:c9:91:80:db:32:65:21:2a:39:1c:cf:b9:
89:45:6b:dd:74:be:2a:73:a0:4d:bc:ec:f7:8b:3d:f9:12:ed:
ed:67:6a:68:f1:6f:2d:f6:bd:89:a3:d8:ee:41:41:98:54:f8:
1a:ce:8c:03:50:0d:0c:a8:9c:69:76:a1:b4:b1:50:24:3d:4d:
4b:cf:4f:18:eb:74:41:54:71:9c:fe:de:ab:0d:bd:40:3a:8b:
b7:00:4a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:03 2024 by rpki-client on console-ams.rpki-client.org