Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/qJh2D3dDiF6H3t6mh45jBa8tUBY.roa
File: qJh2D3dDiF6H3t6mh45jBa8tUBY.roa (raw, json)
Hash identifier: Ikg4k41RYs7iK+WHWx+utTSLhbcO7H4j7shdry1pQq0=
Subject key identifier: A8:98:76:0F:77:43:88:5E:87:DE:DE:A6:87:8E:63:05:AF:2D:50:16
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42547327
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/qJh2D3dDiF6H3t6mh45jBa8tUBY.roa
Signing time: Sat 01 Jan 2022 14:02:57 +0000
ROA not before: Sat 01 Jan 2022 14:02:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8280
IP address blocks: 192.71.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1112830759 (0x42547327)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:02:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a898760f7743885e87dedea6878e6305af2d5016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0a:74:d7:28:64:c6:11:ee:2b:8b:84:ae:e4:
28:64:91:65:46:7a:87:f6:4e:16:49:fb:f7:85:60:
1a:f0:97:04:f4:9c:50:59:1e:2c:1c:de:20:e3:9a:
32:58:ec:bf:9d:a5:9f:b6:8b:c5:aa:ce:b2:62:62:
cc:76:e8:3a:2d:94:31:47:ce:3a:c4:c6:38:7c:43:
e4:f7:99:a5:c6:00:15:bd:cd:58:82:77:27:93:d2:
61:de:ba:a6:2e:b8:5f:d0:ff:fa:1a:3d:74:34:d8:
6c:8a:10:c5:70:ac:6c:bd:c2:a8:b0:1d:01:5d:f0:
98:4d:5c:78:22:eb:35:da:4d:dd:e4:39:ec:a3:c9:
aa:7e:71:42:0b:61:49:c5:cf:e7:d4:3e:9e:4c:03:
c6:8b:8b:89:be:ae:1d:b2:87:ee:9f:39:20:9a:0a:
67:ba:29:52:55:70:1b:23:1e:a7:f8:90:4a:7c:4d:
66:c5:1d:e9:7d:75:db:35:26:0e:1a:87:9a:57:63:
9e:c8:f9:64:92:d5:46:1b:17:df:e4:84:90:b6:8f:
a7:de:7e:a1:09:cf:bc:a6:9a:ad:1e:79:a3:e2:5c:
32:83:6a:73:99:96:a0:f4:38:52:7c:1e:52:13:1a:
f7:05:23:35:7d:34:3a:a6:56:17:f5:5e:e0:49:db:
bf:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:98:76:0F:77:43:88:5E:87:DE:DE:A6:87:8E:63:05:AF:2D:50:16
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/qJh2D3dDiF6H3t6mh45jBa8tUBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.166.0/24
Signature Algorithm: sha256WithRSAEncryption
43:3b:6e:a3:cf:ea:db:d2:f4:8e:b4:df:f2:1c:9f:4c:9e:5d:
f6:5f:49:0b:e3:c0:31:c9:02:05:29:ea:65:ab:d7:57:0e:9c:
10:6a:d7:20:36:48:4e:64:2f:a8:77:28:a8:59:c2:b1:32:93:
54:7e:32:d6:96:b2:be:73:49:da:ea:4f:00:58:a5:fd:09:04:
ed:3d:00:7d:47:a6:16:9e:a8:e7:ab:4b:9b:19:df:74:24:fb:
da:0a:3d:12:54:b1:da:45:09:cc:03:70:f8:ba:a9:5a:c0:70:
f9:64:3d:76:89:26:21:44:bb:15:6f:4c:e2:93:2f:7f:ee:33:
97:cd:81:9a:80:b9:ed:0d:2f:d4:6c:a7:0d:94:6a:af:da:64:
f6:00:f9:72:8c:84:6b:71:9e:bd:e5:3c:6c:34:c9:1b:16:62:
70:22:29:3f:1e:0c:c9:c6:ad:cd:13:ae:aa:82:02:52:96:e0:
ba:2f:ed:88:f3:08:82:ef:27:3f:95:42:18:0f:c2:f0:ef:32:
10:7f:e3:05:18:f8:12:5b:40:70:05:a5:77:d2:86:ba:a9:fc:
79:aa:86:e0:af:13:10:0b:78:53:32:8b:30:5a:58:3c:c9:c1:
47:ae:c6:38:87:ab:e9:c9:71:67:50:43:af:d5:71:d1:07:98:
bc:ef:e7:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org