Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/qdNHGmHsA5JJCwk0Nh-u-Jqmp_o.roa
File: qdNHGmHsA5JJCwk0Nh-u-Jqmp_o.roa (raw, json)
Hash identifier: PXqESD13N39LgNx0BZKLGPApmaHriNukYfvLmPvMEYM=
Subject key identifier: A9:D3:47:1A:61:EC:03:92:49:0B:09:34:36:1F:AE:F8:9A:A6:A7:FA
Certificate issuer: /CN=851d4e34d4e48539c170451d4e26138887f6e922
Certificate serial: 02BEC971
Authority key identifier: 85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/qdNHGmHsA5JJCwk0Nh-u-Jqmp_o.roa
Signing time: Thu 20 Jan 2022 10:26:58 +0000
ROA not before: Thu 20 Jan 2022 10:26:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41960
IP address blocks: 45.129.144.0/22 maxlen: 24
185.249.40.0/22 maxlen: 24
2a0e:5b40::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46057841 (0x2bec971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=851d4e34d4e48539c170451d4e26138887f6e922
Validity
Not Before: Jan 20 10:26:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9d3471a61ec0392490b0934361faef89aa6a7fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fb:fe:a2:c1:b5:e9:b8:21:11:a5:68:72:67:
50:40:ee:c5:35:3a:fe:63:8d:21:d5:12:67:71:7f:
42:c9:55:64:58:45:30:74:d1:5d:74:9e:ac:0f:f3:
1d:e9:bc:cc:6a:11:10:95:c8:64:96:d9:7f:da:ce:
0c:5b:3d:43:3d:b3:8c:f3:7d:2f:06:f8:a9:89:00:
f8:1f:f9:b5:46:c1:b3:12:56:48:43:81:68:f8:af:
73:15:75:ea:04:03:86:46:63:7b:6c:ec:bd:c0:77:
de:aa:6c:d6:a0:5d:86:36:c9:cb:11:50:16:dc:33:
e4:98:38:f7:c8:c6:71:ec:31:5a:b8:8e:a0:b1:b6:
c2:79:07:f2:cc:06:12:59:5a:1f:46:cc:9a:11:f5:
76:91:9f:56:f6:b6:29:d3:96:cd:31:0e:19:73:18:
66:37:f4:87:9f:58:82:04:95:4f:dd:42:93:f5:5e:
d1:21:ea:83:dc:7f:13:07:b2:48:d6:d6:10:f2:13:
23:7c:6e:de:6a:0c:29:20:82:20:c0:9e:2d:cc:7c:
8a:db:4d:6f:73:2e:63:72:ca:a3:cc:b7:86:56:5e:
9f:bc:d0:15:2a:66:ae:f1:f3:86:5a:2d:32:23:e5:
7d:b5:39:09:9b:ab:ac:42:c5:27:4d:9e:58:e0:3d:
bf:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D3:47:1A:61:EC:03:92:49:0B:09:34:36:1F:AE:F8:9A:A6:A7:FA
X509v3 Authority Key Identifier:
keyid:85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/qdNHGmHsA5JJCwk0Nh-u-Jqmp_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.144.0/22
185.249.40.0/22
IPv6:
2a0e:5b40::/29
Signature Algorithm: sha256WithRSAEncryption
8b:bb:42:b7:3a:eb:9d:6f:77:be:ff:7c:95:d5:ca:82:eb:59:
de:9d:b4:e3:67:3f:22:3d:2c:8c:7b:05:c5:f0:a2:a2:39:4f:
27:94:b0:11:36:f4:2b:f3:d5:b4:c9:a3:70:88:72:bf:83:7f:
66:79:5e:bc:31:30:88:8a:83:dd:91:06:90:58:d2:ff:c2:12:
35:6b:30:7c:4b:01:9d:30:c1:1d:dd:ce:e0:7a:c9:50:15:05:
5a:f7:f2:8a:7e:54:e1:54:4d:3e:ef:54:ed:ff:01:69:ee:66:
27:51:c6:2a:c4:e0:34:30:da:91:d0:6f:8a:d2:c9:d9:b8:72:
45:e3:1c:4e:83:31:bb:36:74:ba:6a:f6:38:db:31:b6:5d:dd:
24:cb:96:99:c8:b9:74:db:df:7d:70:e1:45:e1:44:0a:02:ba:
5e:36:0e:a4:32:2a:17:82:a7:2a:b1:0f:93:dd:60:f2:57:f2:
6c:a4:34:f2:2b:96:b6:23:e7:3f:82:1c:e6:b6:1c:ba:16:be:
cd:fc:47:ef:8f:70:b8:a5:35:0e:17:50:a1:2d:e8:39:c4:e3:
12:ec:e5:b7:b4:f9:b7:ab:66:b8:e0:72:be:9e:dc:a6:80:da:
a5:8f:a3:98:37:b6:29:3b:6f:87:0e:40:04:64:84:2a:98:9a:
3a:28:9e:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:55 2024 by rpki-client on console-fra.rpki-client.org