Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/c61fa2-bb3e-4955-ab5f-5e3b6ea5a7ee/1/QHe7vpxewf-xijHotwBTx-eiIb0.roa
File: QHe7vpxewf-xijHotwBTx-eiIb0.roa (raw, json)
Hash identifier: xqw3RyDVTCS9CXden1Pp/4p9BMLyvCTJ1idkfMj7rJE=
Subject key identifier: 40:77:BB:BE:9C:5E:C1:FF:B1:8A:31:E8:B7:00:53:C7:E7:A2:21:BD
Certificate issuer: /CN=d33d6b559d36c41307692a7b0fb3ef77aa6017ce
Certificate serial: 0182EE87F1AECAF3774D495EB992AAC8399E
Authority key identifier: D3:3D:6B:55:9D:36:C4:13:07:69:2A:7B:0F:B3:EF:77:AA:60:17:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0z1rVZ02xBMHaSp7D7Pvd6pgF84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/c61fa2-bb3e-4955-ab5f-5e3b6ea5a7ee/1/QHe7vpxewf-xijHotwBTx-eiIb0.roa
Signing time: Tue 30 Aug 2022 11:34:22 +0000
ROA not before: Tue 30 Aug 2022 11:34:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43061
IP address blocks: 91.223.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:87:f1:ae:ca:f3:77:4d:49:5e:b9:92:aa:c8:39:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d33d6b559d36c41307692a7b0fb3ef77aa6017ce
Validity
Not Before: Aug 30 11:34:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4077bbbe9c5ec1ffb18a31e8b70053c7e7a221bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:69:04:df:fd:68:40:f1:a6:19:c2:78:46:c0:
56:63:22:74:f6:b4:b7:c2:1f:f9:0a:47:f4:4e:52:
28:be:55:e9:b4:76:23:1f:ce:fa:b2:06:ce:5d:09:
76:31:cd:f9:09:ac:0f:69:08:25:f8:32:9b:af:42:
43:5e:a8:d3:81:41:96:f7:f1:9e:fd:5f:34:a7:ae:
8b:f9:98:2f:0c:95:e1:fb:b7:79:85:02:a4:d5:6c:
3d:71:0f:c2:5c:b2:75:2c:e8:b1:e9:71:d6:d7:27:
47:bc:fb:5e:3e:60:57:30:e5:37:22:df:2e:83:cf:
15:cd:6b:e4:c4:bd:ea:ef:75:ee:14:38:c8:f3:51:
59:e7:d7:04:02:d8:28:50:95:5b:de:de:17:00:a9:
c7:73:74:a1:97:6f:e1:43:93:99:0f:92:9b:3e:82:
50:93:b1:8c:07:d1:ae:cd:fd:56:37:18:3b:60:ba:
30:00:8b:eb:01:4e:d2:c8:86:86:45:d6:8b:57:d6:
8b:67:85:5a:3a:55:42:99:5a:0e:c9:6f:72:ec:c5:
6a:1e:bd:3a:f8:ae:e8:9f:94:8d:54:4f:5d:df:7f:
09:ff:4c:be:e3:3e:65:10:22:08:4e:b8:93:86:84:
37:eb:6b:99:97:84:10:5a:ef:df:28:e8:49:44:1f:
79:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:77:BB:BE:9C:5E:C1:FF:B1:8A:31:E8:B7:00:53:C7:E7:A2:21:BD
X509v3 Authority Key Identifier:
keyid:D3:3D:6B:55:9D:36:C4:13:07:69:2A:7B:0F:B3:EF:77:AA:60:17:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0z1rVZ02xBMHaSp7D7Pvd6pgF84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c61fa2-bb3e-4955-ab5f-5e3b6ea5a7ee/1/QHe7vpxewf-xijHotwBTx-eiIb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c61fa2-bb3e-4955-ab5f-5e3b6ea5a7ee/1/0z1rVZ02xBMHaSp7D7Pvd6pgF84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.26.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:70:69:a9:3c:d8:d1:6d:3b:e0:37:e0:6d:75:c4:62:68:e0:
cf:d6:92:d9:5b:6d:ad:66:c8:5b:47:9b:b4:ac:bb:32:e0:03:
01:46:ec:06:0a:89:9d:e0:b1:c2:ad:e2:46:ea:c1:6a:53:d5:
44:cd:6e:66:61:97:7a:c9:2d:69:1c:43:3d:6a:ef:3a:64:80:
17:60:f6:c7:fc:d3:16:96:17:c5:2f:92:80:13:3f:7d:cd:69:
82:b8:e4:c1:02:e0:51:da:54:89:d8:72:4c:a4:24:0e:83:e1:
60:61:cd:ab:5b:ab:ba:06:72:ea:73:e5:27:a6:f7:4d:1f:e7:
fa:73:72:87:2d:74:26:4c:aa:5f:4b:e7:45:39:00:3d:08:07:
3d:25:3e:ac:57:aa:37:81:75:c3:f8:5a:40:c4:ac:ac:1a:72:
7b:21:fa:e1:d7:73:50:03:84:16:9e:d3:33:70:be:0b:16:67:
f8:f6:71:80:e0:5f:d0:e3:40:0a:5c:8d:4e:39:3e:85:ac:72:
f0:be:e4:06:d3:65:05:6a:2b:25:f5:6f:ef:eb:27:5d:06:64:
ba:9e:a3:5b:14:40:82:78:2d:ee:9d:71:95:46:bc:1e:78:5b:
4e:2f:7d:6f:23:8f:c2:ef:32:9a:5a:c8:e9:cd:da:65:62:9c:
82:db:8d:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:20 2024 by rpki-client on console-ams.rpki-client.org