Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/QQV-YVVGjsxbTimkWthEQpRADqc.roa
File: QQV-YVVGjsxbTimkWthEQpRADqc.roa (raw, json)
Hash identifier: vEawgxJO4dpFQezvBDnvWujH8qWFb7Tz/8B/EtlM1Hc=
Subject key identifier: 41:05:7E:61:55:46:8E:CC:5B:4E:29:A4:5A:D8:44:42:94:40:0E:A7
Certificate issuer: /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial: 040CC44B
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/QQV-YVVGjsxbTimkWthEQpRADqc.roa
Signing time: Mon 07 Mar 2022 14:24:56 +0000
ROA not before: Mon 07 Mar 2022 14:24:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 46.37.97.0/24 maxlen: 24
46.37.100.0/24 maxlen: 24
46.37.105.0/24 maxlen: 24
46.37.102.0/24 maxlen: 24
46.37.104.0/24 maxlen: 24
46.37.112.0/24 maxlen: 24
46.37.109.0/24 maxlen: 24
46.37.111.0/24 maxlen: 24
46.37.110.0/24 maxlen: 24
185.92.44.0/24 maxlen: 24
46.37.107.0/24 maxlen: 24
46.37.106.0/24 maxlen: 24
46.37.113.0/24 maxlen: 24
46.37.116.0/24 maxlen: 24
46.37.115.0/24 maxlen: 24
46.37.117.0/24 maxlen: 24
185.92.45.0/24 maxlen: 24
185.92.47.0/24 maxlen: 24
185.92.46.0/24 maxlen: 24
46.37.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67945547 (0x40cc44b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Validity
Not Before: Mar 7 14:24:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41057e6155468ecc5b4e29a45ad8444294400ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b7:f1:f7:f5:36:04:5d:9b:07:d7:89:36:6c:
ab:5d:b7:d1:26:b1:b9:e5:ed:a8:1c:1e:cd:64:24:
f3:ce:e1:f8:2c:48:7c:2f:fe:57:80:b0:06:fc:65:
f3:6e:bb:3a:28:52:30:48:57:1c:71:3c:21:42:72:
83:cd:72:b7:f8:3f:9d:4b:e8:2e:4d:e5:c6:23:09:
71:95:00:96:3e:56:34:75:c6:43:e7:fd:96:4b:8d:
b2:ab:56:b4:26:03:60:96:09:15:bb:2f:f7:73:d2:
7e:79:67:6b:ba:72:6d:63:fb:22:eb:ae:e6:eb:4d:
a2:2f:55:a0:32:9d:36:13:b5:7b:6c:c5:03:00:6a:
b2:32:c6:37:1f:02:c7:e6:c9:c3:7f:7d:bc:f9:9a:
11:c2:e3:fd:3f:68:87:87:53:27:09:f7:54:09:f7:
49:9f:d9:fc:3a:71:b5:0b:51:74:75:e5:29:ee:5d:
56:b4:09:12:4a:7e:22:70:65:70:05:a8:d8:32:09:
28:5a:b7:9a:8e:dd:32:2b:45:0d:d0:6c:1a:c0:61:
98:81:0d:89:25:97:3f:ee:ba:0b:7e:68:16:84:93:
61:76:0a:b8:41:0d:4e:d0:bd:5c:a8:ad:46:dd:4a:
d1:a4:9e:35:97:38:df:5c:51:f7:68:19:70:cf:e7:
69:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:05:7E:61:55:46:8E:CC:5B:4E:29:A4:5A:D8:44:42:94:40:0E:A7
X509v3 Authority Key Identifier:
keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/QQV-YVVGjsxbTimkWthEQpRADqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.37.97.0/24
46.37.100.0/24
46.37.102.0/24
46.37.104.0/22
46.37.109.0-46.37.113.255
46.37.115.0-46.37.117.255
46.37.119.0/24
185.92.44.0/22
Signature Algorithm: sha256WithRSAEncryption
05:7c:93:cd:61:5f:46:23:9a:a1:fb:ef:b7:5f:ab:9f:37:9b:
05:44:1f:54:86:f9:84:09:4d:b1:7a:31:96:bd:6b:4f:b1:87:
6a:f0:62:0c:a5:9a:a1:aa:b6:47:96:27:14:6f:69:f6:8b:95:
9b:6d:c7:40:e8:4a:03:b0:eb:3a:3f:39:c9:53:a7:d5:c9:08:
4b:b6:d7:ae:cb:01:51:35:95:97:b8:55:18:49:6a:2b:db:67:
ee:79:0d:6f:dd:2d:c1:02:19:b9:6e:e1:f5:06:ea:75:71:10:
4c:47:12:63:31:b9:9c:de:bf:33:23:37:a7:df:2c:80:ce:7b:
7c:94:81:a6:0b:da:aa:2b:41:ea:41:f0:63:98:b2:b2:e1:ea:
b4:2d:55:4a:a2:ec:f8:67:09:31:60:7e:d1:8c:d8:61:5a:6d:
f5:00:09:f2:ae:ed:b8:ba:eb:61:45:de:5a:4d:5b:e8:20:d5:
9b:e1:b9:a4:4a:92:23:35:f7:e1:aa:53:2c:f6:e0:2b:81:f5:
52:60:d8:6b:0f:12:d8:d6:84:a0:72:b4:26:4b:eb:2c:26:0c:
3f:c9:4a:73:46:94:f6:f5:96:58:68:f7:e0:0a:40:45:a9:8f:
71:1e:57:76:28:ff:52:67:32:01:7d:56:c0:5f:23:d7:3e:a8:
a4:85:04:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:34 2023 by rpki-client on console-ams.rpki-client.org