Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/de1db4-ec78-4e41-9570-097c3c1c2540/1/qqxubP9CQrz0tFDqXWw3IbN8_Aw.roa
File: qqxubP9CQrz0tFDqXWw3IbN8_Aw.roa (raw, json)
Hash identifier: mtybwX83pZuB4t0tcov5rpe9J8rRVffySLZE/h0uFbo=
Subject key identifier: AA:AC:6E:6C:FF:42:42:BC:F4:B4:50:EA:5D:6C:37:21:B3:7C:FC:0C
Certificate issuer: /CN=2ac64dc21cb5fd4d0bcb02cc2b43fd751fd91e1e
Certificate serial: 06EC49D7
Authority key identifier: 2A:C6:4D:C2:1C:B5:FD:4D:0B:CB:02:CC:2B:43:FD:75:1F:D9:1E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsZNwhy1_U0LywLMK0P9dR_ZHh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/de1db4-ec78-4e41-9570-097c3c1c2540/1/qqxubP9CQrz0tFDqXWw3IbN8_Aw.roa
Signing time: Sat 01 Jan 2022 01:59:24 +0000
ROA not before: Sat 01 Jan 2022 01:59:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43803
IP address blocks: 213.155.188.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116148695 (0x6ec49d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac64dc21cb5fd4d0bcb02cc2b43fd751fd91e1e
Validity
Not Before: Jan 1 01:59:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aaac6e6cff4242bcf4b450ea5d6c3721b37cfc0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:96:d6:3c:bc:4c:f0:88:2e:d4:b7:9a:d7:51:
c1:87:f4:08:8a:c7:37:4d:52:ee:bb:26:fd:65:62:
ce:db:8b:fc:df:c9:38:94:16:29:98:48:4b:ca:e7:
47:47:63:2f:6d:2a:59:5c:ef:41:44:3d:81:dc:37:
f6:08:d4:41:28:26:45:7e:3f:9c:de:20:c8:e1:20:
35:f9:07:66:de:d6:9c:59:93:c5:19:e1:74:58:46:
31:1f:4c:cc:8a:32:40:4c:66:2f:92:ab:6c:1a:e1:
be:a5:3f:b7:5c:83:63:28:ed:67:67:66:c4:c5:5e:
30:af:64:31:40:41:59:72:94:d9:ec:22:5c:b0:a9:
ea:ac:52:91:f6:a2:dd:d1:2f:63:8a:82:43:48:68:
00:14:eb:d7:c4:f6:5e:d5:ab:63:79:a8:41:bd:d3:
03:60:69:e5:8b:6e:1e:de:25:90:55:d4:5c:1e:6b:
1e:a0:a9:1c:46:71:3e:ce:b0:90:6f:f5:19:1e:30:
c8:a3:db:68:29:89:08:4f:4e:16:47:0a:f5:34:97:
1a:c3:64:06:d5:34:e1:5b:82:26:6f:ac:a8:85:33:
3f:2f:bb:a0:72:a9:80:00:4c:4b:94:ab:56:f2:dd:
89:3e:49:be:a5:8e:54:59:e1:e0:da:31:e5:40:1f:
c4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:AC:6E:6C:FF:42:42:BC:F4:B4:50:EA:5D:6C:37:21:B3:7C:FC:0C
X509v3 Authority Key Identifier:
keyid:2A:C6:4D:C2:1C:B5:FD:4D:0B:CB:02:CC:2B:43:FD:75:1F:D9:1E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsZNwhy1_U0LywLMK0P9dR_ZHh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/de1db4-ec78-4e41-9570-097c3c1c2540/1/qqxubP9CQrz0tFDqXWw3IbN8_Aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/de1db4-ec78-4e41-9570-097c3c1c2540/1/KsZNwhy1_U0LywLMK0P9dR_ZHh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.155.188.0/23
Signature Algorithm: sha256WithRSAEncryption
36:ee:ff:61:b4:47:8d:32:7d:fa:32:2d:6f:a6:7f:37:3a:a5:
e6:ae:0f:68:df:8c:7c:8f:33:a9:66:c2:2f:40:d3:f9:6b:60:
80:dd:b7:66:fa:e2:dc:af:8d:84:6b:88:aa:00:bb:20:51:3b:
0c:d7:2c:14:f3:6d:96:23:7d:2e:01:b2:aa:f8:44:2f:74:f1:
5e:ac:1b:87:19:fd:fa:52:ee:fd:ee:24:77:80:c7:ac:51:3d:
c5:7b:e7:99:d9:09:28:5e:53:e1:40:04:2b:8e:ef:d5:e4:fd:
00:2c:2a:40:24:b1:2a:d8:eb:cf:e0:03:41:78:08:a9:6e:80:
45:4f:45:c0:29:ff:f4:9d:98:e8:ba:b7:69:6a:d5:a0:31:a4:
75:f8:7d:e6:4e:78:0e:ad:17:b6:6c:5a:a4:da:bc:62:f7:c2:
97:be:aa:44:1d:3a:17:27:30:0d:52:68:03:47:e9:06:26:c2:
03:a2:82:3a:d9:6f:a1:a9:b9:51:26:e7:17:e5:a3:2b:39:07:
21:57:d1:3c:db:55:6f:8d:0e:b0:12:2b:a4:e2:9a:be:08:b9:
20:d0:ed:37:97:26:f1:bc:19:ce:e0:09:00:56:06:c0:14:ab:
a3:1f:6e:8f:54:5c:a6:4a:ce:28:99:37:0a:9e:2b:ef:22:cf:
4e:9e:5c:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:11 2024 by rpki-client on console-fra.rpki-client.org