Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/qgPNqmDcKkSRySHW7XOuDgtoEX4.roa
File: qgPNqmDcKkSRySHW7XOuDgtoEX4.roa (raw, json)
Hash identifier: 3MQhD//+81Nz01mHTPQFkln0IEKQklChReJ/354fnAo=
Subject key identifier: AA:03:CD:AA:60:DC:2A:44:91:C9:21:D6:ED:73:AE:0E:0B:68:11:7E
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 018455E39231B986701EFF128282529DD002
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/qgPNqmDcKkSRySHW7XOuDgtoEX4.roa
Signing time: Tue 08 Nov 2022 06:18:08 +0000
ROA not before: Tue 08 Nov 2022 06:18:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199669
IP address blocks: 83.217.9.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:55:e3:92:31:b9:86:70:1e:ff:12:82:82:52:9d:d0:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Nov 8 06:18:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa03cdaa60dc2a4491c921d6ed73ae0e0b68117e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:67:7b:64:0c:23:67:f1:89:15:a2:1f:be:8e:
e1:b3:75:a7:f7:be:fd:72:38:0c:40:e2:dd:e0:8c:
d1:56:c6:1f:2e:97:4b:1a:43:f9:1e:2e:a3:6e:d5:
63:c2:a6:ee:2a:f1:8f:9d:b0:aa:07:14:db:81:f2:
dd:fa:0d:b8:bd:39:e4:44:ad:50:cb:ca:cc:3a:d1:
74:f9:c3:1d:c0:5f:e3:02:7a:63:d0:9d:39:98:d8:
11:95:8c:86:c5:3b:ee:31:0a:ba:55:52:de:6d:2d:
a3:41:30:1d:85:bd:1f:ad:66:20:dd:af:e3:98:81:
0f:61:46:dd:17:76:2a:f2:28:29:26:d3:8f:67:23:
f3:6f:cc:7a:da:f0:ba:70:38:ee:0a:f8:ef:c3:7d:
f3:79:95:31:10:5e:50:fe:d5:e8:8a:a0:69:66:88:
7a:d3:2c:6f:d0:6a:c7:54:4b:6c:8f:d0:d4:b2:76:
09:68:fe:86:4a:7c:78:c6:77:5c:85:30:60:a7:f2:
92:6a:6b:38:fc:12:a5:4e:a2:37:59:97:75:22:a3:
d6:7e:56:62:5b:50:c7:9d:9f:e1:f9:2b:c1:ff:d5:
b2:f7:8c:52:81:4d:f2:74:c6:67:62:42:85:84:97:
cf:16:1e:f5:52:50:af:cd:ae:77:d7:5f:31:39:b8:
bf:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:03:CD:AA:60:DC:2A:44:91:C9:21:D6:ED:73:AE:0E:0B:68:11:7E
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/qgPNqmDcKkSRySHW7XOuDgtoEX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.9.0/24
Signature Algorithm: sha256WithRSAEncryption
43:0f:25:5b:be:ec:ad:06:25:53:25:d3:1d:27:b9:de:99:c8:
27:e4:0e:53:e8:93:5c:87:4f:e7:25:47:78:9b:a8:0e:0f:4a:
dd:ef:d2:97:10:d2:55:cd:7a:73:8e:66:66:d5:34:bc:df:a4:
19:ef:97:66:16:b0:e4:ed:35:f9:13:c3:5d:8c:23:05:2e:af:
11:05:dd:2d:75:b4:30:c4:9a:2f:97:88:94:b1:62:c7:fa:4a:
ea:1e:1d:1e:88:b0:c4:86:6e:61:40:08:c7:4f:25:6c:72:40:
9b:65:7c:6a:ae:68:9a:88:66:bb:6d:df:78:53:f5:45:ff:d0:
b4:2b:4b:2f:11:40:97:d5:61:4a:30:43:68:c4:ba:5e:f1:e0:
00:bb:25:9d:de:26:9e:f6:9f:4f:45:cb:fd:c6:ed:70:08:60:
ba:0d:42:f6:a9:ac:47:dc:aa:0f:f4:96:84:91:1e:29:6a:6f:
e2:68:78:05:7e:13:2c:9b:ea:31:0b:63:9d:42:f4:a2:29:50:
0a:a8:58:a4:5b:b4:3f:01:58:f8:db:21:c1:db:b1:fc:a4:05:
10:8a:e2:60:86:a8:5d:19:d6:7b:7e:d2:95:92:23:55:4e:18:
89:99:05:a1:02:47:44:74:05:95:ce:46:60:35:f0:c9:21:2b:
8d:55:c8:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:00 2023 by rpki-client on console-ams.rpki-client.org