Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/qjdhLp7Go1etl-gZ9Nuk0YJYc5g.roa
File: qjdhLp7Go1etl-gZ9Nuk0YJYc5g.roa (raw, json)
Hash identifier: i6N92WncuWqjh1nQm3RV9udCJ3ueXMNHNhLOi4AEEaU=
Subject key identifier: AA:37:61:2E:9E:C6:A3:57:AD:97:E8:19:F4:DB:A4:D1:82:58:73:98
Certificate issuer: /CN=f7822d4597e5493d15178bfb10e6841dd17e5897
Certificate serial: 080E09E4
Authority key identifier: F7:82:2D:45:97:E5:49:3D:15:17:8B:FB:10:E6:84:1D:D1:7E:58:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/94ItRZflST0VF4v7EOaEHdF-WJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/qjdhLp7Go1etl-gZ9Nuk0YJYc5g.roa
Signing time: Fri 13 May 2022 08:44:02 +0000
ROA not before: Fri 13 May 2022 08:44:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12551
IP address blocks: 158.47.0.0/16 maxlen: 24
146.133.0.0/16 maxlen: 24
146.133.124.0/24 maxlen: 24
146.133.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135137764 (0x80e09e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7822d4597e5493d15178bfb10e6841dd17e5897
Validity
Not Before: May 13 08:44:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa37612e9ec6a357ad97e819f4dba4d182587398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:93:c1:72:90:5f:0a:78:c0:64:88:ce:15:
9f:49:f5:cb:a0:41:86:80:2b:ec:07:cf:09:0b:7a:
75:9f:34:75:94:13:b5:6b:fa:fb:84:41:a0:b4:b1:
fc:c7:d1:e4:b0:d2:eb:d1:3a:51:5f:29:37:7f:0f:
54:bc:8f:2d:f6:f6:a1:d9:0f:30:79:85:da:47:79:
d7:75:ec:4e:38:81:5a:1a:49:fc:9c:72:5b:7b:a9:
63:e2:64:25:c8:20:cc:bc:00:c0:05:c0:6a:5b:f6:
5e:d7:b6:fe:f2:a0:75:91:ca:a1:e7:ee:4f:b3:25:
b8:e3:1e:d7:8d:49:47:d6:66:42:38:22:d9:c5:e8:
4a:31:f9:ae:59:1b:7e:bf:ab:23:0b:7c:8b:04:32:
8b:db:30:b5:46:b7:18:55:3f:ec:d4:04:d7:6b:ce:
8f:79:90:ab:d5:3e:9c:48:9a:58:2b:79:94:5c:85:
07:12:f3:4c:a6:94:12:11:92:57:a9:14:c0:1a:08:
b9:fd:f4:e2:ac:b2:18:5c:ab:78:ca:ba:77:8b:25:
73:9d:00:4a:be:96:65:88:e0:18:e6:02:9b:1c:33:
1d:f5:82:c5:17:2d:3e:82:88:19:a7:ee:cf:b4:25:
65:f0:40:96:14:c7:69:c6:7b:27:2b:f7:b1:db:6c:
41:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:37:61:2E:9E:C6:A3:57:AD:97:E8:19:F4:DB:A4:D1:82:58:73:98
X509v3 Authority Key Identifier:
keyid:F7:82:2D:45:97:E5:49:3D:15:17:8B:FB:10:E6:84:1D:D1:7E:58:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/94ItRZflST0VF4v7EOaEHdF-WJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/qjdhLp7Go1etl-gZ9Nuk0YJYc5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/31081a-8b5a-49ec-9036-862e99973fc3/1/94ItRZflST0VF4v7EOaEHdF-WJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.133.0.0/16
158.47.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1c:a9:fb:c1:2f:6d:8b:8a:5d:c4:44:72:5a:89:ff:77:1b:4e:
aa:ab:e9:e6:82:52:f4:d7:4c:a5:7a:d5:5e:4a:9e:73:97:87:
58:44:43:32:d5:ba:e3:b3:4e:2b:2d:b2:88:50:85:04:cb:ab:
f3:e3:cb:bc:d6:f8:d2:2d:d2:99:71:7a:c4:38:b2:49:a3:2a:
e0:88:f2:31:3f:8c:ff:7f:0d:15:05:82:93:9c:21:64:5a:21:
f6:58:0d:91:4b:e3:d3:d8:a8:b4:11:62:c8:de:0d:2b:7f:3c:
1a:12:07:0e:b3:02:22:e1:f2:4a:aa:f8:30:9c:c1:87:51:bb:
14:4e:e1:d7:8c:93:4a:17:a9:6a:de:f7:c4:a1:1b:38:cb:ca:
8b:e0:95:86:66:55:ba:20:b0:c0:e2:e6:bb:0e:a6:e0:81:56:
5c:50:fc:02:0d:5d:af:a0:3a:7e:c3:5c:cb:6a:31:a8:7b:a6:
ce:43:bd:f4:bd:42:c0:64:e4:17:e7:0e:9e:27:f3:1a:5d:09:
33:af:71:11:12:8e:d9:8d:3e:ab:2f:87:09:3d:e8:c1:2e:7f:
0d:96:5f:52:98:67:c9:6f:f1:f1:5e:87:aa:41:7a:fe:a3:e2:
60:42:0c:c6:87:ff:74:de:15:74:56:a7:7c:ba:08:42:c0:2a:
39:eb:a2:a6
-----BEGIN CERTIFICATE-----
MIIE8zCCA9ugAwIBAgIECA4J5DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NzgyMmQ0NTk3ZTU0OTNkMTUxNzhiZmIxMGU2ODQxZGQxN2U1ODk3MB4XDTIyMDUx
MzA4NDQwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWEzNzYxMmU5ZWM2
YTM1N2FkOTdlODE5ZjRkYmE0ZDE4MjU4NzM5ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKj5k8FykF8KeMBkiM4Vn0n1y6BBhoAr7AfPCQt6dZ80dZQT
tWv6+4RBoLSx/MfR5LDS69E6UV8pN38PVLyPLfb2odkPMHmF2kd513XsTjiBWhpJ
/JxyW3upY+JkJcggzLwAwAXAalv2Xte2/vKgdZHKoefuT7MluOMe141JR9ZmQjgi
2cXoSjH5rlkbfr+rIwt8iwQyi9swtUa3GFU/7NQE12vOj3mQq9U+nEiaWCt5lFyF
BxLzTKaUEhGSV6kUwBoIuf304qyyGFyreMq6d4slc50ASr6WZYjgGOYCmxwzHfWC
xRctPoKIGafuz7QlZfBAlhTHacZ7Jyv3sdtsQfECAwEAAaOCAg0wggIJMB0GA1Ud
DgQWBBSqN2EunsajV62X6Bn026TRglhzmDAfBgNVHSMEGDAWgBT3gi1Fl+VJPRUX
i/sQ5oQd0X5YlzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
Lzk0SXRSWmZsU1QwVkY0djdFT2FFSGRGLVdKYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjMvMzEwODFhLThiNWEtNDllYy05MDM2LTg2MmU5OTk3M2ZjMy8x
L3FqZGhMcDdHbzFldGwtZ1o5TnVrMFlKWWM1Zy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMv
MzEwODFhLThiNWEtNDllYy05MDM2LTg2MmU5OTk3M2ZjMy8xLzk0SXRSWmZsU1Qw
VkY0djdFT2FFSGRGLVdKYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAj
BggrBgEFBQcBBwEB/wQUMBIwEAQCAAEwCgMDAJKFAwMAni8wDQYJKoZIhvcNAQEL
BQADggEBAByp+8EvbYuKXcREclqJ/3cbTqqr6eaCUvTXTKV61V5KnnOXh1hEQzLV
uuOzTistsohQhQTLq/Pjy7zW+NIt0plxesQ4skmjKuCI8jE/jP9/DRUFgpOcIWRa
IfZYDZFL49PYqLQRYsjeDSt/PBoSBw6zAiLh8kqq+DCcwYdRuxRO4deMk0oXqWre
98ShGzjLyovglYZmVbogsMDi5rsOpuCBVlxQ/AINXa+gOn7DXMtqMah7ps5DvfS9
QsBk5BfnDp4n8xpdCTOvcRESjtmNPqsvhwk96MEufw2WX1KYZ8lv8fFeh6pBev6j
4mBCDMaH/3TeFXRWp3y6CELAKjnroqY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:29 2024 by rpki-client on console-fra.rpki-client.org