Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3334f8-dace-497f-a5a3-814e80904be4/1/Qa-k_YQpQwEdiI5CT7QpVf8Vpg8.roa
File: Qa-k_YQpQwEdiI5CT7QpVf8Vpg8.roa (raw, json)
Hash identifier: CYSgm0/fJz8xeXG/Do7JoDx1DVE+38CxzyQHE0+gIsQ=
Subject key identifier: 41:AF:A4:FD:84:29:43:01:1D:88:8E:42:4F:B4:29:55:FF:15:A6:0F
Certificate issuer: /CN=5bea2b884c7067f58fff040a1f06e0df1e80ab3e
Certificate serial: 117EC531
Authority key identifier: 5B:EA:2B:88:4C:70:67:F5:8F:FF:04:0A:1F:06:E0:DF:1E:80:AB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-oriExwZ_WP_wQKHwbg3x6Aqz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3334f8-dace-497f-a5a3-814e80904be4/1/Qa-k_YQpQwEdiI5CT7QpVf8Vpg8.roa
Signing time: Sat 01 Jan 2022 12:55:44 +0000
ROA not before: Sat 01 Jan 2022 12:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35725
IP address blocks: 89.123.192.0/20 maxlen: 20
109.101.160.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293520689 (0x117ec531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bea2b884c7067f58fff040a1f06e0df1e80ab3e
Validity
Not Before: Jan 1 12:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41afa4fd842943011d888e424fb42955ff15a60f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:70:db:d5:8b:22:51:71:ee:18:7e:97:5d:e2:
c6:eb:d1:8d:1e:c8:0d:db:3e:48:fb:ca:df:e5:2b:
02:5f:dc:70:db:aa:50:39:68:bc:83:84:75:44:97:
56:fb:dc:c0:c1:54:7f:bd:69:9c:8f:05:af:2e:2c:
d3:2f:19:8b:27:5d:24:f0:67:fc:54:fa:a2:5d:f9:
06:d2:aa:8a:3d:73:c8:81:fa:98:f0:a7:c6:c0:e6:
93:05:61:a6:3d:ed:63:b1:ef:ac:a4:29:3f:40:3c:
69:47:ff:ca:1b:8b:45:ab:c8:61:1f:7f:e6:4e:18:
e5:a4:84:02:f3:0a:df:69:88:7e:ab:bd:9c:0f:13:
85:85:3e:40:0f:ef:5b:51:b7:c9:22:3b:9c:4c:34:
e0:62:8a:08:88:3a:9e:c9:1f:00:20:dc:24:70:fd:
4d:71:64:10:47:ae:60:14:8e:76:12:0c:66:6d:51:
7d:98:7d:4b:9b:4f:05:23:68:b3:22:00:82:2f:e2:
84:fe:21:27:01:6f:28:7a:bc:df:a2:b7:3e:48:2e:
40:8a:4e:bc:a9:fd:cd:54:dd:f9:73:00:86:f4:17:
1c:49:1a:30:58:d9:d3:79:d8:c0:8d:f0:e1:fe:4d:
df:68:61:5b:30:fe:c4:45:b5:d7:e1:95:54:a1:dc:
53:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:AF:A4:FD:84:29:43:01:1D:88:8E:42:4F:B4:29:55:FF:15:A6:0F
X509v3 Authority Key Identifier:
keyid:5B:EA:2B:88:4C:70:67:F5:8F:FF:04:0A:1F:06:E0:DF:1E:80:AB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-oriExwZ_WP_wQKHwbg3x6Aqz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3334f8-dace-497f-a5a3-814e80904be4/1/Qa-k_YQpQwEdiI5CT7QpVf8Vpg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3334f8-dace-497f-a5a3-814e80904be4/1/W-oriExwZ_WP_wQKHwbg3x6Aqz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.123.192.0/20
109.101.160.0/19
Signature Algorithm: sha256WithRSAEncryption
70:c8:02:51:a7:c8:9b:b2:f5:17:09:cc:57:b1:78:2e:77:76:
2c:c1:43:c3:24:fa:5b:f4:37:ca:b0:dd:4c:db:cf:8e:4f:bf:
79:2e:ab:b1:35:76:55:98:ac:ff:a6:89:8e:96:ac:8b:63:ab:
68:1e:e1:ca:f0:b8:e9:37:80:69:01:9d:90:b4:10:c0:33:04:
a0:b5:c3:b5:28:d2:6b:c1:d2:9b:ea:ec:35:69:5f:36:c8:8c:
6b:8e:f7:4c:a1:7c:78:d3:ac:61:e8:c8:17:86:a7:4e:bf:60:
e1:bb:d6:33:d7:19:73:20:df:b4:ab:25:dc:ad:32:6e:35:8c:
1f:5b:c9:a3:00:51:56:94:a9:9e:3b:29:d3:f9:e5:2e:3e:3a:
a9:23:09:56:24:f2:3f:9a:c2:ae:d8:3d:e2:85:3b:0a:38:a1:
a9:ad:fb:f2:ba:90:d5:70:a0:03:8c:c4:73:98:24:24:0b:18:
b0:62:5a:55:27:88:ca:1a:b0:19:cd:d4:1e:14:81:26:e0:a5:
e2:e4:84:12:c0:a8:95:76:64:ae:ee:91:30:3d:d0:17:3e:0e:
8e:72:b4:b4:af:93:ae:76:d7:01:e1:4b:32:25:91:91:62:64:
20:87:fb:c0:64:c8:53:39:82:51:1f:b3:ec:82:64:71:0e:40:
8d:5f:da:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:38 2024 by rpki-client on console-fra.rpki-client.org