Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/QjsBSx4fOkxVcJ9lDl-WDNMq3WE.roa
File: QjsBSx4fOkxVcJ9lDl-WDNMq3WE.roa (raw, json)
Hash identifier: zFYeb/mlrW1uoeYEfbDl/bm641JcCUFiGRJHWtrR6PU=
Subject key identifier: 42:3B:01:4B:1E:1F:3A:4C:55:70:9F:65:0E:5F:96:0C:D3:2A:DD:61
Certificate issuer: /CN=e760126dce78bc16e66c2e6e7635848ac46846af
Certificate serial: 0184E1F0D9EA2CC966CD03003F87BF3518C1
Authority key identifier: E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/QjsBSx4fOkxVcJ9lDl-WDNMq3WE.roa
Signing time: Mon 05 Dec 2022 10:59:28 +0000
ROA not before: Mon 05 Dec 2022 10:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 146.247.116.0/24 maxlen: 24
146.247.118.0/24 maxlen: 24
146.247.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:f0:d9:ea:2c:c9:66:cd:03:00:3f:87:bf:35:18:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e760126dce78bc16e66c2e6e7635848ac46846af
Validity
Not Before: Dec 5 10:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=423b014b1e1f3a4c55709f650e5f960cd32add61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:59:2b:f2:9e:a0:a7:fc:ff:62:d0:12:4c:9d:
2d:bc:c1:28:cc:d5:2a:45:78:8e:3f:2a:d2:9f:33:
93:12:ef:8d:47:12:4d:44:87:d8:c5:35:d4:9a:d5:
7e:b9:15:46:e1:a5:08:c4:00:27:ff:4f:95:50:e9:
0e:f3:fa:39:0c:02:f2:47:bb:7f:cf:f7:91:99:2a:
f8:95:5c:ad:fb:b3:44:16:11:6f:dd:9b:f4:97:b2:
44:2c:03:76:42:3e:3f:93:25:74:0e:98:57:d4:22:
29:7b:35:f6:2f:60:83:da:c6:5a:53:d6:a4:28:61:
c5:38:1b:99:36:63:46:e2:1d:ef:58:66:91:23:f8:
3f:bb:22:7d:ee:ca:fc:2c:98:89:87:47:d5:98:d4:
1d:53:df:e8:fd:c0:cb:96:70:80:80:ec:6c:36:83:
75:a2:98:07:ac:18:fe:db:e1:cd:eb:03:94:0f:41:
63:90:15:a7:90:45:e6:22:6f:af:f5:37:6e:a6:b2:
98:37:ad:fd:09:f4:fd:26:5c:74:e2:23:44:96:35:
5e:19:35:20:ac:f2:f5:bf:26:06:e2:95:90:cc:e0:
68:98:e5:b2:b2:85:82:44:6b:cc:f1:7e:f0:e9:b4:
65:91:74:a4:8d:23:65:9a:8e:07:b5:44:7c:14:b8:
e6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:3B:01:4B:1E:1F:3A:4C:55:70:9F:65:0E:5F:96:0C:D3:2A:DD:61
X509v3 Authority Key Identifier:
keyid:E7:60:12:6D:CE:78:BC:16:E6:6C:2E:6E:76:35:84:8A:C4:68:46:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/52ASbc54vBbmbC5udjWEisRoRq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/QjsBSx4fOkxVcJ9lDl-WDNMq3WE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/488f61-2f00-4639-97b8-d24f562dedd2/1/52ASbc54vBbmbC5udjWEisRoRq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.247.116.0/24
146.247.118.0/23
Signature Algorithm: sha256WithRSAEncryption
95:9b:c2:60:03:90:04:fe:15:56:cf:60:6c:0d:4e:ff:dc:11:
b7:fd:b5:ea:86:b3:9f:7e:07:a0:b1:f1:07:47:fc:7e:79:77:
2f:b2:95:98:28:ad:56:e3:69:d3:39:cc:1d:59:bd:ef:7a:3f:
65:ff:39:1b:07:fc:61:4a:f2:92:3a:c1:31:d8:2d:ab:80:76:
f3:1c:fa:fb:02:c6:b1:01:1d:30:46:90:3b:7c:b6:b8:82:e8:
f5:30:42:af:d9:cc:9c:88:90:81:6c:db:38:37:20:c7:fd:1e:
11:58:fd:cf:5c:d7:7f:7b:fa:8d:0d:cd:b4:17:8a:c7:f1:43:
39:7e:7e:76:58:73:7f:bc:bc:5e:88:7a:e7:19:bb:b6:43:41:
88:c4:3e:c5:47:6a:74:92:e1:91:7d:ff:79:5d:de:0d:46:7e:
7b:e8:d6:c2:45:f2:6e:09:08:bc:fa:44:74:f1:7b:ed:12:bd:
33:12:3e:f0:6f:8b:3e:80:ac:a2:e5:6e:07:53:7a:e1:f2:90:
8e:9d:8d:d3:55:59:f7:27:fd:f7:36:83:22:bc:8a:1a:04:70:
29:38:2b:6a:d5:83:1a:fd:bd:aa:da:04:cd:e5:5f:30:8e:70:
a7:41:08:f3:c4:7d:b1:fa:ce:5e:d1:b6:b1:cc:d2:64:9c:56:
93:8c:ca:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:34 2023 by rpki-client on console-ams.rpki-client.org