Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/1d0171-3307-4531-a73a-146a69b6d8e4/1/QMuAxw91S_Kvsy6CH8WOzBh74aM.roa
File: QMuAxw91S_Kvsy6CH8WOzBh74aM.roa (raw, json)
Hash identifier: hx+nTN6v+TdpxOKgDun5qXhx77Sl1N93o4lh3OCq6tU=
Subject key identifier: 40:CB:80:C7:0F:75:4B:F2:AF:B3:2E:82:1F:C5:8E:CC:18:7B:E1:A3
Certificate issuer: /CN=b5a263d18eb5c540f7478825bb72efac6f28f82b
Certificate serial: 058CE19F
Authority key identifier: B5:A2:63:D1:8E:B5:C5:40:F7:47:88:25:BB:72:EF:AC:6F:28:F8:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/taJj0Y61xUD3R4glu3LvrG8o-Cs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/1d0171-3307-4531-a73a-146a69b6d8e4/1/QMuAxw91S_Kvsy6CH8WOzBh74aM.roa
Signing time: Sat 01 Jan 2022 11:04:40 +0000
ROA not before: Sat 01 Jan 2022 11:04:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12779
IP address blocks: 195.74.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93118879 (0x58ce19f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5a263d18eb5c540f7478825bb72efac6f28f82b
Validity
Not Before: Jan 1 11:04:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40cb80c70f754bf2afb32e821fc58ecc187be1a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:cf:2b:6e:cf:cf:c9:dd:0e:31:c9:c5:28:e4:
d8:60:fc:03:2a:9f:81:a0:d6:8a:16:f9:11:84:86:
7e:df:ea:3a:d3:66:af:93:e4:f4:1a:dc:d2:1c:2d:
1a:9b:87:e9:ec:d7:bd:f0:dd:9b:63:e0:14:91:3b:
5c:fe:80:27:bd:92:90:79:e5:a0:2a:cb:70:4a:fd:
ba:6f:07:eb:f3:6c:23:fd:88:54:6b:73:f2:20:5a:
5d:6d:fb:ca:20:d2:0f:82:80:69:76:33:90:26:b2:
b2:3d:a8:f6:0c:6e:9d:b3:f6:62:ad:73:60:14:e5:
88:ef:29:9c:19:07:76:68:d2:9e:6d:ee:63:e1:7a:
e6:83:91:7d:2c:19:65:74:da:b3:ea:90:81:d0:fa:
2b:25:1c:89:f8:a6:57:f9:1b:2e:06:f7:b1:d8:91:
6f:52:65:e1:61:93:41:2a:0e:f5:c3:01:6c:e8:c6:
54:5c:30:6b:b7:aa:40:6e:ab:db:f7:2d:f3:7e:02:
ea:18:2e:93:c5:67:74:1a:19:8f:19:73:78:04:01:
8e:ab:f8:e6:21:da:23:e7:13:19:ae:c1:cb:2b:fc:
fb:ec:86:6f:70:e1:90:02:2f:32:69:9b:24:f5:e6:
92:94:45:bb:e8:7a:66:cf:36:86:14:c3:3f:91:b2:
3f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:CB:80:C7:0F:75:4B:F2:AF:B3:2E:82:1F:C5:8E:CC:18:7B:E1:A3
X509v3 Authority Key Identifier:
keyid:B5:A2:63:D1:8E:B5:C5:40:F7:47:88:25:BB:72:EF:AC:6F:28:F8:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/taJj0Y61xUD3R4glu3LvrG8o-Cs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1d0171-3307-4531-a73a-146a69b6d8e4/1/QMuAxw91S_Kvsy6CH8WOzBh74aM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1d0171-3307-4531-a73a-146a69b6d8e4/1/taJj0Y61xUD3R4glu3LvrG8o-Cs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.74.81.0/24
Signature Algorithm: sha256WithRSAEncryption
16:a6:96:5e:5e:c0:cd:31:42:60:3c:78:7d:00:e6:77:6a:03:
37:60:6a:61:0d:4a:9d:d6:80:96:a3:22:4d:9f:03:b4:11:f2:
be:7f:1d:c7:39:4f:69:f5:97:f4:64:13:b6:fa:d8:4d:0c:82:
50:38:de:5d:0f:dd:d8:e4:a1:e2:61:2b:f6:df:26:5a:6f:94:
b2:a9:2e:c9:96:be:76:f8:80:57:0e:52:70:73:a7:2d:04:d9:
c8:b9:6f:8c:c7:4d:40:9d:46:11:6c:75:61:56:ea:ae:bb:27:
43:e0:98:73:97:ca:56:af:11:02:8d:b2:19:b4:60:38:38:76:
85:ce:24:39:53:59:25:ad:ab:48:54:23:bb:1b:36:bb:2f:62:
13:22:f6:de:cd:de:f4:bf:2b:44:da:c2:0b:7e:4d:31:5f:73:
6b:5f:8b:17:22:ea:79:95:b4:00:01:48:6b:ac:3d:9b:e5:c4:
9b:b3:31:df:87:09:4d:97:a6:56:11:13:5c:3a:a7:9a:84:f5:
29:1e:74:92:f3:84:54:9a:0f:45:a5:6c:4b:cb:af:ef:40:f3:
89:55:3a:ae:91:90:6c:7c:13:b3:94:10:c1:56:70:d3:1f:69:
4b:b4:59:ec:a6:ad:d1:42:0c:90:cf:f9:05:f9:a0:5e:b3:bd:
9b:f2:aa:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:52 2024 by rpki-client on console-fra.rpki-client.org