Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/QutXoTa6jc_FpV0RFOjEfUsIQRM.roa
File: QutXoTa6jc_FpV0RFOjEfUsIQRM.roa (raw, json)
Hash identifier: NDqA3Qie2vvRnv03USmKBS98JiN9fiEMKn6vfcONr9k=
Subject key identifier: 42:EB:57:A1:36:BA:8D:CF:C5:A5:5D:11:14:E8:C4:7D:4B:08:41:13
Certificate issuer: /CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Certificate serial: 0416E7
Authority key identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/QutXoTa6jc_FpV0RFOjEfUsIQRM.roa
Signing time: Fri 25 Mar 2022 15:38:39 +0000
ROA not before: Fri 25 Mar 2022 15:38:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 147293
IP address blocks: 104.207.34.0/24 maxlen: 24
104.207.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268007 (0x416e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a
Validity
Not Before: Mar 25 15:38:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42eb57a136ba8dcfc5a55d1114e8c47d4b084113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bf:ee:a7:91:c2:6c:6c:52:c8:ee:21:f6:8d:
7a:ae:fb:b6:06:97:b5:cb:18:3d:0d:75:60:8b:a4:
b4:47:bb:ef:f8:82:15:31:81:43:03:74:6d:8c:5e:
72:2b:cb:29:0a:e1:3b:76:a9:f5:da:64:6a:0b:7a:
85:4d:db:d5:5b:2b:fa:b8:ce:14:13:d4:94:63:8d:
ac:e5:a7:e0:86:1f:ed:d8:7d:3c:0f:e3:bb:46:d4:
a6:8c:9e:65:49:0d:6b:21:32:fc:d6:3e:ba:5a:85:
9e:3a:08:ef:08:c5:40:d8:10:1b:76:af:3c:65:27:
82:e4:c7:b1:b2:27:3c:48:fd:4b:4e:c2:19:90:ec:
05:9b:04:6c:09:39:f8:ab:4f:c6:54:46:85:3d:7d:
06:a8:b9:7f:43:28:fd:d2:56:dd:2f:5e:1b:8e:ce:
05:39:ac:27:83:0e:0f:d6:f3:ba:fd:f2:ef:06:8a:
44:26:27:31:7d:79:4e:27:78:22:d5:65:13:59:fc:
7c:71:9e:59:aa:75:e9:39:26:50:f2:b9:f8:6c:c6:
5e:12:3b:70:ff:39:39:6b:90:52:6c:19:94:e8:89:
dd:7d:8a:cc:82:f4:39:e3:7d:72:31:d7:54:aa:68:
18:d4:99:02:dc:ec:66:e2:00:11:a8:05:cd:df:aa:
28:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:EB:57:A1:36:BA:8D:CF:C5:A5:5D:11:14:E8:C4:7D:4B:08:41:13
X509v3 Authority Key Identifier:
keyid:B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/QutXoTa6jc_FpV0RFOjEfUsIQRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.207.34.0/23
Signature Algorithm: sha256WithRSAEncryption
36:be:1c:5c:06:19:54:2f:71:16:f4:43:f9:44:92:63:da:ce:
47:1a:a7:1c:6d:55:ce:fa:d4:54:ee:e6:55:73:aa:92:fb:86:
26:52:c7:58:b2:3c:d9:03:9f:d1:fe:f2:e2:e8:3c:a8:5f:b6:
f0:e2:93:64:6e:a3:90:2a:0a:7e:2d:c5:65:bb:b2:53:b2:9a:
45:c0:c9:24:47:0f:b5:62:d7:2b:d1:84:8f:49:41:09:e5:ad:
14:ae:dc:92:4e:a1:d0:36:da:0f:9e:d1:76:f7:7f:52:b2:67:
ac:53:00:b9:27:33:36:90:d1:b5:b2:fb:b6:31:da:c7:68:ca:
c5:17:a6:3f:92:9b:6a:13:8d:8a:58:50:50:44:bd:c0:dc:36:
90:ec:7b:98:69:03:03:9a:69:f2:2e:9d:70:29:47:63:f2:2d:
8c:17:b9:79:96:b8:16:9a:8e:61:30:9e:8d:eb:cb:1b:05:b0:
50:ca:9d:2e:70:7f:df:8f:e3:18:f9:84:dc:f0:15:37:da:93:
f8:18:5e:19:fc:62:2b:e3:e1:e6:41:b6:c2:e6:5d:4b:62:72:
0c:de:48:65:ee:a2:25:60:17:22:5b:26:8e:77:ba:d1:4f:2e:
6d:5e:f7:b4:76:b4:bb:7f:69:b7:0e:9c:e3:61:ef:99:46:b2:
c9:a9:cb:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:52 2023 by rpki-client on console.sobornost.net