Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/ab8545-f8b7-4c5e-98ff-25035c1d14dc/1/SQCNVaDNL2D44lL-p-RL9AD0YNs.roa
File: SQCNVaDNL2D44lL-p-RL9AD0YNs.roa (raw, json)
Hash identifier: U61UGE5qK4Cc2d/+56wkQpI+IhbMmz/WjTP7drwGRmo=
Subject key identifier: 49:00:8D:55:A0:CD:2F:60:F8:E2:52:FE:A7:E4:4B:F4:00:F4:60:DB
Certificate issuer: /CN=c52aa9ea84db41ad9f045049d8e146f975e42fcb
Certificate serial: 09341B06
Authority key identifier: C5:2A:A9:EA:84:DB:41:AD:9F:04:50:49:D8:E1:46:F9:75:E4:2F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xSqp6oTbQa2fBFBJ2OFG-XXkL8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/ab8545-f8b7-4c5e-98ff-25035c1d14dc/1/SQCNVaDNL2D44lL-p-RL9AD0YNs.roa
Signing time: Sat 01 Jan 2022 05:58:38 +0000
ROA not before: Sat 01 Jan 2022 05:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49101
IP address blocks: 82.144.128.0/19 maxlen: 24
2a02:d00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154409734 (0x9341b06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c52aa9ea84db41ad9f045049d8e146f975e42fcb
Validity
Not Before: Jan 1 05:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=49008d55a0cd2f60f8e252fea7e44bf400f460db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6a:ac:91:37:65:cc:c7:f1:08:d2:cc:48:66:
14:16:ef:f7:2c:70:8b:a1:ef:9a:ef:1a:1f:60:4f:
d8:ef:2f:2a:3e:a1:6c:6f:22:29:69:cf:a7:1a:9e:
0a:ee:10:7f:8c:83:d0:28:16:46:c3:91:9b:45:24:
1c:ec:07:8d:74:f3:90:17:a3:d8:65:d8:ce:8d:bc:
8c:78:37:97:54:49:bb:31:05:b6:49:bc:94:e7:f6:
7d:ea:00:d9:c4:7b:f0:0c:31:c0:74:d1:dd:dc:54:
9a:13:3a:d0:72:07:de:6c:31:2c:0f:94:4e:85:2f:
72:16:38:c7:86:d7:60:4a:d7:a9:3e:bf:a5:7a:d1:
43:e5:51:ad:65:1b:14:7b:3b:4b:7b:eb:6c:65:d2:
ca:cc:d1:47:23:c6:b1:30:d1:02:d3:77:9c:79:37:
b7:8b:b1:87:f2:e9:66:99:50:84:18:7e:98:9f:ad:
1d:89:39:4d:e7:52:5c:ce:e7:a3:59:8a:31:5c:82:
6d:bf:ef:0e:95:b5:ca:09:09:60:c3:12:89:ee:0b:
b5:06:77:27:76:49:b7:c7:a8:c6:08:7e:6c:6b:c4:
50:2d:72:0c:da:94:ca:90:3d:51:5c:39:b0:bb:51:
e1:48:a7:7a:ce:0d:11:f0:19:e6:ce:cc:b0:f4:f0:
8a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:00:8D:55:A0:CD:2F:60:F8:E2:52:FE:A7:E4:4B:F4:00:F4:60:DB
X509v3 Authority Key Identifier:
keyid:C5:2A:A9:EA:84:DB:41:AD:9F:04:50:49:D8:E1:46:F9:75:E4:2F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xSqp6oTbQa2fBFBJ2OFG-XXkL8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/ab8545-f8b7-4c5e-98ff-25035c1d14dc/1/SQCNVaDNL2D44lL-p-RL9AD0YNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/ab8545-f8b7-4c5e-98ff-25035c1d14dc/1/xSqp6oTbQa2fBFBJ2OFG-XXkL8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.144.128.0/19
IPv6:
2a02:d00::/32
Signature Algorithm: sha256WithRSAEncryption
02:8d:34:1f:9c:e9:f1:72:a0:30:7e:9b:4c:cf:60:3a:48:61:
d3:e6:db:cc:5f:16:a0:24:13:46:21:90:a4:c9:ea:a2:16:b5:
19:dd:26:39:9a:5a:bb:ca:6d:0c:3a:ea:e6:2d:f6:75:9a:c4:
64:b8:f8:b5:aa:48:83:29:0b:80:b8:48:9f:55:e1:e4:78:29:
ea:01:65:9d:31:1e:8a:4c:ab:c4:fa:0e:38:34:7a:b8:d4:6f:
b0:c8:fa:b0:c0:23:24:b3:e6:b7:09:b9:0c:14:4f:f4:a2:e2:
0f:7f:f9:eb:76:5b:08:e5:b0:13:da:f9:92:cd:27:1f:2c:ea:
e7:82:21:1f:57:34:27:f0:61:73:f2:dd:0a:91:82:ab:41:32:
81:60:e3:d2:f7:07:da:47:2f:6f:8c:77:32:7a:82:93:b8:06:
26:b1:62:00:f2:ea:96:d8:63:7a:16:bb:89:82:42:a1:d6:5d:
58:8f:ff:9c:a5:70:75:d4:73:a9:b9:6b:77:b4:c0:06:e7:45:
3c:c2:30:20:78:4e:cc:7c:44:2b:38:96:9d:1c:34:4d:88:92:
b0:2d:92:26:cd:d7:b2:82:7a:5e:61:dc:73:f3:4c:9e:19:a1:
66:23:e6:0d:7e:2c:7d:2e:48:f1:71:1a:47:fb:58:81:a9:10:
f2:35:4b:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:57 2023 by rpki-client on console.sobornost.net