Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/qK2Ik3LWoZB0V-_-AAzTOQptcBI.roa
File: qK2Ik3LWoZB0V-_-AAzTOQptcBI.roa (raw, json)
Hash identifier: +LOAJzj2+nYOlqC7q6qhd4Q59Sft3BcFsqc5A545McI=
Subject key identifier: A8:AD:88:93:72:D6:A1:90:74:57:EF:FE:00:0C:D3:39:0A:6D:70:12
Certificate issuer: /CN=8d8740799c91c2630a8092178db824f3a889a75f
Certificate serial: 17A8DFC8
Authority key identifier: 8D:87:40:79:9C:91:C2:63:0A:80:92:17:8D:B8:24:F3:A8:89:A7:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYdAeZyRwmMKgJIXjbgk86iJp18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/qK2Ik3LWoZB0V-_-AAzTOQptcBI.roa
Signing time: Sat 01 Jan 2022 15:55:50 +0000
ROA not before: Sat 01 Jan 2022 15:55:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44453
IP address blocks: 144.208.0.0/19 maxlen: 32
144.208.128.0/22 maxlen: 32
144.208.132.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396943304 (0x17a8dfc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d8740799c91c2630a8092178db824f3a889a75f
Validity
Not Before: Jan 1 15:55:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8ad889372d6a1907457effe000cd3390a6d7012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a6:0d:44:a4:a9:9a:53:47:ba:08:fd:1b:13:
89:44:e8:fb:27:8d:46:8c:3d:54:40:e7:c7:ba:32:
91:0d:1d:aa:2b:61:0a:52:f8:ae:96:f3:e5:0f:1f:
63:b6:a8:ce:ed:cf:64:48:3c:86:16:f4:3b:5d:d1:
11:ae:08:7e:75:29:78:87:ee:68:63:6d:85:78:91:
4a:3a:d4:41:7c:64:23:ca:6a:4a:3c:4a:d9:74:4f:
67:36:24:3a:24:d8:4c:2a:4a:f2:02:2e:27:65:97:
a5:0b:81:1a:f3:6c:3d:a4:39:15:ae:22:56:fa:92:
9a:06:7c:d5:7d:af:a7:6a:bd:2b:3e:fd:2e:a8:1c:
32:7b:03:d5:ad:76:fb:20:6b:4f:4d:24:c3:64:e8:
f1:06:70:cd:fb:1c:98:35:5a:8a:2e:82:92:8c:a4:
0c:31:ff:61:b7:ae:85:12:4b:da:fa:97:41:d1:bf:
8a:33:b7:2b:45:44:0e:9d:15:38:1f:40:83:ec:7f:
c8:79:d9:60:ec:f9:49:f0:c9:65:8d:fa:df:1c:bc:
ee:3f:b6:6e:7e:08:79:2b:ce:99:ab:e6:da:30:3e:
5d:b1:ea:fd:38:1b:a7:b3:47:60:b8:2a:4e:5d:2c:
e3:dd:5a:89:99:ea:f6:bc:22:d6:07:b5:eb:f1:4d:
93:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:AD:88:93:72:D6:A1:90:74:57:EF:FE:00:0C:D3:39:0A:6D:70:12
X509v3 Authority Key Identifier:
keyid:8D:87:40:79:9C:91:C2:63:0A:80:92:17:8D:B8:24:F3:A8:89:A7:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYdAeZyRwmMKgJIXjbgk86iJp18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/qK2Ik3LWoZB0V-_-AAzTOQptcBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/5b7c94-a60d-4399-9829-52b8166829d7/1/jYdAeZyRwmMKgJIXjbgk86iJp18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.208.0.0/19
144.208.128.0/21
Signature Algorithm: sha256WithRSAEncryption
6e:6f:50:bc:c6:3a:51:c4:f4:fd:45:45:82:6b:23:59:98:58:
6b:b7:75:d0:d8:3d:61:89:ac:65:91:93:c5:a5:5d:b4:35:b2:
d7:ba:a8:5d:77:e5:e3:d9:37:16:e7:e6:ea:21:1f:a6:67:74:
e8:61:c8:ee:5c:d3:50:34:93:ab:26:fa:85:c1:05:fc:44:e8:
61:07:44:96:9d:6b:e6:16:76:de:67:7f:20:05:1f:d8:df:66:
5c:7d:c3:a3:2e:ea:d4:4d:ed:ba:b9:9c:29:b2:b2:cd:a0:35:
86:78:f1:bd:a2:4c:b9:40:ec:64:9b:30:0a:ec:f2:ba:67:7f:
68:73:8d:b5:70:24:d2:ee:1e:bf:96:e6:0b:be:74:18:0a:4a:
b5:90:2d:3a:b1:09:4f:7c:fd:2f:ff:d6:6f:30:56:e7:1b:b5:
5b:cd:a6:71:e0:4f:48:d4:b4:f5:f0:12:15:f2:7e:bf:87:c0:
5b:7e:4d:28:69:b7:1d:ec:bc:db:da:36:a2:be:3f:a7:74:e3:
26:bd:6e:25:1e:5d:e3:48:61:a3:0e:9c:91:61:d7:0e:90:a3:
b9:c1:56:de:fd:82:1d:5f:57:08:5b:06:8e:4c:58:86:1b:dd:
dc:28:9a:78:32:21:0f:ec:bf:2d:bb:d9:b1:25:cc:07:a8:48:
f1:6d:d3:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:31 2023 by rpki-client on console.sobornost.net