Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/065f76-0382-42a4-8607-77922b785fd2/1/QvkYudZAZQVS6ys957k2s2fk9Fs.roa
File: QvkYudZAZQVS6ys957k2s2fk9Fs.roa (raw, json)
Hash identifier: Ch9xn9w+xwfqZ8wIYGK8JITROZE8+diZWUf69KM92lo=
Subject key identifier: 42:F9:18:B9:D6:40:65:05:52:EB:2B:3D:E7:B9:36:B3:67:E4:F4:5B
Certificate issuer: /CN=d048afb72fc98326773c5ee1fb4052fe7d9f0c68
Certificate serial: AC28
Authority key identifier: D0:48:AF:B7:2F:C9:83:26:77:3C:5E:E1:FB:40:52:FE:7D:9F:0C:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Eivty_JgyZ3PF7h-0BS_n2fDGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/065f76-0382-42a4-8607-77922b785fd2/1/QvkYudZAZQVS6ys957k2s2fk9Fs.roa
Signing time: Mon 09 May 2022 14:06:59 +0000
ROA not before: Mon 09 May 2022 14:06:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1136
IP address blocks: 194.104.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44072 (0xac28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d048afb72fc98326773c5ee1fb4052fe7d9f0c68
Validity
Not Before: May 9 14:06:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42f918b9d640650552eb2b3de7b936b367e4f45b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:86:a2:40:92:14:9a:1e:fd:ef:d4:1a:60:cf:
26:6c:ed:ac:22:55:9c:2b:b2:16:a3:73:64:0d:9e:
f8:64:7c:3f:a1:e7:17:11:c4:aa:f5:5c:ef:c3:0e:
3c:5d:63:04:18:4a:2c:ee:cc:78:97:6b:b5:4a:e0:
97:33:f2:7e:e8:dd:a3:87:d0:bd:f0:fa:c5:9c:c4:
c0:0a:91:95:77:a7:ec:68:d8:68:2b:9e:9b:fe:e1:
fc:2a:fd:56:64:91:49:0e:72:fb:a9:68:3c:b2:dc:
af:5e:68:da:ef:79:c7:32:47:bf:90:07:bf:4b:67:
3c:cb:ef:0c:66:b0:0d:55:86:18:63:fc:9c:0e:4a:
ae:b1:12:34:4e:f9:3e:29:5d:3a:11:b2:23:54:22:
07:8b:32:22:c1:ec:2d:09:86:43:bc:b4:6e:08:68:
12:bc:ff:76:de:71:9d:b3:5a:60:a5:c8:67:79:62:
b6:3b:81:52:db:c0:46:91:60:79:34:04:e6:dd:dd:
6a:c5:65:61:98:72:f5:03:b7:2b:ff:69:e8:de:f5:
b6:74:56:15:4c:e6:b6:10:36:0d:5f:10:91:19:bf:
2c:33:d7:ad:23:a8:48:0d:2e:46:ee:7f:2d:11:4d:
3b:67:74:98:cf:2a:d8:e9:9b:3a:ce:cc:21:43:7e:
89:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F9:18:B9:D6:40:65:05:52:EB:2B:3D:E7:B9:36:B3:67:E4:F4:5B
X509v3 Authority Key Identifier:
keyid:D0:48:AF:B7:2F:C9:83:26:77:3C:5E:E1:FB:40:52:FE:7D:9F:0C:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Eivty_JgyZ3PF7h-0BS_n2fDGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/065f76-0382-42a4-8607-77922b785fd2/1/QvkYudZAZQVS6ys957k2s2fk9Fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/065f76-0382-42a4-8607-77922b785fd2/1/0Eivty_JgyZ3PF7h-0BS_n2fDGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.194.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:20:27:d5:9b:34:85:a2:e7:da:0d:4f:33:f1:6a:14:bf:dc:
6f:3b:4e:1f:b6:43:fe:1d:3e:74:0a:07:c8:5d:dc:00:fe:82:
07:42:99:a2:32:cc:de:37:15:b2:b2:da:d8:13:d5:25:5e:fc:
3b:57:34:85:2d:6a:c1:c0:a3:bc:eb:6a:8c:9e:60:31:6b:b0:
ad:c7:7b:49:42:9b:83:99:f9:83:bb:5f:a2:40:be:7c:d4:19:
62:27:3e:42:ab:8f:e5:f9:77:b1:b6:7e:30:cc:1d:79:5e:39:
e6:fb:c1:0f:77:79:fa:cd:1b:b4:4c:fc:0a:02:cd:b9:02:f4:
7d:2c:4d:f9:30:b9:c1:a9:24:ef:a0:64:fc:3e:b3:31:29:57:
3a:2e:9a:be:10:38:76:3a:9d:90:78:99:75:6b:e9:e4:be:fd:
9f:82:b9:c0:b8:0f:d5:ff:58:d9:73:cc:c5:22:cb:b7:f5:45:
9c:5c:3b:33:e0:7b:25:e9:75:2b:02:46:53:6b:16:bf:94:9c:
ef:70:d4:b9:10:85:21:95:c4:40:48:98:2a:1a:7f:cd:1a:08:
04:8f:d1:3c:75:bc:10:1e:55:3d:e8:77:2f:4f:36:2c:9b:a7:
b3:7c:f7:0c:42:55:14:48:54:ef:5f:68:3c:02:62:81:2d:28:
8f:76:7a:de
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAKwoMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQw
NDhhZmI3MmZjOTgzMjY3NzNjNWVlMWZiNDA1MmZlN2Q5ZjBjNjgwHhcNMjIwNTA5
MTQwNjU5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0MmY5MThiOWQ2NDA2
NTA1NTJlYjJiM2RlN2I5MzZiMzY3ZTRmNDViMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzYaiQJIUmh7979QaYM8mbO2sIlWcK7IWo3NkDZ74ZHw/oecX
EcSq9Vzvww48XWMEGEos7sx4l2u1SuCXM/J+6N2jh9C98PrFnMTACpGVd6fsaNho
K56b/uH8Kv1WZJFJDnL7qWg8styvXmja73nHMke/kAe/S2c8y+8MZrANVYYYY/yc
DkqusRI0Tvk+KV06EbIjVCIHizIiwewtCYZDvLRuCGgSvP923nGds1pgpchneWK2
O4FS28BGkWB5NATm3d1qxWVhmHL1A7cr/2no3vW2dFYVTOa2EDYNXxCRGb8sM9et
I6hIDS5G7n8tEU07Z3SYzyrY6Zs6zswhQ36JrQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFEL5GLnWQGUFUusrPee5NrNn5PRbMB8GA1UdIwQYMBaAFNBIr7cvyYMmdzxe
4ftAUv59nwxoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MEVpdnR5X0pneVozUEY3aC0wQlNfbjJmREdnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8wNi8wNjVmNzYtMDM4Mi00MmE0LTg2MDctNzc5MjJiNzg1ZmQyLzEv
UXZrWXVkWkFaUVZTNnlzOTU3azJzMmZrOUZzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8w
NjVmNzYtMDM4Mi00MmE0LTg2MDctNzc5MjJiNzg1ZmQyLzEvMEVpdnR5X0pneVoz
UEY3aC0wQlNfbjJmREdnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmjCMA0GCSqGSIb3DQEBCwUAA4IB
AQAqICfVmzSFoufaDU8z8WoUv9xvO04ftkP+HT50CgfIXdwA/oIHQpmiMszeNxWy
strYE9UlXvw7VzSFLWrBwKO862qMnmAxa7Ctx3tJQpuDmfmDu1+iQL581BliJz5C
q4/l+Xextn4wzB15Xjnm+8EPd3n6zRu0TPwKAs25AvR9LE35MLnBqSTvoGT8PrMx
KVc6Lpq+EDh2Op2QeJl1a+nkvv2fgrnAuA/V/1jZc8zFIsu39UWcXDsz4Hsl6XUr
AkZTaxa/lJzvcNS5EIUhlcRASJgqGn/NGggEj9E8dbwQHlU96HcvTzYsm6ezfPcM
QlUUSFTvX2g8AmKBLSiPdnre
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:16 2024 by rpki-client on console-ams.rpki-client.org