Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/Qb7dV3KitQiFcYAW-Jrgzj01wO8.roa
File: Qb7dV3KitQiFcYAW-Jrgzj01wO8.roa (raw, json)
Hash identifier: 9ajWDekAJ/Apt59DDsjtVBuNPO+wWBODU/aKhbyZUU0=
Subject key identifier: 41:BE:DD:57:72:A2:B5:08:85:71:80:16:F8:9A:E0:CE:3D:35:C0:EF
Certificate issuer: /CN=174737d8a484d12534ca40f8dd818a588c3b3de2
Certificate serial: 093CDD99
Authority key identifier: 17:47:37:D8:A4:84:D1:25:34:CA:40:F8:DD:81:8A:58:8C:3B:3D:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0c32KSE0SU0ykD43YGKWIw7PeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/Qb7dV3KitQiFcYAW-Jrgzj01wO8.roa
Signing time: Sat 01 Jan 2022 13:05:03 +0000
ROA not before: Sat 01 Jan 2022 13:05:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43201
IP address blocks: 193.228.160.0/23 maxlen: 23
193.228.160.0/22 maxlen: 22
2a0c:e1c0:2b4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154983833 (0x93cdd99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174737d8a484d12534ca40f8dd818a588c3b3de2
Validity
Not Before: Jan 1 13:05:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41bedd5772a2b50885718016f89ae0ce3d35c0ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:60:ee:85:0c:22:a8:7a:f9:0f:29:55:54:4c:
ac:a1:67:15:d7:97:2d:05:dd:ec:4f:be:5b:62:d6:
03:bb:40:e8:4b:28:45:11:42:83:06:d3:0f:5c:c8:
4b:5c:d7:14:a5:27:c0:e6:3f:1e:23:31:bf:00:8f:
3b:23:b1:ef:e6:8b:69:85:f2:7e:df:ca:5d:54:3f:
37:6f:eb:58:22:e7:f5:ed:b7:90:80:48:d5:60:88:
6c:4f:b6:74:90:ce:a4:d6:c5:ba:64:e7:22:c2:d1:
87:e0:50:ca:30:b8:14:bc:65:9c:01:32:fe:2c:70:
9f:a4:f8:77:cf:11:ae:69:e8:f0:f4:a8:b8:20:c5:
67:94:6a:0c:bb:d2:9e:4e:24:ab:53:01:f1:78:a0:
42:3d:d5:d5:c2:55:86:62:35:43:c7:b0:64:bc:24:
2b:b3:b7:07:48:5d:b4:fa:35:f4:e1:b2:a2:c3:83:
32:d3:e6:c0:a2:dc:ab:8a:33:87:31:bd:54:1c:29:
26:ac:ca:6b:53:ec:0a:91:5a:f5:65:1f:04:d4:68:
ce:3c:fc:18:a2:e7:97:ec:cc:83:17:fc:e0:a2:a5:
38:f2:46:3f:eb:f8:04:bf:5e:8f:69:10:1d:1d:65:
48:3f:ca:fc:80:79:56:97:a4:a0:5f:07:d9:dc:06:
b9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:BE:DD:57:72:A2:B5:08:85:71:80:16:F8:9A:E0:CE:3D:35:C0:EF
X509v3 Authority Key Identifier:
keyid:17:47:37:D8:A4:84:D1:25:34:CA:40:F8:DD:81:8A:58:8C:3B:3D:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0c32KSE0SU0ykD43YGKWIw7PeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/Qb7dV3KitQiFcYAW-Jrgzj01wO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/F0c32KSE0SU0ykD43YGKWIw7PeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.160.0/22
IPv6:
2a0c:e1c0:2b4::/48
Signature Algorithm: sha256WithRSAEncryption
ab:72:ae:5b:3f:a0:e0:19:d3:68:97:41:d2:5d:03:2f:af:e1:
df:19:e6:c7:0a:22:13:38:39:d1:1e:ec:e1:6d:22:55:1a:35:
70:43:bb:cf:6a:d5:75:72:a6:78:c9:1b:62:c5:07:ec:8a:52:
4b:e0:fe:81:cb:91:0d:f6:9d:02:7e:35:dd:18:23:cb:fc:75:
3e:35:58:cd:c8:c8:04:4d:11:e6:a6:a9:38:17:aa:d0:60:56:
cc:86:b6:05:43:d9:32:8d:8d:fa:bc:99:b6:3a:1a:22:b8:59:
a2:4b:a5:f6:9e:3d:62:de:f0:a6:e8:44:6b:60:93:06:4a:a2:
bb:4f:f9:72:d1:1a:62:c7:00:19:18:21:a0:60:ac:87:d9:d0:
55:23:46:b5:87:04:8c:67:32:26:e7:c5:12:db:83:10:13:fc:
a9:e4:a9:2d:bf:0d:b4:a0:a9:08:4e:6e:8f:ef:38:79:c3:f1:
18:2d:25:e2:13:67:ed:16:86:14:e5:8b:03:78:ee:b7:94:a9:
31:01:cf:1f:00:c8:8c:dd:73:01:d0:05:96:8b:f1:fb:b8:c9:
6f:d3:7e:e1:56:df:43:ff:18:72:1a:ba:93:17:b0:fb:94:0b:
f4:ff:83:58:87:31:4f:b1:3f:10:16:6b:21:34:73:e2:4b:04:
61:00:31:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:22 2024 by rpki-client on console-fra.rpki-client.org