Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/038560-26d6-455d-a8f4-9bfdf2251267/1/cq6p_IYIhjzeLh6PqFZjasUp1Nk.roa
File: cq6p_IYIhjzeLh6PqFZjasUp1Nk.roa (raw, json)
Hash identifier: 2s8YYYrZQPcMWdcmBm6YoaJkDPjmCovXy6HmqcJJXxA=
Subject key identifier: 72:AE:A9:FC:86:08:86:3C:DE:2E:1E:8F:A8:56:63:6A:C5:29:D4:D9
Certificate issuer: /CN=a823fe6dad8ad4fdaee6dd6983c1e55cde8482a2
Certificate serial: 03E856CF
Authority key identifier: A8:23:FE:6D:AD:8A:D4:FD:AE:E6:DD:69:83:C1:E5:5C:DE:84:82:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qCP-ba2K1P2u5t1pg8HlXN6EgqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/038560-26d6-455d-a8f4-9bfdf2251267/1/cq6p_IYIhjzeLh6PqFZjasUp1Nk.roa
Signing time: Sat 01 Jan 2022 14:00:51 +0000
ROA not before: Sat 01 Jan 2022 14:00:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21032
IP address blocks: 193.58.88.0/22 maxlen: 24
2a0c:94c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65558223 (0x3e856cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a823fe6dad8ad4fdaee6dd6983c1e55cde8482a2
Validity
Not Before: Jan 1 14:00:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72aea9fc8608863cde2e1e8fa856636ac529d4d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:db:1e:94:77:74:68:80:0f:34:b1:e8:0f:fb:
2c:aa:d4:a7:93:7e:3f:86:d1:1f:be:b4:af:19:ab:
93:f7:ec:a5:28:ab:e7:91:d5:50:40:43:27:b0:bf:
07:ab:1a:ed:45:85:dd:a7:c3:7b:39:1b:ea:e8:0e:
dd:2c:83:53:82:51:ce:cd:b2:e7:b4:1c:d5:5d:b8:
12:60:e9:d5:9b:eb:bd:f5:d9:a6:c7:9d:ce:b8:8b:
d2:ae:c6:9e:72:a3:38:73:4c:6c:10:c3:13:8c:ed:
d5:d2:aa:92:47:63:5d:97:da:3a:b8:03:15:26:97:
cd:11:d0:7d:e5:c5:b9:88:1d:86:0a:ce:95:54:3f:
c7:13:37:14:63:9a:5f:fe:41:dd:87:40:e2:b1:c5:
e0:f5:a4:c7:d7:34:f2:49:02:b5:ac:1b:0a:19:26:
21:1e:0d:53:36:57:30:b2:7d:ec:67:1b:61:0f:41:
a3:08:14:72:56:d8:87:1d:ad:e5:6b:6f:25:ae:84:
05:92:29:4f:92:8e:72:2f:4b:85:a9:15:7e:c0:21:
2d:e5:30:ef:d5:d5:86:21:49:65:ed:71:e3:e7:2b:
c2:58:81:72:b7:6f:de:59:51:59:08:63:5b:2a:63:
12:5c:7e:b3:a5:ec:58:5f:12:54:f6:75:15:78:71:
29:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:AE:A9:FC:86:08:86:3C:DE:2E:1E:8F:A8:56:63:6A:C5:29:D4:D9
X509v3 Authority Key Identifier:
keyid:A8:23:FE:6D:AD:8A:D4:FD:AE:E6:DD:69:83:C1:E5:5C:DE:84:82:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qCP-ba2K1P2u5t1pg8HlXN6EgqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/038560-26d6-455d-a8f4-9bfdf2251267/1/cq6p_IYIhjzeLh6PqFZjasUp1Nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/038560-26d6-455d-a8f4-9bfdf2251267/1/qCP-ba2K1P2u5t1pg8HlXN6EgqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.88.0/22
IPv6:
2a0c:94c0::/29
Signature Algorithm: sha256WithRSAEncryption
66:64:81:62:66:56:54:ef:7e:9d:d5:fd:22:e9:0b:59:04:16:
61:f9:93:9b:3d:1f:6e:a2:1e:9a:44:d7:99:8a:48:d3:ed:91:
ba:8a:d6:a0:0b:08:8d:12:53:28:c5:06:1f:6f:f0:59:bd:50:
0c:cc:b4:91:cf:5b:ef:c7:60:03:18:e6:02:48:79:21:c2:e6:
d5:e3:2a:a4:98:98:74:7d:68:52:8c:b2:3d:93:ce:78:6d:96:
ce:96:24:ba:25:98:d0:77:ba:5a:eb:d4:42:88:08:6c:ef:83:
2b:f4:e0:2c:72:2c:3f:dc:51:b1:06:c9:3d:97:22:d9:87:32:
80:a3:60:92:d9:5f:22:34:23:69:63:b9:2a:69:c7:03:02:b4:
1e:f2:ee:35:f6:3d:97:f6:70:30:d4:51:18:44:ae:05:e2:67:
44:02:16:ed:8f:21:46:de:52:e2:63:c1:1c:60:e8:aa:c5:36:
ad:98:00:a2:e5:e5:2a:d3:a6:57:63:21:b2:e1:33:5b:2c:80:
74:84:9c:97:3b:38:d1:1d:a1:e4:40:59:ba:9a:6b:aa:ae:26:
53:b8:13:97:da:20:65:1f:02:ea:0c:e5:65:98:03:9c:df:0e:
fc:ef:5e:bd:5a:a1:bb:ad:01:40:77:31:bf:1f:03:70:52:ba:
95:15:17:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:41 2024 by rpki-client on console-ams.rpki-client.org