Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/qvJsFJCVXKlG0fGYsJ1zcF8iBn8.roa
File: qvJsFJCVXKlG0fGYsJ1zcF8iBn8.roa (raw, json)
Hash identifier: SXB82DXvfTton1PCQXdsuf2HOM80OyFSorRUtSvadbU=
Subject key identifier: AA:F2:6C:14:90:95:5C:A9:46:D1:F1:98:B0:9D:73:70:5F:22:06:7F
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 447CBF46
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/qvJsFJCVXKlG0fGYsJ1zcF8iBn8.roa
Signing time: Sat 01 Jan 2022 03:58:28 +0000
ROA not before: Sat 01 Jan 2022 03:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25113
IP address blocks: 193.251.158.0/24 maxlen: 24
193.252.152.0/23 maxlen: 24
193.252.150.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1149026118 (0x447cbf46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aaf26c1490955ca946d1f198b09d73705f22067f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:83:88:b8:c5:fc:a0:f1:d1:fd:e3:01:84:76:
71:ac:ea:c8:91:b5:17:cb:74:5f:03:86:fe:65:ab:
9c:46:b6:fa:2a:a2:aa:30:79:9c:98:a6:32:a7:c1:
7d:6b:40:c9:eb:5e:54:a1:fb:26:d2:16:86:3c:f4:
0a:c1:cd:52:c3:5a:96:5f:77:55:fc:7e:b8:12:b4:
ca:84:56:89:ff:b3:2a:ce:19:59:35:63:40:3d:c4:
1d:41:17:78:c7:05:e8:cd:c3:96:f3:79:46:0e:a6:
9f:03:df:b2:2d:6a:70:df:96:9f:67:11:0d:2b:12:
36:7e:c5:60:31:e4:ae:f1:1e:dd:7a:ed:66:8c:56:
c9:66:9a:84:c0:47:69:99:34:62:8a:18:2f:42:ee:
6d:0e:f3:42:f5:d3:01:10:33:a4:29:78:8f:98:88:
08:99:3e:bf:6c:5e:4a:8a:08:ea:58:94:a1:ed:38:
62:5f:05:df:3e:5e:eb:4e:e5:4d:c2:b9:5b:a2:a2:
3e:94:93:1f:1d:56:7b:71:8b:1a:19:4b:93:76:fe:
e6:bc:36:7a:1a:76:db:34:c6:69:c3:d0:82:ae:95:
b1:f3:23:0c:e8:32:f5:b7:81:1f:8b:d4:13:cf:64:
3d:41:83:7b:2d:d8:51:d9:3a:87:93:98:7c:f7:f7:
a9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:F2:6C:14:90:95:5C:A9:46:D1:F1:98:B0:9D:73:70:5F:22:06:7F
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/qvJsFJCVXKlG0fGYsJ1zcF8iBn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.251.158.0/24
193.252.150.0-193.252.153.255
Signature Algorithm: sha256WithRSAEncryption
7d:1e:7b:c4:ea:df:b9:a2:c3:92:30:35:07:3b:f2:ce:c7:c0:
55:0b:1d:1e:28:17:53:02:4c:bb:62:34:6f:0f:85:fe:bc:8b:
3f:1c:c1:1a:3a:1c:6f:1f:3d:b9:07:86:40:bc:5f:55:50:93:
94:63:05:f4:f2:27:b7:66:b8:ef:5c:12:82:81:89:67:03:85:
eb:f3:52:7e:a5:2b:81:01:5c:65:c2:cc:87:29:82:92:c3:56:
fc:ba:fa:7f:9f:f1:33:38:0a:c5:9a:64:71:d1:97:fe:d9:8d:
1c:3c:c2:97:1a:88:58:9c:0b:05:55:7f:90:de:02:65:75:4f:
f2:8a:6d:cb:8c:9f:74:5d:8c:bf:b6:a8:29:43:84:37:f5:41:
bf:1b:40:d5:6f:de:0f:39:03:df:d4:9f:3c:47:c5:77:b2:23:
cc:60:86:b3:5b:e4:1b:48:51:2f:f4:86:47:d5:f4:72:0d:0f:
f5:95:24:57:03:f7:6f:67:e6:6b:8f:68:a3:99:f1:48:4c:5c:
92:6b:c6:48:9d:65:fb:2a:6b:7b:d8:de:81:37:6a:7d:d6:59:
1c:4f:5e:d4:bd:be:ee:e1:e4:27:72:0a:9c:c6:39:bd:2b:99:
27:52:0d:19:51:9e:3e:a5:38:2b:ed:8b:2f:a5:46:b5:c0:aa:
43:70:52:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:52 2024 by rpki-client on console-fra.rpki-client.org