Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/QOmoC67Q7mDatuWB2h2G0vj_APw.roa
File: QOmoC67Q7mDatuWB2h2G0vj_APw.roa (raw, json)
Hash identifier: 5f346jtgsOejfesnitt4wyCmfZ3oYODkC7osEcCMvdY=
Subject key identifier: 40:E9:A8:0B:AE:D0:EE:60:DA:B6:E5:81:DA:1D:86:D2:F8:FF:00:FC
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 03E824D5
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/QOmoC67Q7mDatuWB2h2G0vj_APw.roa
Signing time: Sat 01 Jan 2022 03:55:56 +0000
ROA not before: Sat 01 Jan 2022 03:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61986
IP address blocks: 193.164.94.0/24 maxlen: 24
193.164.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65545429 (0x3e824d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: Jan 1 03:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40e9a80baed0ee60dab6e581da1d86d2f8ff00fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6e:1f:77:8b:2e:91:98:25:04:05:e6:e4:4c:
c6:89:ff:e3:c2:66:c7:30:94:73:be:dc:4b:5c:b1:
f2:f7:66:5a:e8:8a:81:ef:a6:42:a8:5a:d1:a4:72:
b9:f6:c3:8e:22:ea:56:6e:52:14:30:37:93:fc:23:
79:24:46:dd:fb:8b:ba:97:eb:24:41:ef:14:fc:38:
29:35:a7:07:39:8e:68:a3:33:5d:49:76:34:95:27:
9f:ce:2d:e0:c9:34:1d:5c:8e:12:25:53:cd:7a:9f:
7b:90:cc:bd:61:83:aa:4d:c5:7a:f7:86:c8:b8:80:
43:46:56:51:e2:ac:2c:05:bb:e2:36:b7:ff:21:ab:
2b:5f:3b:05:16:ce:74:5a:b7:db:72:c6:fc:65:f8:
a3:44:65:00:b5:1d:17:f6:2f:4d:59:6a:f7:79:d9:
4c:b9:41:e3:2e:10:0f:58:0a:f3:02:57:b9:71:91:
23:d0:7c:47:58:b0:3a:bc:59:10:a5:a9:f4:a2:79:
61:46:6d:a9:07:5d:ca:5f:5c:45:14:6e:db:8a:0b:
02:eb:68:1a:df:78:f8:6a:f3:18:97:22:ac:88:da:
3b:79:03:bc:90:a6:80:f5:18:31:71:bc:de:b0:0b:
33:57:6e:0b:4d:bf:45:7a:48:44:82:da:ff:a1:5b:
28:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E9:A8:0B:AE:D0:EE:60:DA:B6:E5:81:DA:1D:86:D2:F8:FF:00:FC
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/QOmoC67Q7mDatuWB2h2G0vj_APw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.94.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:a2:fc:21:09:51:86:8f:08:4b:ea:4e:ad:22:eb:e5:b0:5d:
81:40:dc:f2:d8:e2:74:21:65:c4:90:03:df:bf:25:3b:d6:63:
86:be:2e:37:72:6b:cc:4e:c0:c5:4a:99:68:eb:c8:8b:73:ff:
e7:0f:f9:88:ae:44:25:da:1d:d0:67:16:1e:30:8b:14:0b:72:
e1:67:18:7c:2b:14:aa:94:ad:74:94:11:36:b4:8e:ab:8b:36:
56:99:48:11:e5:d1:ac:53:df:91:04:df:be:22:c9:8b:c2:dd:
fa:f3:8e:f4:0a:c9:70:c6:e1:77:77:e3:32:50:a1:19:8c:bb:
eb:ad:95:48:e0:b4:df:6e:b6:b1:77:63:b3:aa:6b:0b:56:53:
ad:01:08:f8:9e:e8:be:b9:0a:9d:fd:3c:b4:41:42:5f:fe:b8:
53:f4:2d:d7:17:cf:1b:a5:3b:62:f7:57:3a:c6:bc:95:41:fb:
b7:d0:09:c2:3d:ca:c1:04:c3:07:9c:91:8d:fd:a6:b8:8f:8f:
1b:b6:cb:fc:fe:7b:8c:4d:fa:6e:8d:85:ed:01:b5:6a:10:5d:
02:e1:01:99:70:4b:13:52:7b:15:fc:73:95:9a:9c:70:af:ca:
66:fc:8c:c0:e0:77:ed:19:10:a6:74:88:ef:29:9b:9a:cb:29:
4b:ff:05:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org