Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/95f682-eade-4c18-ac52-c8a9e372c229/1/Q2_oMXN5qrm14aFEfmG0bMAcVsg.roa
File: Q2_oMXN5qrm14aFEfmG0bMAcVsg.roa (raw, json)
Hash identifier: CCIyPNzRlpfNtrVx8nqm0HK1GvCPClCAbJWNEwXOluA=
Subject key identifier: 43:6F:E8:31:73:79:AA:B9:B5:E1:A1:44:7E:61:B4:6C:C0:1C:56:C8
Certificate issuer: /CN=6d3756d540e5c17f194c45ca4738665d51accb6c
Certificate serial: 01821596F14F7F9516E8BC6F30716B40EB31
Authority key identifier: 6D:37:56:D5:40:E5:C1:7F:19:4C:45:CA:47:38:66:5D:51:AC:CB:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bTdW1UDlwX8ZTEXKRzhmXVGsy2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/95f682-eade-4c18-ac52-c8a9e372c229/1/Q2_oMXN5qrm14aFEfmG0bMAcVsg.roa
Signing time: Tue 19 Jul 2022 08:33:09 +0000
ROA not before: Tue 19 Jul 2022 08:33:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56651
IP address blocks: 193.26.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:15:96:f1:4f:7f:95:16:e8:bc:6f:30:71:6b:40:eb:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d3756d540e5c17f194c45ca4738665d51accb6c
Validity
Not Before: Jul 19 08:33:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=436fe8317379aab9b5e1a1447e61b46cc01c56c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:58:a6:11:e2:08:ef:55:f2:b4:e0:09:f7:ec:
1a:53:b8:bb:75:60:99:7c:fa:a2:e1:5d:72:fb:e0:
4c:96:0f:bc:66:df:25:39:7d:4c:18:94:69:90:b0:
c4:1f:dd:e1:7b:f7:28:32:50:8b:b9:b7:e0:04:75:
33:aa:2d:bd:7a:60:a3:cf:3d:20:c4:74:03:9b:5a:
63:3d:1c:9d:12:3c:b1:c8:14:b5:08:e8:68:83:0b:
0a:e2:67:52:a2:06:f7:5a:63:f5:95:d2:f9:30:f7:
7b:4c:a2:d4:1f:0b:d9:c1:fe:0f:21:1c:18:dd:04:
2d:fa:cd:d2:d2:a4:53:52:e0:5e:9a:f6:7e:cf:8e:
f8:fb:88:7a:c7:2c:9c:4e:03:3f:ba:84:52:02:47:
5d:8d:dd:61:54:d8:d2:8c:cd:8d:fd:91:88:e9:fd:
5e:fb:68:db:cc:7a:ec:db:fd:4d:19:cf:77:f8:ad:
e1:fe:c1:34:24:5c:99:d8:a1:6b:3c:f8:a0:56:ca:
2b:2c:80:bc:d8:e8:b1:66:42:d5:21:3d:6d:48:63:
5d:bf:45:63:31:89:7a:e9:9a:05:b3:19:80:70:61:
ff:2d:ab:27:39:4f:21:4b:4f:af:1b:3a:8d:85:24:
d0:ff:7a:62:73:ab:5a:fc:fc:82:bd:bb:fa:28:f4:
4d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:6F:E8:31:73:79:AA:B9:B5:E1:A1:44:7E:61:B4:6C:C0:1C:56:C8
X509v3 Authority Key Identifier:
keyid:6D:37:56:D5:40:E5:C1:7F:19:4C:45:CA:47:38:66:5D:51:AC:CB:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bTdW1UDlwX8ZTEXKRzhmXVGsy2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/95f682-eade-4c18-ac52-c8a9e372c229/1/Q2_oMXN5qrm14aFEfmG0bMAcVsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/95f682-eade-4c18-ac52-c8a9e372c229/1/bTdW1UDlwX8ZTEXKRzhmXVGsy2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.220.0/24
Signature Algorithm: sha256WithRSAEncryption
29:18:c1:6f:08:cd:2f:00:50:93:2b:f8:13:ab:09:f6:2c:06:
84:03:fa:19:37:fe:1c:08:50:87:eb:ff:3b:f6:07:96:54:95:
3f:a1:9c:34:a3:18:41:71:f0:72:a4:b8:cc:09:b3:a8:29:13:
ea:2a:2d:8a:37:6a:39:8b:45:5c:da:f0:c6:24:08:77:b7:52:
d3:d5:3c:b1:fb:7e:4e:52:62:a7:1b:34:46:27:09:79:ce:e7:
a3:b9:1b:c3:bc:9e:49:3a:41:8c:3c:9c:78:f0:02:76:c5:ed:
d0:79:f7:aa:cf:75:2c:c6:21:a2:b7:53:bb:4c:43:7a:77:f0:
c1:fd:28:4f:b2:9d:8b:15:5b:6a:fd:b3:b4:f0:8e:b6:ac:7d:
d0:8c:07:4b:8f:fc:a9:c2:eb:4e:17:0e:f9:fa:df:89:9f:a8:
7e:1a:12:ed:00:00:df:d0:44:96:16:95:dc:a5:26:66:56:50:
2a:42:6c:1a:4a:b9:4b:a8:55:b1:ef:9f:e4:be:26:1d:af:bd:
62:bf:75:7d:49:a5:12:b3:ed:d6:8e:42:f8:6c:fc:fb:88:b3:
b6:66:cf:ca:3d:9b:15:76:e4:cd:f5:50:55:e2:82:8e:91:70:
47:e3:30:4e:1a:21:6c:92:76:8b:f7:5d:5e:99:83:6e:fa:4e:
f8:7b:ae:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:26 2024 by rpki-client on console-ams.rpki-client.org