Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/7ac0f6-2af2-4a41-b370-9350413e038b/1/QI3x1moudxHjIdMzMHBkWJyF4RE.roa
File: QI3x1moudxHjIdMzMHBkWJyF4RE.roa (raw, json)
Hash identifier: DG4Aq9vTrVelK3infwOg1bVPpJs7mzOGQHEpOyunYJc=
Subject key identifier: 40:8D:F1:D6:6A:2E:77:11:E3:21:D3:33:30:70:64:58:9C:85:E1:11
Certificate issuer: /CN=e80a19bb3522df73fee1fe22a8955429931c9756
Certificate serial: 0181F4650EA107E61D3186D3276EF211A392
Authority key identifier: E8:0A:19:BB:35:22:DF:73:FE:E1:FE:22:A8:95:54:29:93:1C:97:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AoZuzUi33P-4f4iqJVUKZMcl1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/7ac0f6-2af2-4a41-b370-9350413e038b/1/QI3x1moudxHjIdMzMHBkWJyF4RE.roa
Signing time: Tue 12 Jul 2022 21:51:12 +0000
ROA not before: Tue 12 Jul 2022 21:51:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 193.201.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f4:65:0e:a1:07:e6:1d:31:86:d3:27:6e:f2:11:a3:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e80a19bb3522df73fee1fe22a8955429931c9756
Validity
Not Before: Jul 12 21:51:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=408df1d66a2e7711e321d333307064589c85e111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:85:c1:73:ba:7d:b7:45:c0:8e:0c:16:c5:83:
24:e9:b0:22:e2:e8:3b:ad:5b:09:fc:d5:b4:27:6a:
80:c0:64:24:bd:c0:e7:1d:aa:48:86:c6:c6:33:46:
ce:3b:15:80:11:ff:f2:6b:cb:c1:49:b4:25:70:43:
97:52:62:1b:c2:5d:47:7f:75:43:84:9c:dc:db:84:
1f:f3:18:1c:17:ca:58:72:1c:d8:e7:60:a6:71:f2:
26:1f:e5:b8:ab:5e:ed:6c:e0:0f:e2:24:59:e1:ad:
6e:bb:2a:b8:2f:54:b6:6a:df:f1:62:2c:3a:b2:55:
74:4e:06:ca:37:99:ea:bb:bc:ec:33:36:ce:15:d1:
ae:59:10:aa:93:c1:3a:5a:36:37:62:dd:60:ef:e9:
eb:55:dc:98:41:20:c5:41:62:6d:49:ce:ee:df:ac:
3c:58:6d:dd:2b:f3:aa:93:20:44:f5:5b:67:8e:f2:
09:d3:2e:68:5c:22:c0:96:32:f3:8b:f2:b9:77:ce:
78:e8:78:8d:9c:2d:ad:96:ce:52:a9:05:81:61:ab:
17:16:62:8f:29:98:35:09:09:16:92:e0:cf:02:35:
27:9b:b3:fe:38:d1:ba:3d:8e:89:96:9f:d5:9c:65:
26:29:72:4a:b4:1b:a1:38:4b:2e:d3:95:fa:12:27:
ee:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:8D:F1:D6:6A:2E:77:11:E3:21:D3:33:30:70:64:58:9C:85:E1:11
X509v3 Authority Key Identifier:
keyid:E8:0A:19:BB:35:22:DF:73:FE:E1:FE:22:A8:95:54:29:93:1C:97:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AoZuzUi33P-4f4iqJVUKZMcl1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/7ac0f6-2af2-4a41-b370-9350413e038b/1/QI3x1moudxHjIdMzMHBkWJyF4RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/7ac0f6-2af2-4a41-b370-9350413e038b/1/6AoZuzUi33P-4f4iqJVUKZMcl1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.10.0/24
Signature Algorithm: sha256WithRSAEncryption
33:70:65:32:87:14:d1:5b:39:2d:85:b3:a3:94:21:28:a3:ad:
d9:48:14:77:2e:8e:5f:07:52:d7:60:97:50:4a:81:14:05:d3:
f4:85:c6:e2:9c:fe:54:fd:17:ef:4c:ad:58:53:a0:65:f2:28:
69:7d:de:be:03:e1:fa:e8:ab:be:78:25:73:dc:4f:39:d1:49:
48:0b:43:4e:e6:29:32:ae:68:51:b0:fc:0b:2b:85:5c:9e:ac:
e8:05:d3:8d:0e:8c:4d:18:2e:fa:7a:09:ab:76:7d:1d:5e:39:
a6:8e:7d:56:36:33:ed:74:4a:76:67:d1:33:7c:e3:ab:01:9f:
bf:89:a3:c6:30:9e:46:0f:86:e6:9f:29:6c:52:7b:e0:a2:68:
f6:8a:c1:c6:13:04:37:21:8b:a6:75:03:7b:31:8c:53:2f:81:
b7:d1:e9:43:cf:60:ef:45:09:3b:6d:b4:1c:9a:e2:ea:9a:e7:
bc:d7:6c:93:78:81:90:59:6a:c6:39:66:2f:39:91:3c:e5:2b:
ea:22:25:83:1c:01:ec:bf:41:b9:2c:0a:8a:ad:86:03:ac:a2:
24:67:2c:08:63:e7:16:91:10:41:b8:ef:c0:2c:0a:c6:fa:d0:
af:70:09:e7:4a:85:9d:4f:80:1d:82:ef:56:a5:ea:e7:b7:0e:
3b:f4:04:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:31 2023 by rpki-client on console-fra.rpki-client.org