Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/qRqzMVtXaO0Mk2QrM0h6A5YATs8.roa
File: qRqzMVtXaO0Mk2QrM0h6A5YATs8.roa (raw, json)
Hash identifier: HyLWVgauF3cRlfm52sV8dwd6P+7YzXrdpvm5WC3w6NI=
Subject key identifier: A9:1A:B3:31:5B:57:68:ED:0C:93:64:2B:33:48:7A:03:96:00:4E:CF
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 0C3DC41B
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/qRqzMVtXaO0Mk2QrM0h6A5YATs8.roa
Signing time: Tue 01 Feb 2022 10:42:42 +0000
ROA not before: Tue 01 Feb 2022 10:42:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34927
IP address blocks: 193.148.251.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2800::/40 maxlen: 40
2a0c:9a40:2100::/40 maxlen: 40
2a0c:9a40:2500::/40 maxlen: 40
2a0c:9a40:2600::/40 maxlen: 40
2a0c:9a40:2200::/40 maxlen: 40
2a0c:9a40:2700::/40 maxlen: 40
2a0c:9a40:2400::/40 maxlen: 40
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
2a0c:9a40:1080::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 205374491 (0xc3dc41b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Feb 1 10:42:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a91ab3315b5768ed0c93642b33487a0396004ecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:74:0f:b4:d5:5c:bf:02:43:a7:10:83:8a:7d:
af:29:ad:1c:98:03:54:ad:44:d1:16:ed:09:5d:fe:
e9:97:46:4c:3e:65:27:11:76:88:ca:cd:57:db:5f:
bc:9a:f1:1c:f6:5e:29:6e:b4:c8:28:9c:08:84:a7:
b0:82:e2:b7:18:a3:3f:ee:5d:5e:ba:f6:68:a4:d6:
6f:d8:2e:94:dc:25:14:c3:0c:a0:24:69:b6:f9:7a:
21:ad:26:ff:56:46:3d:c2:9a:7a:ee:01:7a:e2:3b:
2e:67:a8:c5:8d:29:16:c5:60:f0:ae:bb:9e:87:ca:
99:19:bc:c6:f5:6a:f7:ae:bc:38:69:0e:3c:3c:4b:
0a:b4:b0:b7:14:8b:9a:29:cf:27:83:ab:a1:6a:a6:
33:62:0f:94:57:69:8a:d9:74:28:26:da:25:08:da:
4a:8d:f3:88:01:74:8a:ab:dd:7f:91:4a:d6:46:8c:
3d:32:24:7f:f1:5e:4a:bc:7a:2b:47:28:2a:73:09:
a7:02:7c:52:f8:ae:76:56:4b:3e:a7:51:cd:97:32:
31:e1:c8:92:df:db:71:be:61:ce:e6:92:76:6c:c1:
d4:db:12:e2:a3:30:2f:5d:7e:20:31:70:d7:d8:28:
e4:16:63:d6:8c:b3:ce:a3:98:4c:cc:61:fe:42:89:
78:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:1A:B3:31:5B:57:68:ED:0C:93:64:2B:33:48:7A:03:96:00:4E:CF
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/qRqzMVtXaO0Mk2QrM0h6A5YATs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/48
2a0c:9a40:1057::/48
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2100::-2a0c:9a40:22ff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2400::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::/40
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
c7:ac:22:df:d7:d3:eb:7b:9e:f8:16:47:6c:b1:ad:7c:d4:0b:
82:a6:c9:f5:b9:28:8c:ac:ec:2b:15:19:7a:3a:0c:ba:22:e7:
e2:87:d1:1d:69:4a:8f:fa:ad:d0:76:27:63:5b:17:cd:21:b8:
a7:2d:1b:9c:0c:81:89:15:5d:a0:7f:b7:12:41:d9:3e:e4:38:
3b:68:c0:86:36:65:df:a6:6b:03:d5:f7:54:ac:3e:f6:3c:e7:
13:51:e8:d3:77:b4:bd:fb:3d:25:58:53:20:cb:83:13:93:23:
e8:09:6d:3b:c5:9f:3f:34:cc:4e:a3:a7:a6:c2:cb:15:4d:61:
65:b8:ea:6e:0e:ee:82:90:36:82:a8:11:bd:08:aa:65:a4:0f:
89:90:0f:a8:0f:94:9a:56:c7:ee:54:ab:b7:b7:45:14:a0:d7:
46:36:73:b1:e2:73:aa:8a:d7:a5:59:30:22:b0:96:f4:c7:46:
7a:4e:da:3a:c8:10:45:dc:05:0f:2a:a2:e1:7f:20:eb:e4:db:
53:f4:9c:7f:2b:c3:bf:69:3a:89:64:1b:3c:31:c8:05:8f:94:
cc:ed:0e:0c:fe:b0:90:a5:e4:01:bb:ed:fd:0c:24:97:91:fe:
b0:3f:c5:bc:8f:68:3c:3b:c2:24:81:b1:5c:04:48:9f:c9:49:
1e:db:ac:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:28 2023 by rpki-client on console-ams.rpki-client.org