Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QpAk93q093hUkhUKR2-1_z4wOss.roa
File: QpAk93q093hUkhUKR2-1_z4wOss.roa (raw, json)
Hash identifier: 0J/LCZFHbqVFtcXzonezmbf4rL9wUnbmWaO8tLQ3WUY=
Subject key identifier: 42:90:24:F7:7A:B4:F7:78:54:92:15:0A:47:6F:B5:FF:3E:30:3A:CB
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1E2A9F22
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QpAk93q093hUkhUKR2-1_z4wOss.roa
Signing time: Tue 26 Apr 2022 08:28:28 +0000
ROA not before: Tue 26 Apr 2022 08:28:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210106
IP address blocks: 93.123.16.0/24 maxlen: 24
87.121.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 506109730 (0x1e2a9f22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 26 08:28:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=429024f77ab4f7785492150a476fb5ff3e303acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:37:ac:4b:6a:02:f2:b5:94:cc:b0:ec:22:e8:
2c:73:12:27:78:87:e7:46:56:dd:8f:40:3d:70:c0:
63:52:b7:94:db:78:30:e6:ea:b9:12:df:c0:b8:9c:
1b:d5:a6:43:e3:d0:af:6e:8c:54:3d:d2:d2:ab:af:
40:d1:48:26:e7:e6:fc:44:ac:16:9d:ac:d1:46:f1:
03:e9:6d:3a:3f:c3:2f:03:9a:f0:e2:ba:03:82:38:
cc:f2:2a:4f:8c:66:b0:7c:60:e8:26:88:cb:02:03:
ec:aa:0f:50:f6:22:f2:83:3c:9d:74:dd:9e:cf:ec:
63:cc:92:14:a1:0b:1d:e0:83:73:67:ff:60:00:27:
cf:e5:e3:ba:ca:be:a1:ff:81:58:8b:25:81:4a:be:
0f:a6:67:a6:52:09:7a:68:81:63:00:2c:ef:3f:02:
a7:fd:34:22:75:9c:97:29:5b:00:d5:eb:03:97:6d:
a7:56:63:6e:0a:34:96:0e:c5:a4:a2:3b:e7:5b:0f:
c0:3a:c4:03:4e:40:fa:62:9d:98:cf:a3:5f:0a:74:
7e:0b:56:80:4c:6f:d8:ac:72:e7:22:51:67:96:0b:
bb:e8:99:0d:2d:ac:a0:7c:fd:f2:61:b1:8e:61:6c:
0d:83:b5:9b:67:cf:79:5e:ba:67:63:b1:26:be:25:
cf:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:90:24:F7:7A:B4:F7:78:54:92:15:0A:47:6F:B5:FF:3E:30:3A:CB
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/QpAk93q093hUkhUKR2-1_z4wOss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.3.0/24
93.123.16.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:93:ab:28:12:6a:66:bd:df:3e:d6:48:37:ba:32:dc:aa:d3:
34:4d:63:0a:84:d4:cb:ee:68:bd:55:3d:57:a7:d4:cd:fb:0e:
e2:20:92:c7:38:c7:29:9d:20:fa:09:4b:9b:46:e0:ab:1d:cd:
73:46:4c:fe:3a:c0:2a:d8:2b:43:23:fc:2c:2f:97:d5:b1:9a:
61:78:b7:08:47:10:c8:74:d2:a8:9c:7a:d1:56:db:18:94:8d:
b9:16:88:7b:87:d0:f0:0e:ed:b0:1e:f4:28:50:55:5b:17:b9:
07:0b:18:80:35:8e:ce:40:4b:17:dd:a8:11:a9:1b:a2:52:f3:
c4:14:c1:1f:f9:bc:4b:97:f2:25:b3:eb:43:c8:01:fd:56:a1:
6b:1c:e8:c4:c5:b5:39:0d:c7:64:8e:e8:91:f8:c5:29:84:5c:
ce:92:16:d2:d0:fa:0e:53:93:fa:fb:f4:e7:93:1c:94:3d:f8:
d0:cf:9c:b5:c5:24:72:bc:b9:de:31:2a:d9:9c:9a:6e:22:bb:
16:27:ee:13:46:2b:ef:58:9c:e7:8e:0c:cd:0a:4b:19:04:37:
0e:30:cd:59:16:b2:05:de:f4:28:4a:67:ba:82:77:0d:25:fd:
f4:23:25:a5:01:8e:c7:06:4a:d7:4b:6a:7d:3b:4d:5d:de:cf:
a3:34:31:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:36 2023 by rpki-client on console-ams.rpki-client.org