Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/Qcby6zUm1C7QSEhECCEI-M7wgLo.roa
File: Qcby6zUm1C7QSEhECCEI-M7wgLo.roa (raw, json)
Hash identifier: MNf0v4BiTf3vBVPpd1o8G8UFEf1MEbnyWUU92ZWtd7E=
Subject key identifier: 41:C6:F2:EB:35:26:D4:2E:D0:48:48:44:08:21:08:F8:CE:F0:80:BA
Certificate issuer: /CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Certificate serial: 0182EE785FDCD3519DACF91D21C979DD741A
Authority key identifier: EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/Qcby6zUm1C7QSEhECCEI-M7wgLo.roa
Signing time: Tue 30 Aug 2022 11:17:22 +0000
ROA not before: Tue 30 Aug 2022 11:17:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197655
IP address blocks: 91.223.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:78:5f:dc:d3:51:9d:ac:f9:1d:21:c9:79:dd:74:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Validity
Not Before: Aug 30 11:17:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41c6f2eb3526d42ed0484844082108f8cef080ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fa:24:df:37:4d:dc:34:86:cf:c6:6b:04:7e:
6f:f4:b1:84:39:a9:2b:80:fd:0e:58:31:89:30:68:
d3:1b:0c:05:68:f2:ac:82:45:2d:c0:14:3f:69:7d:
03:01:58:db:95:b7:35:ca:b6:2a:6a:08:52:74:aa:
2a:33:c2:a5:02:55:7a:ee:09:1d:cb:94:b3:e7:db:
3f:a7:ea:3f:9e:1a:a0:0d:79:75:eb:23:c8:e9:e4:
26:f0:87:05:67:11:f6:77:52:73:c1:6c:79:75:c3:
67:06:aa:9e:41:07:75:83:a2:c2:04:58:ec:c4:ea:
73:1b:2d:68:fd:70:d9:de:86:9a:86:d7:bd:94:52:
24:0f:21:00:d0:3c:61:51:a3:1c:f6:d3:2c:d9:d8:
f4:92:29:bd:39:3b:9c:30:e3:ea:5f:b9:4c:0e:71:
8d:96:4d:cb:50:8d:58:9b:66:60:b1:2d:5f:4a:86:
21:6d:fa:32:2d:1a:d3:47:35:4f:1d:dc:5b:40:6f:
1c:a6:4e:b9:fb:14:8e:5f:e6:35:04:d3:20:47:9f:
9d:38:d7:26:1d:22:4d:44:b4:df:5a:95:41:ee:0d:
b9:33:3c:f0:77:41:b2:48:8d:ad:b2:ff:c6:69:e0:
aa:7c:36:c9:1b:6d:5b:26:f2:1d:5a:2c:73:71:2c:
fd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C6:F2:EB:35:26:D4:2E:D0:48:48:44:08:21:08:F8:CE:F0:80:BA
X509v3 Authority Key Identifier:
keyid:EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/Qcby6zUm1C7QSEhECCEI-M7wgLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.193.0/24
Signature Algorithm: sha256WithRSAEncryption
83:a8:22:a8:fb:b0:fd:94:b5:bc:22:7a:53:88:4a:97:66:a7:
7e:34:6e:74:75:81:e7:ce:b5:ff:58:c1:71:9e:ce:c5:45:58:
5a:c9:3c:a5:dd:a0:32:f0:43:c4:3a:72:f3:3c:ac:96:60:8a:
b5:0c:d0:7f:7c:29:19:f1:ea:54:78:45:78:0a:e7:f4:b2:d6:
15:db:55:1a:c7:58:59:96:ed:ef:06:2b:1a:33:1a:45:25:19:
59:ba:16:d0:13:29:ad:67:4c:f8:83:67:3a:a3:be:36:17:bf:
47:19:15:8e:08:e5:63:ef:75:86:2a:8f:80:67:5f:57:a5:08:
e9:5f:79:80:63:fa:ba:1b:75:8c:2e:ba:6c:d6:30:a7:27:f7:
08:85:d7:e7:d5:ee:fa:93:22:f8:b1:63:2c:a8:65:52:00:a9:
ed:22:50:d3:f2:b9:fa:ef:fa:5e:bf:ed:dd:86:2b:33:9e:d2:
08:e1:82:41:5f:7a:6b:cd:04:98:27:e1:b2:f6:7d:bb:75:15:
63:34:43:15:ca:07:6a:d6:b8:3e:e2:a9:e3:df:20:60:ad:48:
e1:f8:82:bd:8d:69:9b:46:5d:3e:3a:d8:48:87:ad:59:3e:d0:
b9:40:ec:f2:71:57:8b:15:4e:e9:0c:ae:e5:c4:d7:98:d6:ae:
33:3c:8f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:16 2023 by rpki-client on console-ams.rpki-client.org