Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/QXM6AvLmLNAjv-oH_E095VgmB4E.roa
File: QXM6AvLmLNAjv-oH_E095VgmB4E.roa (raw, json)
Hash identifier: XXgcS+l6hGXq1oPROY/yu1fJEmbIpALCosvZT0ERnyQ=
Subject key identifier: 41:73:3A:02:F2:E6:2C:D0:23:BF:EA:07:FC:4D:3D:E5:58:26:07:81
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 042D8561
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/QXM6AvLmLNAjv-oH_E095VgmB4E.roa
Signing time: Sat 01 Jan 2022 12:04:57 +0000
ROA not before: Sat 01 Jan 2022 12:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49981
IP address blocks: 193.233.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70092129 (0x42d8561)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41733a02f2e62cd023bfea07fc4d3de558260781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8a:a6:19:cc:ba:79:7a:44:74:44:82:ea:69:
82:1a:1d:5e:a5:1e:96:2d:56:31:af:22:c7:4e:38:
4e:c8:63:c9:1f:ad:51:91:77:ff:55:e0:a8:d4:93:
07:41:8b:5b:99:3e:94:85:24:f9:cb:11:a2:52:27:
7f:c5:43:40:8b:c6:43:3d:a2:72:d7:03:12:0d:24:
f6:df:8a:37:8d:ea:c4:cc:64:6a:67:a7:90:f9:07:
83:e8:2d:d8:1e:9a:3d:07:d1:0d:df:e0:2d:c0:d4:
6a:9a:ee:5f:75:7c:fe:0d:08:c3:00:d0:43:f2:46:
6d:10:e8:ed:c5:ac:f7:0b:f5:88:3f:6a:5e:94:80:
ff:7f:1b:41:bc:7f:e4:88:78:00:f9:ef:e9:9a:65:
13:51:dd:a2:2b:1b:e2:5a:76:d6:d7:9e:40:0b:c8:
66:1f:5d:4c:08:23:d6:e1:91:3c:80:92:9d:c0:53:
8b:38:b8:b5:ba:7f:64:d5:7f:d9:31:c8:81:1a:9e:
78:60:21:9e:10:d2:a1:b1:da:1a:9e:ff:c8:79:ce:
d0:ce:c8:77:b0:8f:1c:74:f0:1b:f7:e3:a6:6e:e5:
ac:5b:59:a9:bd:22:8c:ee:86:c1:35:03:11:dd:af:
a5:7c:3f:c8:e0:44:a2:ac:65:61:0c:e4:82:49:a7:
ca:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:73:3A:02:F2:E6:2C:D0:23:BF:EA:07:FC:4D:3D:E5:58:26:07:81
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/QXM6AvLmLNAjv-oH_E095VgmB4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.160.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:0c:0e:69:3f:35:c4:78:ab:8a:bc:e1:54:47:50:cc:9c:34:
04:ae:71:49:6e:4b:05:36:93:71:63:a4:b1:e8:c9:5a:ad:21:
b7:ab:cb:1a:65:84:9f:bc:92:2a:b3:e0:68:dc:29:aa:b2:31:
93:fc:a7:94:0f:e8:39:2b:26:ad:8a:1f:15:35:76:c0:52:46:
d7:97:4a:ae:c1:5b:ee:8e:07:7f:3f:ff:67:2a:12:8e:9c:e5:
6c:8b:78:8a:e9:66:39:e5:15:fc:c9:6f:2c:45:0a:b4:98:9e:
65:1d:1b:ff:4e:de:f2:2f:90:af:b4:1c:0f:01:6d:0b:7f:96:
2e:0b:bf:df:29:e4:c3:8b:c3:1b:89:d8:4f:bb:d8:70:14:a6:
8a:0f:2a:5f:a8:30:7c:10:da:07:92:44:ac:36:5d:62:13:6c:
c1:36:34:fa:1b:a4:da:77:f6:3e:86:12:b0:a8:55:da:b4:86:
5c:67:dd:b0:a4:b1:5e:a3:13:7d:e4:50:a7:32:80:26:eb:9b:
98:4c:41:e0:26:70:ce:08:ee:0a:f5:8a:01:7d:28:50:fa:94:
54:df:06:c1:db:8a:b9:d1:1a:ae:5b:af:cb:8d:44:84:38:ee:
5c:3f:92:82:61:49:d8:98:ad:c8:08:03:2c:5a:90:aa:64:d2:
71:d6:54:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:38 2023 by rpki-client on console-fra.rpki-client.org