Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/qCEOiN5fYpym4mTKgz2lqMiCHA8.roa
File: qCEOiN5fYpym4mTKgz2lqMiCHA8.roa (raw, json)
Hash identifier: EryuSRGF9ISuVahyDNBlhRuS4Rt/xtzibkqudjV5DMo=
Subject key identifier: A8:21:0E:88:DE:5F:62:9C:A6:E2:64:CA:83:3D:A5:A8:C8:82:1C:0F
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 04262F7D
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/qCEOiN5fYpym4mTKgz2lqMiCHA8.roa
Signing time: Sat 01 Jan 2022 12:04:54 +0000
ROA not before: Sat 01 Jan 2022 12:04:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32181
IP address blocks: 193.233.228.0/22 maxlen: 22
193.233.136.0/22 maxlen: 22
193.233.140.0/22 maxlen: 22
193.233.82.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69611389 (0x4262f7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 12:04:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8210e88de5f629ca6e264ca833da5a8c8821c0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e5:94:86:35:b1:19:46:4e:b0:57:10:d8:9e:
e5:e1:03:8d:b3:f6:68:c8:e8:23:08:3b:2b:11:72:
7a:70:af:fc:fc:49:ed:29:11:28:78:df:90:23:4a:
01:07:73:d0:ca:92:80:b5:5d:a0:a1:b5:fb:ba:96:
6f:33:75:68:4f:15:b9:be:1d:4c:3e:d9:52:c0:ad:
d0:51:0c:c1:64:57:af:99:05:31:28:ad:46:8f:a5:
ed:53:c3:9c:a2:13:87:eb:8b:cc:83:4a:fe:25:6a:
87:2a:a1:c0:f7:08:a1:7c:af:a7:18:b8:2f:bc:1e:
15:14:3c:e4:9d:df:db:1a:21:0c:55:4a:b2:67:38:
ec:59:a3:5f:a0:f1:13:fd:89:15:cc:5e:fe:f7:9f:
b3:1a:17:3b:30:a4:be:10:58:d6:3f:7b:cf:9e:25:
25:81:15:59:12:fb:de:86:7a:98:f1:b6:11:97:42:
0a:0e:39:58:89:a7:dc:e2:fa:a7:00:d7:ae:67:5e:
9c:ea:aa:87:e4:ae:6e:e2:6a:f9:81:bb:3f:f6:e5:
d6:13:96:9a:c3:f9:d6:e9:40:fa:b2:21:d4:48:24:
77:11:7a:c7:65:7d:47:2a:f6:32:cc:2e:a6:c4:99:
5f:de:fb:37:46:e2:c7:c3:ba:39:71:a2:0b:b0:0e:
3c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:21:0E:88:DE:5F:62:9C:A6:E2:64:CA:83:3D:A5:A8:C8:82:1C:0F
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/qCEOiN5fYpym4mTKgz2lqMiCHA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.233.82.0/23
193.233.136.0/21
193.233.228.0/22
Signature Algorithm: sha256WithRSAEncryption
12:ab:b0:91:c1:e8:22:a9:ab:c5:55:c6:5c:99:d8:db:38:b3:
5c:25:7c:d4:43:a7:3b:27:45:54:86:df:a3:1a:cc:9a:1f:af:
39:e4:9f:27:98:fb:0c:ec:f5:f8:9a:af:b4:bb:d4:cf:e5:4c:
93:6c:ec:bc:3f:27:cc:c1:f6:c7:2e:62:c9:40:af:c5:7f:ed:
ff:7c:1f:4a:48:fe:41:b7:6b:78:ab:16:e7:0b:45:75:27:88:
8d:66:6e:36:b7:79:af:7b:6a:94:c0:7f:a1:6b:8a:46:5e:76:
e9:38:dd:5a:c1:1b:66:43:ba:a3:02:55:b9:a3:cd:16:7b:fc:
1e:b7:68:8f:c0:2e:6a:a1:ac:f4:66:73:82:66:3f:31:da:42:
fe:00:84:5d:b4:e8:0a:a2:5d:c6:31:b7:e1:68:c3:29:e5:e3:
86:3b:ca:e1:e5:37:b6:44:08:42:ac:39:61:d8:b4:97:02:b3:
6a:00:e7:4e:48:af:50:13:46:9f:a1:a2:b7:08:b6:c1:b6:d6:
d3:0b:60:a4:aa:ed:e9:ad:06:05:05:51:ed:bf:85:ab:97:77:
a6:c4:9b:88:28:30:8f:73:07:9c:39:65:42:e8:98:ca:81:ed:
3a:a8:69:52:d8:3a:fc:8a:01:21:9b:07:a7:93:f8:ca:58:40:
b2:7f:47:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:31 2023 by rpki-client on console-ams.rpki-client.org