Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/QqgkiXHhuhbtY0e9votyYAKKpKU.roa
File: QqgkiXHhuhbtY0e9votyYAKKpKU.roa (raw, json)
Hash identifier: b37YsnTcYiPeVdeBIUH1GnOdvFgfQ5KNVK/TOjXbclY=
Subject key identifier: 42:A8:24:89:71:E1:BA:16:ED:63:47:BD:BE:8B:72:60:02:8A:A4:A5
Certificate issuer: /CN=68bd10f1b14bbb2767ffdcaec4b4172880ba461a
Certificate serial: 01839CC2FF7BEEFEAFE09FD5C12140263657
Authority key identifier: 68:BD:10:F1:B1:4B:BB:27:67:FF:DC:AE:C4:B4:17:28:80:BA:46:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0Q8bFLuydn_9yuxLQXKIC6Rho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/QqgkiXHhuhbtY0e9votyYAKKpKU.roa
Signing time: Mon 03 Oct 2022 07:32:48 +0000
ROA not before: Mon 03 Oct 2022 07:32:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 193.107.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9c:c2:ff:7b:ee:fe:af:e0:9f:d5:c1:21:40:26:36:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bd10f1b14bbb2767ffdcaec4b4172880ba461a
Validity
Not Before: Oct 3 07:32:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42a8248971e1ba16ed6347bdbe8b7260028aa4a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ba:ae:b6:7a:56:ee:d2:eb:da:41:7b:1b:51:
a3:27:b3:98:52:ee:38:fb:1b:79:1f:9e:21:4a:41:
63:77:80:20:8a:ac:f3:68:2c:01:81:46:a5:0a:f5:
49:75:fe:d0:2d:de:b3:44:2b:31:ac:be:c6:0a:03:
29:d9:f1:a5:41:8a:2e:d7:76:9e:8e:de:28:83:96:
91:1f:17:eb:48:74:92:56:8d:dc:cc:b4:51:58:13:
bd:4f:7b:60:8f:87:e6:a6:d2:dc:bd:e1:3f:17:66:
fd:7d:d3:dd:e0:69:22:b6:74:64:91:f8:63:8e:0e:
e2:eb:ad:15:7e:b7:fe:7f:e2:01:0b:31:4a:ec:88:
ef:7a:89:c1:93:4f:cb:2b:2e:b2:c7:7d:84:8f:f1:
a7:2d:5e:bd:c4:58:31:ae:25:2f:7f:e6:14:b3:8c:
65:d4:5a:e5:84:e2:7e:bd:70:c3:7c:b6:8f:8a:e4:
98:79:79:01:6a:ae:79:18:78:1f:79:38:2c:fb:69:
64:da:fe:8c:cb:ac:5e:96:23:e2:d8:52:5b:6c:b5:
7c:a0:92:dd:7d:55:d9:8a:79:c9:07:58:5c:18:6d:
11:8d:e3:f3:de:76:52:95:fd:ed:17:c1:c0:32:e6:
62:d1:8f:d2:ab:43:bd:bc:65:cd:9b:f7:d6:57:e6:
8d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A8:24:89:71:E1:BA:16:ED:63:47:BD:BE:8B:72:60:02:8A:A4:A5
X509v3 Authority Key Identifier:
keyid:68:BD:10:F1:B1:4B:BB:27:67:FF:DC:AE:C4:B4:17:28:80:BA:46:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0Q8bFLuydn_9yuxLQXKIC6Rho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/QqgkiXHhuhbtY0e9votyYAKKpKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/aL0Q8bFLuydn_9yuxLQXKIC6Rho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.40.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:6c:b3:ad:33:83:1b:12:2e:0c:53:6f:41:f0:10:73:78:c6:
be:e4:27:09:2b:6f:01:ff:dd:3b:9c:a4:34:83:97:6b:9a:c5:
84:22:41:e6:17:6a:bc:cd:37:60:26:0f:f5:29:0c:51:1c:bc:
30:b6:91:30:d9:80:cc:3d:77:ad:3f:27:e2:72:0d:6d:ef:03:
49:21:5e:8f:c4:15:74:0d:b7:21:2f:1f:58:b7:72:49:02:ab:
8d:58:cb:5f:1c:85:f3:60:19:ba:2e:4d:d9:ca:33:3e:3e:64:
bf:47:ba:80:a9:c5:86:26:60:65:d9:4d:5b:91:84:4b:2b:86:
db:74:4b:49:11:0b:f7:13:7e:58:15:55:61:a9:27:dd:e8:b2:
a2:23:5c:36:e9:76:b5:e3:a0:6f:82:b1:7d:04:5b:3f:ab:61:
04:10:71:38:c3:e4:f5:60:a9:ff:06:d7:a9:49:34:69:5c:b9:
08:c9:39:ab:84:71:1f:24:18:8a:f3:37:71:0a:e0:66:de:50:
ce:1e:b6:59:88:07:31:17:a2:24:97:d9:54:a0:b0:b5:be:ff:
0e:b4:9a:e9:e0:fe:27:a3:10:14:4b:9a:ce:d5:b4:4c:b1:fe:
55:00:f3:1c:6b:14:ff:30:11:64:47:05:a0:c5:63:43:bf:ff:
e6:ef:66:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:19 2024 by rpki-client on console-ams.rpki-client.org