Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/QdZBiKAQR9ME2lxsGKOAYOErGIY.roa
File: QdZBiKAQR9ME2lxsGKOAYOErGIY.roa (raw, json)
Hash identifier: rY4sEiUa0/PAaBuZAXQZG/SCSl1+7LPl4Buh9L1ovqc=
Subject key identifier: 41:D6:41:88:A0:10:47:D3:04:DA:5C:6C:18:A3:80:60:E1:2B:18:86
Certificate issuer: /CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Certificate serial: 381072B6
Authority key identifier: 11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/QdZBiKAQR9ME2lxsGKOAYOErGIY.roa
Signing time: Sat 01 Jan 2022 02:57:32 +0000
ROA not before: Sat 01 Jan 2022 02:57:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25164
IP address blocks: 193.192.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940602038 (0x381072b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Validity
Not Before: Jan 1 02:57:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41d64188a01047d304da5c6c18a38060e12b1886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c8:7c:75:e9:35:00:36:92:6e:31:1c:17:91:
dc:17:86:da:07:3a:e9:74:d4:13:26:89:f7:6a:be:
d4:6f:7d:1d:e3:b3:f2:f0:0c:1e:38:19:13:b9:2c:
e9:ae:5a:74:33:18:02:73:a6:38:72:c5:0a:f2:1d:
fb:d2:6e:f2:09:fc:6a:20:1f:d3:b3:2c:51:ba:da:
bb:65:03:d8:e4:6e:9f:24:16:15:af:3b:e7:5e:d3:
1b:0c:c5:46:96:f8:69:bb:23:54:ac:cb:8c:d3:01:
fc:fb:7f:65:80:86:30:d2:70:3f:d7:cf:f6:7e:1c:
8f:a8:5f:d1:2e:20:21:ca:02:bd:e1:77:20:be:4b:
90:9f:6c:9a:4d:5f:c7:da:75:c2:11:2d:ed:91:2e:
d1:ff:90:75:73:b8:1a:65:51:e7:33:4d:06:64:f2:
74:4b:06:98:52:d5:86:30:7a:30:b3:4e:fd:b0:ee:
7c:67:0f:5e:66:1d:05:c9:43:d6:5b:53:8b:e2:10:
05:16:50:e1:a4:b0:02:45:4f:b4:45:1e:aa:57:59:
04:1f:33:83:e0:fa:6a:41:12:ab:88:c7:dd:54:e3:
ed:7f:a8:26:35:18:c3:f8:1f:b0:8e:3b:47:4d:47:
99:a7:59:d3:82:ff:ef:3f:e9:f6:46:6d:1d:5d:45:
d0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D6:41:88:A0:10:47:D3:04:DA:5C:6C:18:A3:80:60:E1:2B:18:86
X509v3 Authority Key Identifier:
keyid:11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/QdZBiKAQR9ME2lxsGKOAYOErGIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/EV28AEM-KfKt6wOP6i-9cEj7Yy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.232.0/23
Signature Algorithm: sha256WithRSAEncryption
25:38:3d:7b:53:af:1e:35:7d:48:0f:70:46:04:e2:ff:a8:6a:
d1:ec:28:a0:42:18:e3:ac:63:5f:d3:73:ed:47:2a:7d:6a:86:
71:f1:3e:14:6d:28:e6:cb:40:24:22:2c:a1:10:6e:23:03:8e:
30:41:e0:95:3b:41:f6:10:f4:bf:06:2c:f9:6a:0c:60:60:20:
fd:0b:93:09:2e:15:4a:f8:7c:f7:54:bd:e7:c2:d0:98:32:70:
30:3e:4e:2c:3e:6e:0f:e4:d9:cf:0a:bd:de:89:73:79:c5:57:
21:90:18:d4:c9:09:18:19:fd:d5:37:12:55:c2:d2:e5:36:bb:
15:39:fd:43:0b:2d:73:08:bd:f0:9a:5a:b0:1f:8f:4d:c5:1e:
d6:2d:2d:56:6f:e8:5a:fc:92:15:5b:ca:e1:f4:6d:ce:f6:26:
80:cb:10:aa:f1:9d:46:1b:51:c7:8e:1c:a4:f0:9d:cd:1a:03:
6d:26:6a:14:c1:ed:d5:e7:6a:7f:5f:ca:a4:68:14:1d:85:fa:
93:46:f6:03:aa:87:ff:31:67:0d:df:c6:ec:33:59:dd:95:d6:
6b:ac:ec:58:64:dd:67:dd:92:66:bd:37:2f:30:4d:4f:16:09:
8e:a2:9d:e9:92:08:cc:70:23:d1:82:c5:d1:7b:93:9f:76:22:
fe:09:2a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:29 2024 by rpki-client on console-fra.rpki-client.org