Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/Q3RUoZAM7vbtf06IecVoCCtdc70.roa
File: Q3RUoZAM7vbtf06IecVoCCtdc70.roa (raw, json)
Hash identifier: Bs/NjDng652Hek5/579KptSl5nmbQtxWd/t8xWkJ3WE=
Subject key identifier: 43:74:54:A1:90:0C:EE:F6:ED:7F:4E:88:79:C5:68:08:2B:5D:73:BD
Certificate issuer: /CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Certificate serial: 0A187816
Authority key identifier: 6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/Q3RUoZAM7vbtf06IecVoCCtdc70.roa
Signing time: Sat 01 Jan 2022 13:59:45 +0000
ROA not before: Sat 01 Jan 2022 13:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42523
IP address blocks: 194.62.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169375766 (0xa187816)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c
Validity
Not Before: Jan 1 13:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=437454a1900ceef6ed7f4e8879c568082b5d73bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8d:c0:32:2c:f3:85:f1:5f:2b:14:16:97:eb:
22:4a:03:e6:ed:15:1b:9c:57:3d:0f:71:12:99:fe:
b5:7a:7a:59:88:ff:28:bc:06:e7:1f:72:f7:a4:9b:
86:47:30:7e:33:d7:e1:10:d9:0b:6b:74:af:db:53:
f3:80:4f:4e:ae:2c:29:95:28:56:56:aa:a0:b1:02:
f3:a9:ce:0e:85:bd:d9:56:da:45:16:e3:9a:da:4f:
40:a3:84:ce:4e:aa:2f:44:63:66:fe:c6:43:be:6d:
8e:4d:20:ee:f6:0b:26:90:32:05:2a:19:9e:9d:13:
36:b8:a6:fc:c1:d7:6d:26:e5:14:3d:9a:7a:7c:9d:
50:cc:88:89:21:1a:6b:ea:c8:ed:50:25:cb:b8:52:
c1:1a:dd:a7:64:f2:9b:31:8d:be:1b:ac:2f:3f:2f:
40:af:38:ec:65:6c:bc:23:ae:fa:cc:56:47:db:0e:
d6:98:f2:c8:df:cc:f7:3f:8f:ee:e2:3c:77:eb:aa:
94:b0:2e:d7:64:37:a6:b1:12:ad:ea:8d:6a:a5:a0:
c2:8f:1d:88:72:04:64:c5:4e:36:6a:ef:43:53:a8:
91:cb:95:65:3c:ed:df:c7:d4:ce:04:d2:f3:1e:52:
bb:98:72:11:b5:40:92:0a:a8:9d:5f:e1:35:0f:c4:
56:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:74:54:A1:90:0C:EE:F6:ED:7F:4E:88:79:C5:68:08:2B:5D:73:BD
X509v3 Authority Key Identifier:
keyid:6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/Q3RUoZAM7vbtf06IecVoCCtdc70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.152.0/22
Signature Algorithm: sha256WithRSAEncryption
47:d1:aa:88:79:89:fa:a9:8c:94:71:7f:02:f8:53:80:cf:89:
09:ae:8a:c4:90:fe:54:6a:39:42:ea:de:47:15:af:30:92:96:
9a:93:1d:12:d0:a7:94:03:2f:1c:af:60:88:61:4c:80:3d:cb:
b5:f6:67:a2:24:43:a4:f6:ee:8b:a5:bd:0b:51:eb:33:ed:b4:
63:d7:81:f1:29:9d:57:fc:ac:fd:1d:0a:cb:59:09:b9:ed:c0:
29:c3:7b:ab:ed:d2:19:bd:4a:2e:2c:0b:80:14:ea:d9:d4:4b:
7c:2e:1b:bd:11:60:19:6d:59:0f:10:61:22:93:bd:06:1f:9d:
c2:b3:96:51:3d:43:f5:63:3c:99:29:b1:b1:f4:fb:15:69:d6:
c9:b9:ce:82:11:72:2b:e7:c7:b7:3d:cf:37:2b:6c:f5:4c:a9:
73:46:9b:91:ff:9f:24:0f:39:e5:e9:6a:1b:7a:61:60:8c:11:
96:24:e3:cf:34:5c:63:71:07:10:46:62:15:e2:89:09:30:5e:
80:4e:b6:4f:2e:84:4f:43:2c:90:30:2b:bc:c7:74:16:26:4f:
e9:12:47:b2:99:82:a1:3c:1f:19:1c:5b:1a:47:5b:ce:45:33:
9a:4e:de:b8:e8:d5:37:98:66:3e:53:71:d2:8a:76:29:40:f1:
91:f6:a7:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:34 2023 by rpki-client on console-fra.rpki-client.org