Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/4zaAUS2flUTO5y5a2Cs4jc6_QLE.roa
File: 4zaAUS2flUTO5y5a2Cs4jc6_QLE.roa (raw, json)
Hash identifier: 71FGid94Paj1Jo4N8fXeUa31eYbz9ZPZ0gq4IzZTroU=
Subject key identifier: E3:36:80:51:2D:9F:95:44:CE:E7:2E:5A:D8:2B:38:8D:CE:BF:40:B1
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CC6B102
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/4zaAUS2flUTO5y5a2Cs4jc6_QLE.roa
Signing time: Wed 06 Apr 2022 06:02:08 +0000
ROA not before: Wed 06 Apr 2022 06:02:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 194.233.30.0/24 maxlen: 24
194.163.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214348034 (0xcc6b102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 6 06:02:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e33680512d9f9544cee72e5ad82b388dcebf40b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c0:ed:70:d8:2a:e4:d4:48:9e:31:cd:39:8f:
a7:50:19:96:9e:28:0d:a7:ba:98:e5:bd:86:b8:ac:
40:7a:43:02:a8:23:95:da:52:b0:a9:cd:06:2e:43:
63:0c:20:34:f5:ff:0d:c8:4e:fd:37:4d:1a:c8:2b:
7b:89:ca:39:19:33:9c:59:5f:38:cb:7e:e0:66:cb:
17:ec:63:2f:5f:66:ac:77:ab:c6:b6:c5:48:93:03:
c1:4a:1b:30:28:8e:ae:47:25:69:c4:5a:40:90:1d:
78:c8:b2:4b:fd:82:3c:e7:36:7e:0a:91:05:1d:b5:
e7:e7:f8:d5:17:88:af:6d:14:b0:78:1e:68:63:6b:
45:c7:b2:4a:72:be:b4:a6:7f:03:3d:64:30:e6:7e:
7b:96:a9:30:63:75:fb:a1:06:96:13:36:37:35:38:
49:c8:2a:58:85:ba:e9:8f:1c:64:8f:5e:98:e6:88:
28:f7:64:d4:b1:42:04:f4:b3:8d:2e:de:ae:aa:52:
1b:36:a0:89:e7:72:05:98:6a:10:65:32:1a:fb:9b:
f0:16:71:96:1b:f4:62:14:c6:ef:7f:5a:44:a0:2e:
83:5b:bb:07:b4:ac:b8:27:ab:c8:78:8a:b5:a2:2d:
d1:d8:06:b8:4a:27:5a:17:f2:c2:f8:3b:e8:17:8b:
d0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:36:80:51:2D:9F:95:44:CE:E7:2E:5A:D8:2B:38:8D:CE:BF:40:B1
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/4zaAUS2flUTO5y5a2Cs4jc6_QLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.94.0/24
194.233.30.0/24
Signature Algorithm: sha256WithRSAEncryption
91:92:d0:4b:05:e9:54:fc:68:ac:90:48:20:39:2b:3c:fe:72:
3e:85:95:90:9f:66:24:fa:a4:58:c1:07:78:ef:ae:22:6a:6e:
7e:bd:dc:82:14:03:b8:7c:d1:18:41:36:4b:3b:92:0c:84:cb:
a4:8c:99:84:fe:67:71:23:48:6a:f2:c5:5c:e4:2e:4c:40:c9:
c3:4b:f8:55:b5:e7:2c:b6:2b:57:0b:37:ce:ee:75:4c:c0:55:
a6:60:1e:1a:27:af:ed:d8:59:94:2b:c0:d0:09:2d:97:32:f2:
57:73:8f:99:e5:dd:a3:02:03:94:0a:34:fc:ae:55:4f:07:f6:
cb:9e:eb:2b:a2:52:22:49:3c:10:59:79:22:fc:15:66:1d:5e:
8c:9f:9d:28:48:4f:67:2f:3f:73:26:c6:47:15:89:b4:a3:d6:
92:ce:22:27:24:c7:02:05:f5:f6:b3:ea:0d:5d:a9:45:60:11:
21:bc:ab:0f:8a:62:7a:aa:4e:74:89:73:9d:20:c0:b2:03:83:
de:e0:d0:1d:0a:31:bc:21:ef:dd:58:ad:af:ab:86:cb:34:f7:
b2:57:34:45:77:1d:4a:56:15:01:9a:71:4a:75:b8:9c:3e:70:
83:ac:84:d8:8a:6a:39:73:a7:d0:3d:69:b3:a3:ca:36:12:83:
2d:b2:3e:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org