Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/q1QiS7P3gOkjARdBeMhOmOhkx6A.roa
File: q1QiS7P3gOkjARdBeMhOmOhkx6A.roa (raw, json)
Hash identifier: a/zQzuruKLQq7ZHblvVUi5MOl7XdcqQmFtdi7Lr7h78=
Subject key identifier: AB:54:22:4B:B3:F7:80:E9:23:01:17:41:78:C8:4E:98:E8:64:C7:A0
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0BF7E9FA
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/q1QiS7P3gOkjARdBeMhOmOhkx6A.roa
Signing time: Fri 28 Jan 2022 13:40:58 +0000
ROA not before: Fri 28 Jan 2022 13:40:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64267
IP address blocks: 195.180.137.0/24 maxlen: 24
194.233.149.0/24 maxlen: 24
194.233.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 200796666 (0xbf7e9fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 28 13:40:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab54224bb3f780e92301174178c84e98e864c7a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6d:9f:a9:c0:db:28:c1:df:f4:e2:e5:24:15:
d2:ed:9e:33:d4:2a:ed:e1:1d:04:2d:7b:9f:ac:0d:
0f:1f:51:48:8f:b4:44:06:45:d1:4a:ed:a0:50:a9:
fb:0e:00:52:57:b8:67:04:08:fa:92:87:b1:c8:82:
20:b1:7e:e4:75:76:3c:25:06:5d:0f:0e:8e:27:1b:
41:39:07:1d:7f:8b:87:41:6b:5e:8a:48:f2:d0:55:
db:04:48:9a:1d:18:83:d0:b9:43:27:cd:6f:37:a7:
a5:75:3b:0e:7b:c9:55:c6:e3:09:1e:1f:ba:be:c0:
88:32:ac:55:db:15:63:7e:d9:5c:be:d1:cd:4c:2a:
5b:20:f2:93:dc:c1:e8:71:3d:54:15:32:bf:7e:9d:
14:c3:b2:b2:e9:3e:4b:a3:81:cb:29:e4:f8:39:d8:
40:0c:77:b1:08:79:83:74:35:ad:b6:4b:e8:30:58:
d3:39:49:46:b2:7a:4b:03:32:46:e1:dd:70:35:7e:
76:48:73:5f:f5:f8:86:ae:1c:d4:8c:55:26:bb:75:
ed:be:fc:64:ef:c2:33:ce:19:07:93:9b:3a:12:d8:
e3:8b:e6:30:03:58:9f:cd:f4:a1:d1:64:c9:e3:c6:
9b:6a:ec:03:66:43:a1:d7:1f:48:ba:77:0f:dd:5c:
97:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:54:22:4B:B3:F7:80:E9:23:01:17:41:78:C8:4E:98:E8:64:C7:A0
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/q1QiS7P3gOkjARdBeMhOmOhkx6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.148.0/23
195.180.137.0/24
Signature Algorithm: sha256WithRSAEncryption
87:8a:d5:61:e3:74:4f:d6:bb:03:6c:6e:6e:87:ee:48:e4:d3:
cb:6e:14:7d:75:e7:85:16:5e:c5:9c:7e:b9:10:e8:03:56:45:
6c:93:fa:1e:c4:77:fe:24:ce:3d:dd:14:e5:a6:fb:0b:85:6c:
22:4c:e2:90:8d:97:3e:35:62:e6:a3:d7:3b:77:5a:5d:58:65:
7b:fb:cc:59:62:ff:02:5e:bd:fe:5c:ed:29:81:d0:5c:2b:bc:
e3:9a:25:83:fb:af:a8:96:cd:28:98:ec:7d:2e:90:bc:e1:14:
bb:db:20:3a:5b:77:10:5d:b9:7d:6c:d5:9b:d2:7d:c0:cc:af:
25:f6:d4:4b:c6:61:4b:0e:23:a7:e9:6b:91:9c:95:2e:37:d2:
aa:a7:3f:0a:88:9c:97:46:2b:4b:9f:98:44:4a:b9:89:0d:38:
3b:af:6d:5e:7e:05:4a:e1:80:62:a8:f7:e2:ac:c3:2a:d2:b1:
6b:8f:ea:e5:c1:b7:6d:c9:af:95:f9:6a:8c:1a:55:64:5c:44:
13:d3:b1:b9:d9:08:7e:77:e7:f3:71:ba:4d:95:f4:10:40:ae:
a7:f5:fb:ae:09:98:e4:03:21:7a:c6:d0:95:bb:47:dd:6b:bf:
9d:d1:33:37:84:f6:8e:26:1a:63:95:95:be:83:0b:13:09:0c:
b1:f7:a7:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org