Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/qHI9T9nFDAs98hBolei40J35ZGw.roa
File: qHI9T9nFDAs98hBolei40J35ZGw.roa (raw, json)
Hash identifier: HFxPlvTDhcZibTqFDpwW6ZbEUdt+9D6C7/bl6mDjGR4=
Subject key identifier: A8:72:3D:4F:D9:C5:0C:0B:3D:F2:10:68:95:E8:B8:D0:9D:F9:64:6C
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C7EF9E3
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/qHI9T9nFDAs98hBolei40J35ZGw.roa
Signing time: Mon 14 Mar 2022 14:55:59 +0000
ROA not before: Mon 14 Mar 2022 14:55:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 194.163.88.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 209648099 (0xc7ef9e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Mar 14 14:55:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8723d4fd9c50c0b3df2106895e8b8d09df9646c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5c:70:8f:30:d8:42:c8:34:f5:ff:c8:77:f2:
af:fb:d6:5b:1d:1f:86:27:57:02:d8:5c:58:dc:e4:
ea:ab:a1:33:c2:4d:4d:7e:21:c2:8c:6e:be:d4:40:
a1:4b:7b:6e:90:63:a8:ab:6e:78:ed:d2:9b:d3:20:
d5:ef:dd:fa:ee:15:b3:19:87:fd:8f:fa:3b:5a:7d:
36:05:35:aa:c7:b7:69:3b:6f:5c:2a:80:8c:a4:88:
88:87:61:7e:e8:23:35:83:b9:4d:d9:f7:08:3c:5a:
6e:d5:2c:f1:45:08:24:0a:cc:84:97:6e:8b:33:57:
3e:9d:86:21:e7:83:ef:05:1a:2c:2d:ed:49:5a:64:
63:1a:aa:2f:96:db:13:5b:e0:a2:79:d6:f7:d6:1e:
a0:d2:46:03:13:f7:ff:ed:44:b5:37:50:b9:da:fc:
42:d6:40:87:1a:50:48:59:62:c2:39:b6:d2:ec:8d:
52:a6:f1:42:d5:20:65:cf:f5:5d:b8:dc:5f:4f:78:
15:b8:97:9e:d2:da:58:06:6c:f1:6f:11:9f:36:30:
35:87:35:68:cf:16:fe:5f:73:a0:f8:5d:62:e9:30:
9a:0a:49:aa:e9:d8:61:a5:b2:8c:54:44:de:17:29:
7f:1e:5e:75:8b:01:9b:f5:bd:09:42:45:d9:5d:9b:
28:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:72:3D:4F:D9:C5:0C:0B:3D:F2:10:68:95:E8:B8:D0:9D:F9:64:6C
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/qHI9T9nFDAs98hBolei40J35ZGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.88.0/23
Signature Algorithm: sha256WithRSAEncryption
15:0c:c9:3e:4e:56:7c:5e:3b:06:c6:d1:f2:27:74:5f:50:28:
36:61:79:bf:5f:7c:6a:25:76:d1:13:4d:f9:25:71:07:01:0d:
9e:f0:de:cc:5a:c1:1a:52:eb:17:a2:f7:bd:11:6f:02:ba:78:
6f:ed:41:77:6d:b5:2f:b3:18:30:7e:63:4c:0c:86:4d:00:e2:
79:06:eb:fb:3a:f8:b9:2c:b7:39:2b:73:9b:5b:e9:af:da:7f:
b9:cc:af:6e:a4:ba:ff:c2:e9:f0:72:ee:8b:e8:a9:5f:d1:c5:
84:7d:04:f5:a8:6f:57:33:f2:3d:88:ad:d5:ae:6f:29:2d:57:
cd:c3:3e:0a:48:13:bb:10:3a:84:c7:66:ea:35:2b:e8:b6:bf:
e1:fe:77:f1:5f:6f:a6:1d:77:4b:17:e5:73:44:64:56:2d:90:
20:23:3c:d7:48:e8:af:e6:a7:38:56:8c:85:22:2d:e9:1a:9a:
4b:1e:9d:39:64:38:7c:0d:48:fa:0f:e6:70:6b:9e:ec:2c:91:
4c:fc:cb:8d:9b:28:a4:a0:7b:2f:20:c8:8c:71:31:b6:21:4e:
9f:32:45:33:cf:9a:d3:7b:c2:c0:92:fa:a6:21:22:75:c1:38:
55:4a:ea:42:08:18:0c:e1:85:3b:7e:d6:88:de:4b:95:54:35:
e5:45:79:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org