Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/b25256-0b92-4048-af47-9c9330bd367e/1/QSpa0AQuFaAEuagUUIVwWzJK2lo.roa
File: QSpa0AQuFaAEuagUUIVwWzJK2lo.roa (raw, json)
Hash identifier: PuZqE31f80vOREYa3E+aK//eNn82yl29Y1IMbxvby+E=
Subject key identifier: 41:2A:5A:D0:04:2E:15:A0:04:B9:A8:14:50:85:70:5B:32:4A:DA:5A
Certificate issuer: /CN=bce1963a404a73240cad116b9688bf1310f2fe5a
Certificate serial: 015BF6DD
Authority key identifier: BC:E1:96:3A:40:4A:73:24:0C:AD:11:6B:96:88:BF:13:10:F2:FE:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vOGWOkBKcyQMrRFrloi_ExDy_lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/b25256-0b92-4048-af47-9c9330bd367e/1/QSpa0AQuFaAEuagUUIVwWzJK2lo.roa
Signing time: Sat 01 Jan 2022 01:02:14 +0000
ROA not before: Sat 01 Jan 2022 01:02:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33918
IP address blocks: 194.6.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22804189 (0x15bf6dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bce1963a404a73240cad116b9688bf1310f2fe5a
Validity
Not Before: Jan 1 01:02:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=412a5ad0042e15a004b9a8145085705b324ada5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:14:11:6b:84:c9:31:1b:58:d6:77:7e:e9:2d:
f6:c2:e9:46:1a:ec:dd:41:aa:0a:7f:15:63:f9:33:
a1:58:b0:38:5f:f7:f5:db:5b:a2:95:fa:41:0b:1a:
0e:44:2a:24:23:54:90:48:3d:d0:81:34:23:99:fd:
85:14:26:65:35:66:6c:d2:5b:70:35:5c:b3:8f:f8:
b2:44:da:3c:f0:37:77:4b:08:ff:f1:b1:1a:b3:8b:
0e:df:76:bf:cf:6c:8e:12:1a:0b:c4:b9:d8:6a:d2:
88:6b:51:3e:ed:61:74:77:d7:04:ee:3d:ee:af:89:
7e:6d:93:01:05:5c:ce:35:cd:23:e4:b1:1f:4c:5c:
2e:cd:2b:9a:28:a4:65:14:ab:56:32:a4:3a:ca:18:
52:3b:b3:1a:2f:71:47:c4:c9:49:b2:e2:5a:6e:89:
77:60:11:5e:b9:8e:c3:41:97:3f:9e:3a:ff:a0:a9:
49:8f:46:7f:51:44:51:12:b6:e9:87:e9:a6:4d:6d:
40:f1:83:f8:56:46:8c:2d:72:a5:ad:6c:b3:b5:de:
82:0b:96:4c:71:2f:c3:a8:5c:d2:08:3d:ab:35:70:
2f:36:97:f2:08:1c:48:6a:1f:99:ae:7a:e6:14:07:
76:00:08:60:5b:2e:ed:b7:a6:43:14:53:f4:bf:2e:
41:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2A:5A:D0:04:2E:15:A0:04:B9:A8:14:50:85:70:5B:32:4A:DA:5A
X509v3 Authority Key Identifier:
keyid:BC:E1:96:3A:40:4A:73:24:0C:AD:11:6B:96:88:BF:13:10:F2:FE:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vOGWOkBKcyQMrRFrloi_ExDy_lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/b25256-0b92-4048-af47-9c9330bd367e/1/QSpa0AQuFaAEuagUUIVwWzJK2lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/b25256-0b92-4048-af47-9c9330bd367e/1/vOGWOkBKcyQMrRFrloi_ExDy_lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.6.242.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:52:a1:3f:ae:e9:d8:a2:c7:93:88:3b:4e:56:78:9c:7b:4b:
1f:67:58:9e:59:4e:30:bb:f4:d2:70:92:de:c3:86:2b:04:70:
e9:4e:95:6e:53:ba:ec:d2:48:75:3f:fb:d9:fb:a5:a1:3a:ed:
7c:3b:b5:bf:bd:f4:da:22:cf:80:19:f3:bf:27:3a:3f:86:a6:
b5:dc:34:88:50:b8:54:cd:0d:9c:bd:57:0d:c7:81:dd:fe:43:
05:a1:69:22:7e:15:6b:ba:f2:39:d4:95:74:c2:17:a9:0b:4c:
de:ce:d4:d3:94:03:fa:05:2c:45:9c:05:1a:60:cf:f0:92:46:
b9:1a:22:8b:5b:46:57:f1:0c:4d:1e:f7:da:ec:e3:8e:8b:5b:
09:29:ac:a4:0b:22:c0:ab:a0:18:8e:38:fd:4e:0e:e0:7c:65:
4a:7b:99:9e:dd:c9:80:0e:b8:19:b7:7b:4f:c9:79:33:91:5f:
a1:81:9f:86:0c:cb:fe:f4:a9:d7:86:8e:f3:77:5e:19:a4:ce:
2c:0a:41:f1:1d:e5:1a:1c:ed:33:ac:d1:63:41:6a:25:ff:86:
fe:4d:ec:79:8a:af:cf:c9:4b:87:12:55:37:27:df:2e:c9:60:
da:93:4c:b9:1c:f9:e3:a9:07:ec:19:56:c4:eb:ff:42:21:45:
d8:b1:6a:87
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAVv23TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
Y2UxOTYzYTQwNGE3MzI0MGNhZDExNmI5Njg4YmYxMzEwZjJmZTVhMB4XDTIyMDEw
MTAxMDIxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDEyYTVhZDAwNDJl
MTVhMDA0YjlhODE0NTA4NTcwNWIzMjRhZGE1YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM4UEWuEyTEbWNZ3fukt9sLpRhrs3UGqCn8VY/kzoViwOF/3
9dtbopX6QQsaDkQqJCNUkEg90IE0I5n9hRQmZTVmbNJbcDVcs4/4skTaPPA3d0sI
//GxGrOLDt92v89sjhIaC8S52GrSiGtRPu1hdHfXBO497q+Jfm2TAQVczjXNI+Sx
H0xcLs0rmiikZRSrVjKkOsoYUjuzGi9xR8TJSbLiWm6Jd2ARXrmOw0GXP546/6Cp
SY9Gf1FEURK26Yfppk1tQPGD+FZGjC1ypa1ss7XegguWTHEvw6hc0gg9qzVwLzaX
8ggcSGofma565hQHdgAIYFsu7bemQxRT9L8uQZMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRBKlrQBC4VoAS5qBRQhXBbMkraWjAfBgNVHSMEGDAWgBS84ZY6QEpzJAyt
EWuWiL8TEPL+WjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZPR1dPa0JLY3lRTXJSRnJsb2lfRXhEeV9sby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTkvYjI1MjU2LTBiOTItNDA0OC1hZjQ3LTljOTMzMGJkMzY3ZS8x
L1FTcGEwQVF1RmFBRXVhZ1VVSVZ3V3pKSzJsby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTkv
YjI1MjU2LTBiOTItNDA0OC1hZjQ3LTljOTMzMGJkMzY3ZS8xL3ZPR1dPa0JLY3lR
TXJSRnJsb2lfRXhEeV9sby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMIG8jANBgkqhkiG9w0BAQsFAAOC
AQEAP1KhP67p2KLHk4g7TlZ4nHtLH2dYnllOMLv00nCS3sOGKwRw6U6VblO67NJI
dT/72fuloTrtfDu1v7302iLPgBnzvyc6P4amtdw0iFC4VM0NnL1XDceB3f5DBaFp
In4Va7ryOdSVdMIXqQtM3s7U05QD+gUsRZwFGmDP8JJGuRoii1tGV/EMTR732uzj
jotbCSmspAsiwKugGI44/U4O4HxlSnuZnt3JgA64Gbd7T8l5M5FfoYGfhgzL/vSp
14aO83deGaTOLApB8R3lGhztM6zRY0FqJf+G/k3seYqvz8lLhxJVNyffLslg2pNM
uRz546kH7BlWxOv/QiFF2LFqhw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:20 2024 by rpki-client on console-ams.rpki-client.org