Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/e5dbf8-b41d-4acd-96ac-8f59cf016466/1/QH29Xcn9xmieic6qw3pac0jj6YQ.roa
File: QH29Xcn9xmieic6qw3pac0jj6YQ.roa (raw, json)
Hash identifier: loR7js5Z9K8f4nM99KP/hjDxL4wFLsoycTsrgyZWSh8=
Subject key identifier: 40:7D:BD:5D:C9:FD:C6:68:9E:89:CE:AA:C3:7A:5A:73:48:E3:E9:84
Certificate issuer: /CN=6aae7bc8d33163cc4b6dda171a387ff98022a0f6
Certificate serial: 047A7991
Authority key identifier: 6A:AE:7B:C8:D3:31:63:CC:4B:6D:DA:17:1A:38:7F:F9:80:22:A0:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aq57yNMxY8xLbdoXGjh_-YAioPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/e5dbf8-b41d-4acd-96ac-8f59cf016466/1/QH29Xcn9xmieic6qw3pac0jj6YQ.roa
Signing time: Sat 01 Jan 2022 01:01:52 +0000
ROA not before: Sat 01 Jan 2022 01:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202803
IP address blocks: 193.138.4.0/23 maxlen: 23
193.138.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75135377 (0x47a7991)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aae7bc8d33163cc4b6dda171a387ff98022a0f6
Validity
Not Before: Jan 1 01:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=407dbd5dc9fdc6689e89ceaac37a5a7348e3e984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a1:2a:e3:85:1f:a0:05:e8:1a:33:92:5c:db:
6c:2b:10:41:3e:f4:0d:a5:d5:f1:0a:2d:1a:34:33:
4c:fb:72:a2:a2:cd:4c:5e:b5:6c:11:19:55:9f:cf:
36:85:d3:9f:76:ae:a3:68:2b:08:5a:0f:8b:f2:69:
ab:bc:45:4a:29:60:4f:8d:0f:42:04:84:f8:e3:8c:
dd:bf:d6:11:a6:0f:e7:cf:ad:02:ab:14:c9:c1:53:
bf:59:6a:56:4f:3e:9c:dc:3a:24:e8:9a:eb:bc:f8:
94:58:9d:25:8e:2a:9f:8e:37:46:17:d3:c6:75:2c:
97:09:01:45:3d:69:37:b7:33:9d:65:15:82:e3:0b:
3d:9d:b9:34:ee:e2:33:33:d8:f1:64:2f:ee:ad:41:
12:08:a5:43:2f:0e:56:07:70:5e:10:18:0b:3d:e9:
5b:37:4b:c9:ad:75:aa:94:de:7a:a5:f7:63:6e:97:
03:0f:c4:20:ba:0c:23:21:c6:6b:22:90:0c:bb:7d:
3b:a9:76:33:93:df:f0:c2:50:d7:73:a0:45:a8:73:
48:d9:31:db:a2:37:59:fe:bf:48:2e:c1:77:11:9b:
e0:d6:84:7f:3b:c2:e8:c9:e8:c7:ae:01:6c:42:30:
4a:5a:b1:b8:af:06:a9:74:ef:d3:4b:9e:bc:34:8c:
f0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:7D:BD:5D:C9:FD:C6:68:9E:89:CE:AA:C3:7A:5A:73:48:E3:E9:84
X509v3 Authority Key Identifier:
keyid:6A:AE:7B:C8:D3:31:63:CC:4B:6D:DA:17:1A:38:7F:F9:80:22:A0:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aq57yNMxY8xLbdoXGjh_-YAioPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e5dbf8-b41d-4acd-96ac-8f59cf016466/1/QH29Xcn9xmieic6qw3pac0jj6YQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e5dbf8-b41d-4acd-96ac-8f59cf016466/1/aq57yNMxY8xLbdoXGjh_-YAioPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.4.0/23
193.138.120.0/23
Signature Algorithm: sha256WithRSAEncryption
68:2a:cf:ef:4a:9c:bc:aa:31:16:e0:7c:13:f6:8f:84:8a:03:
ae:dd:8b:1f:7e:27:87:f8:41:91:cb:e1:fb:14:bd:c5:1c:94:
35:0f:e8:cc:9b:fc:29:fc:04:9f:6d:33:9e:a2:48:39:4b:63:
f6:06:f3:3c:f2:05:4b:eb:71:12:6f:87:89:38:e5:fa:29:ab:
cc:ce:11:66:bc:c2:29:3b:97:2a:24:93:61:91:06:2d:6c:01:
31:7a:f0:09:0f:a5:d3:43:88:2e:90:a7:4b:bf:9c:bd:52:ea:
2c:94:f7:d9:78:ee:a2:1a:b9:6b:7b:90:52:4b:dc:f0:76:95:
df:f5:e4:22:59:db:22:58:aa:ba:04:32:b1:b5:a3:23:99:97:
bb:29:4b:82:9c:4d:5f:ff:d9:e4:1b:89:40:cf:aa:3a:0d:8c:
01:74:98:9c:db:d4:4d:9c:d6:20:b7:14:04:a7:35:9a:ce:c5:
85:06:49:ff:eb:08:59:b7:e2:b8:a2:44:8b:7c:f7:d6:b8:21:
43:e4:68:1d:a9:41:ec:72:79:fd:4d:44:63:68:5e:24:4d:88:
61:00:29:35:2b:af:e0:c3:98:7d:8f:da:30:07:6b:7b:58:e6:
f5:86:69:70:e2:12:ec:de:2f:9d:b7:84:1a:e7:60:e4:9b:7f:
29:c8:a9:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:14 2024 by rpki-client on console-fra.rpki-client.org