Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/QI207HcVa3m789nbqc2bBTXIDO4.roa
File: QI207HcVa3m789nbqc2bBTXIDO4.roa (raw, json)
Hash identifier: dzSbBiCBqMXalo5NkimDSKz7RdS0ck9JsTdZzBNSk1c=
Subject key identifier: 40:8D:B4:EC:77:15:6B:79:BB:F3:D9:DB:A9:CD:9B:05:35:C8:0C:EE
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 04589707
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/QI207HcVa3m789nbqc2bBTXIDO4.roa
Signing time: Sat 01 Jan 2022 06:01:11 +0000
ROA not before: Sat 01 Jan 2022 06:01:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49260
IP address blocks: 188.93.192.0/22 maxlen: 22
188.93.192.0/21 maxlen: 21
188.93.196.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72914695 (0x4589707)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Jan 1 06:01:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=408db4ec77156b79bbf3d9dba9cd9b0535c80cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:55:7a:db:49:f5:cb:3a:f5:64:9a:42:fe:02:
4a:d8:9e:5b:03:f5:29:d6:64:9a:96:aa:09:63:96:
61:0a:d2:69:2e:f7:b7:29:11:22:eb:7c:e9:9b:68:
ae:4a:fd:ec:fa:65:39:5a:db:3f:98:23:0f:a3:cb:
e3:4f:4e:61:80:40:ca:0b:54:57:b8:b0:9b:e8:47:
15:e8:3b:01:86:7c:0c:d2:be:83:9f:7f:b1:a4:07:
e4:1d:2e:1a:ea:c0:fc:4e:5d:54:48:7e:eb:66:1d:
37:35:62:b5:98:47:11:db:9d:d7:db:c1:70:45:63:
10:34:5f:cc:25:f7:c2:55:d0:eb:6e:7d:92:f4:2f:
a0:ae:4e:6b:e6:e8:0b:b6:2a:93:9d:1e:02:6a:a8:
8d:ac:cf:62:e0:cc:d5:01:fc:bd:73:30:dd:8e:4a:
6e:19:a1:b3:5c:b1:b6:da:52:bb:0a:23:dc:3a:a4:
51:ca:d2:60:2d:63:e8:2c:48:46:f1:bb:21:fc:e0:
d4:63:b1:3e:3e:eb:81:93:46:18:a1:86:4b:90:dc:
06:40:aa:29:0b:a3:07:96:c2:6a:33:87:94:86:6b:
c0:b5:79:e3:33:c1:d6:a5:6e:ba:c3:19:d3:68:f1:
0c:1a:c0:ea:2b:94:82:98:31:19:67:19:e9:23:3b:
39:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:8D:B4:EC:77:15:6B:79:BB:F3:D9:DB:A9:CD:9B:05:35:C8:0C:EE
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/QI207HcVa3m789nbqc2bBTXIDO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.192.0/21
Signature Algorithm: sha256WithRSAEncryption
a8:a4:5c:f8:2f:7f:15:28:1d:3c:ea:16:fb:2d:24:42:2c:ed:
42:48:3f:14:e5:21:5f:c7:59:8c:d6:8c:cb:bc:45:61:01:ec:
7e:7e:f2:3c:28:ef:74:c2:33:9e:55:28:4d:1f:34:62:0f:98:
77:cc:19:29:b0:2c:d0:62:da:1e:8f:25:d8:57:88:82:79:9c:
49:03:86:e9:11:c8:c1:02:4e:66:48:00:97:3d:ec:50:d2:74:
99:74:f7:44:6f:67:3a:60:26:35:f6:c5:ae:70:3f:10:1f:cf:
2a:23:12:80:81:f2:c0:18:76:a4:87:5c:6c:fc:4c:75:00:54:
65:f9:bf:2d:27:b2:a4:36:3a:a0:4e:d9:bf:47:dc:9d:21:58:
a7:1f:b8:ad:85:95:9a:b4:95:16:d6:72:73:5c:b3:a6:64:e6:
20:ab:1f:f6:c6:1c:88:1b:ff:b0:7c:a1:00:8e:57:11:f2:ef:
ea:79:d8:07:68:97:2f:96:26:d5:3d:be:5e:e6:35:ef:c3:35:
00:fe:24:94:4f:88:9c:1f:6f:b3:16:2f:ea:bb:22:e1:ac:b3:
9e:c0:35:1b:59:c6:bd:a2:cb:7f:5f:f6:67:1f:81:e0:12:cc:
1c:bb:9e:7c:d3:df:f2:8d:bb:5a:6b:9c:e5:2f:9f:78:5e:cc:
a2:c8:0d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:18 2024 by rpki-client on console-ams.rpki-client.org