Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/qLZsTWXKRwfDPPFdtK2UXrMOGz4.roa
File: qLZsTWXKRwfDPPFdtK2UXrMOGz4.roa (raw, json)
Hash identifier: xkgMHUqJcWA8aMU1xzcr+vKv/UbUgU8j6ndjrbpe8mw=
Subject key identifier: A8:B6:6C:4D:65:CA:47:07:C3:3C:F1:5D:B4:AD:94:5E:B3:0E:1B:3E
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01853B6A3846759088CE6F37BD328368F354
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/qLZsTWXKRwfDPPFdtK2UXrMOGz4.roa
Signing time: Thu 22 Dec 2022 19:58:14 +0000
ROA not before: Thu 22 Dec 2022 19:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 193.239.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:3b:6a:38:46:75:90:88:ce:6f:37:bd:32:83:68:f3:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Dec 22 19:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8b66c4d65ca4707c33cf15db4ad945eb30e1b3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:57:d6:2c:b1:f4:7a:c8:5d:09:63:6e:5b:e9:
de:39:76:ee:f5:76:6c:c3:76:69:45:ab:9f:46:2f:
0e:1b:5a:05:71:92:a2:d3:ea:57:3e:44:8d:cf:dc:
a2:99:57:19:68:9e:b3:57:27:fd:80:ea:f4:15:bd:
83:80:5f:21:12:23:2c:65:4e:4e:c1:c3:7e:8c:25:
37:29:c1:1a:f7:70:ca:33:14:b9:b9:84:ae:7f:12:
4b:38:0e:35:4e:8e:df:59:39:47:5a:8c:04:cc:18:
5e:b6:8a:f2:82:58:76:a2:48:8e:bc:28:38:b1:d8:
af:ec:7b:13:5a:d4:6b:db:24:88:f3:d0:03:cf:0d:
7e:e2:ac:19:40:1e:e5:2d:4c:7b:66:2f:6a:f8:21:
85:1f:5f:88:5c:2c:1c:b7:fe:4e:e6:e6:04:ab:df:
2e:9c:21:83:a3:3f:5b:74:71:df:c2:8c:c6:e3:64:
0f:31:91:ec:a8:73:a5:0f:8e:8f:5c:17:a6:a0:17:
cd:07:63:2e:64:94:c4:32:6e:c9:67:b4:7b:31:33:
ec:79:f4:ce:06:4a:dd:25:c0:c5:8d:0d:43:a7:a8:
61:94:34:40:bd:08:83:af:e0:d7:40:b1:60:95:5d:
6d:36:ef:c7:5d:8d:50:db:11:42:6c:ee:80:96:24:
92:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B6:6C:4D:65:CA:47:07:C3:3C:F1:5D:B4:AD:94:5E:B3:0E:1B:3E
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/qLZsTWXKRwfDPPFdtK2UXrMOGz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.236.0/24
Signature Algorithm: sha256WithRSAEncryption
81:2b:8a:5e:80:9f:3f:1d:d6:fe:26:a5:86:74:e2:20:02:71:
33:6e:d7:b9:cf:b9:eb:fd:38:00:19:41:60:fa:78:90:c4:60:
4c:71:d0:05:c6:11:24:58:64:a9:57:08:d5:7c:f0:29:11:6a:
0e:48:7f:5c:ca:37:29:fa:78:6c:b4:05:ac:e1:8a:c7:f6:39:
e8:1d:8b:8a:4b:86:f9:c6:cb:5d:52:fc:c3:3d:bc:31:c5:1d:
81:88:94:11:21:ff:15:a8:eb:76:16:5a:64:8b:cc:f5:df:1c:
e8:b7:e7:a3:e7:c5:14:8b:b7:c1:8b:9f:c6:04:f5:e6:bd:d5:
21:6e:e6:76:25:5b:4a:5f:07:b8:be:0b:73:b9:08:dc:6d:0f:
da:76:7e:4e:11:39:4a:40:c2:61:ff:5e:1c:91:7d:5a:6b:29:
c6:e7:f9:2f:fe:a0:fc:35:79:59:85:1f:d2:86:ce:c8:60:f3:
b8:58:1b:ca:40:9f:d2:12:4b:16:35:4d:26:25:7f:22:ac:23:
43:bb:8c:cb:b7:e8:54:c0:80:7a:3e:01:ff:92:b8:bc:e3:39:
fc:0d:63:52:36:62:4f:60:dc:a0:e7:56:5f:d9:f5:56:00:84:
80:a1:88:9d:12:74:67:65:1e:08:e2:71:29:fa:57:05:08:87:
c7:83:01:ce
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYU7ajhGdZCIzm83vTKDaPNUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTA3YWI2OTIxZWY4Y2IyZGVjYTNlYjc2NjQ3OGNmZjNl
NWZjNmQwHhcNMjIxMjIyMTk1ODE0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOGI2NmM0ZDY1Y2E0NzA3YzMzY2YxNWRiNGFkOTQ1ZWIzMGUxYjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FfWLLH0eshdCWNuW+neOXbu9XZs
w3ZpRaufRi8OG1oFcZKi0+pXPkSNz9yimVcZaJ6zVyf9gOr0Fb2DgF8hEiMsZU5O
wcN+jCU3KcEa93DKMxS5uYSufxJLOA41To7fWTlHWowEzBhetoryglh2okiOvCg4
sdiv7HsTWtRr2ySI89ADzw1+4qwZQB7lLUx7Zi9q+CGFH1+IXCwct/5O5uYEq98u
nCGDoz9bdHHfwozG42QPMZHsqHOlD46PXBemoBfNB2MuZJTEMm7JZ7R7MTPsefTO
BkrdJcDFjQ1Dp6hhlDRAvQiDr+DXQLFglV1tNu/HXY1Q2xFCbO6AliSSiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKi2bE1lykcHwzzxXbStlF6zDhs+MB8GA1UdIwQY
MBaAFCgQeraSHvjLLeyj63ZkeM/z5fxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzIt
YzBmYjNlZjc2NDBlLzEvcUxac1RXWEtSd2ZEUFBGZHRLMlVYck1PR3o0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzItYzBmYjNlZjc2NDBl
LzEvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwe/sMA0G
CSqGSIb3DQEBCwUAA4IBAQCBK4pegJ8/Hdb+JqWGdOIgAnEzbte5z7nr/TgAGUFg
+niQxGBMcdAFxhEkWGSpVwjVfPApEWoOSH9cyjcp+nhstAWs4YrH9jnoHYuKS4b5
xstdUvzDPbwxxR2BiJQRIf8VqOt2Flpki8z13xzot+ej58UUi7fBi5/GBPXmvdUh
buZ2JVtKXwe4vgtzuQjcbQ/adn5OETlKQMJh/14ckX1aaynG5/kv/qD8NXlZhR/S
hs7IYPO4WBvKQJ/SEksWNU0mJX8irCNDu4zLt+hUwIB6PgH/kri84zn8DWNSNmJP
YNyg51Zf2fVWAISAoYidEnRnZR4I4nEp+lcFCIfHgwHO
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:15 2023 by rpki-client on console-ams.rpki-client.org