Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/QAKm_5Xx6zmD8MlsRQKSjRy4BlQ.roa
File: QAKm_5Xx6zmD8MlsRQKSjRy4BlQ.roa (raw, json)
Hash identifier: 2RgguMThyXgVEL/bBikWKvCr4IPTE3JVJAqJs9kWeLU=
Subject key identifier: 40:02:A6:FF:95:F1:EB:39:83:F0:C9:6C:45:02:92:8D:1C:B8:06:54
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 139308E7
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/QAKm_5Xx6zmD8MlsRQKSjRy4BlQ.roa
Signing time: Sat 01 Jan 2022 05:56:26 +0000
ROA not before: Sat 01 Jan 2022 05:56:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213400
IP address blocks: 194.180.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 328403175 (0x139308e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4002a6ff95f1eb3983f0c96c4502928d1cb80654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cb:d6:a2:3f:1a:5e:41:dc:73:31:30:31:93:
93:e4:c3:a0:13:1e:d1:e0:9d:da:8d:e0:9e:75:16:
ec:d7:71:54:69:77:8e:e5:a4:82:62:2f:29:3c:6b:
0f:f2:b7:78:8d:5e:92:f5:b1:0d:14:73:48:65:56:
7e:61:45:ef:67:36:a6:6f:4b:b3:d7:8b:35:10:01:
85:16:a4:5e:15:da:01:43:bb:6b:95:fe:8a:65:fc:
76:dd:a7:2c:e7:9f:df:40:a3:f1:22:e4:99:79:11:
81:89:5c:1b:5b:f0:1e:7c:c1:33:51:36:d9:8a:9c:
b1:c2:37:cb:2c:9e:2c:82:bc:4e:06:8a:7d:f4:3b:
37:7e:0b:8c:9a:95:df:27:08:a4:19:15:60:3c:68:
55:90:78:f3:2a:f5:87:e8:9e:ea:73:38:f8:dc:d0:
ab:21:0e:64:04:ba:79:17:73:95:a7:18:95:58:8e:
b2:a0:43:8a:f3:73:08:2f:36:b2:59:1e:c8:16:46:
5f:46:02:41:d5:78:dd:11:42:85:15:8f:6a:20:8b:
05:73:81:e5:14:20:b6:75:e7:7a:49:a0:63:fa:46:
13:84:80:c4:22:50:57:3a:4b:98:07:ee:83:eb:e4:
22:9f:5a:19:a9:5f:27:35:f0:d3:6a:ba:d4:44:61:
f8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:02:A6:FF:95:F1:EB:39:83:F0:C9:6C:45:02:92:8D:1C:B8:06:54
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/QAKm_5Xx6zmD8MlsRQKSjRy4BlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.251.0/24
Signature Algorithm: sha256WithRSAEncryption
20:73:36:1b:9e:75:01:ad:f0:61:77:fd:db:68:f7:3f:3f:02:
76:4d:99:7c:fb:dc:bc:96:40:b8:9b:b6:bb:8e:91:59:02:4b:
a6:7d:a1:b1:79:8c:19:9f:df:a5:85:30:e5:e7:2b:b4:94:78:
c9:bd:d8:ef:78:6c:f2:69:25:05:60:64:6d:36:a9:a9:42:b4:
b5:1c:2c:c8:3e:3d:13:d0:70:d8:3c:66:e3:a0:22:f1:aa:45:
a8:0f:99:1f:01:ee:50:d7:2f:c6:be:f1:47:44:a6:97:cf:91:
84:48:d7:a1:c4:f8:a0:e1:f7:32:42:f0:5c:70:86:00:12:20:
06:4f:9d:a0:d4:1d:44:06:5e:78:eb:a2:db:3f:d1:8b:98:81:
75:5e:bf:ab:8f:3e:c7:59:e6:eb:e1:9a:41:47:e3:51:1e:4a:
9d:47:7c:fd:e4:13:d9:55:b0:40:df:67:22:42:83:c6:30:2f:
2f:47:37:22:c3:57:a3:bd:53:00:c2:2e:87:32:b9:bc:84:73:
af:75:6f:21:87:15:50:d8:1f:cc:7f:52:9d:0c:97:ad:4e:99:
fe:bc:ae:54:25:a7:96:71:4e:20:43:4b:ed:0f:a0:6d:77:44:
ad:4d:7d:6b:ea:be:6e:8e:bb:9e:a7:d4:6f:41:b2:d6:7e:1a:
73:09:0c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org