Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/qmThiC0UX7MMCYnrGiGfoVuapXA.roa
File: qmThiC0UX7MMCYnrGiGfoVuapXA.roa (raw, json)
Hash identifier: SCLy0wH6TnvOAHoKlDeEkT1WnMo2LUCkKHK2GPTVbWE=
Subject key identifier: AA:64:E1:88:2D:14:5F:B3:0C:09:89:EB:1A:21:9F:A1:5B:9A:A5:70
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 15482CDA
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/qmThiC0UX7MMCYnrGiGfoVuapXA.roa
Signing time: Sat 04 Jun 2022 10:41:33 +0000
ROA not before: Sat 04 Jun 2022 10:41:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206582
IP address blocks: 193.31.104.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357051610 (0x15482cda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jun 4 10:41:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa64e1882d145fb30c0989eb1a219fa15b9aa570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e3:1c:70:e2:ba:64:f2:b1:52:c1:80:7e:d6:
8b:dc:33:7a:4c:b0:55:f4:33:d3:20:40:7d:6f:93:
ac:ed:48:c6:d5:98:e7:66:cf:76:04:89:3e:31:a3:
d6:64:6d:60:f2:c1:ff:33:0d:77:8d:75:82:d9:da:
94:2c:f1:f8:20:04:81:5f:e2:80:86:39:91:9a:fa:
d0:57:d2:2e:9a:bb:99:7d:4a:17:2b:b5:e6:ff:2d:
fb:a7:f1:dd:75:b9:b1:31:fb:e6:d0:09:55:d1:4b:
99:5d:19:02:cf:a8:ff:d6:92:f9:5c:73:5d:8f:3b:
10:33:ff:96:2d:3b:4f:48:b5:30:68:2b:a0:ee:11:
ec:10:6b:30:df:98:21:52:cd:95:14:ef:08:34:c3:
fe:e1:e3:41:52:64:2d:f7:01:af:54:9e:cc:51:85:
e0:44:63:a8:5b:0e:bd:fa:db:57:d9:67:dc:75:03:
43:14:4b:93:9e:06:07:39:fa:6c:f7:c7:6d:58:ef:
8b:83:f7:f1:90:94:22:ab:79:b3:e6:2e:b4:a7:4a:
0a:32:5b:3a:da:be:d9:e8:bc:b7:a1:f8:b7:a4:46:
6f:ad:c4:00:c0:70:0a:ea:44:32:31:87:8b:d3:8a:
29:7a:2a:da:2b:4b:74:95:24:05:78:78:0a:fe:97:
80:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:64:E1:88:2D:14:5F:B3:0C:09:89:EB:1A:21:9F:A1:5B:9A:A5:70
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/qmThiC0UX7MMCYnrGiGfoVuapXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.104.0/22
Signature Algorithm: sha256WithRSAEncryption
87:d6:d0:9c:1f:93:94:93:9f:40:f0:3a:e7:7d:90:36:e5:21:
7d:4a:d3:53:61:f4:8d:77:72:6f:01:52:46:a3:d4:dd:01:f2:
d2:81:9c:79:e2:cb:51:e8:b7:59:c3:e5:a8:a8:59:1b:cb:10:
98:0e:b7:b2:13:92:75:b6:6e:23:d4:a5:89:8f:68:5f:9e:7e:
01:ca:1d:d3:05:77:be:66:82:bc:20:1d:af:bb:80:ae:95:30:
00:3f:bf:1b:b5:37:56:a5:53:c1:ec:7b:86:ad:b5:04:fd:ff:
a5:20:18:05:71:eb:4b:77:eb:49:46:12:69:01:1d:7c:c9:98:
49:47:23:68:09:18:44:be:58:3e:22:8e:75:74:5d:24:f0:f4:
2c:5c:67:05:b2:fe:80:92:e1:a2:40:66:87:35:c6:0b:69:67:
b7:b7:c7:fb:98:ff:79:2d:c3:c7:99:9f:ce:97:e0:34:8e:ca:
63:e0:6f:64:08:bb:45:7c:7b:c0:1c:d5:dc:fc:8b:94:3d:03:
28:ac:0b:a3:62:72:65:6a:ad:0f:34:09:10:8e:ff:f6:83:5f:
46:a7:ca:a8:ef:a2:5c:b1:10:d6:44:cd:8e:31:62:90:31:20:
23:6b:29:ba:1d:bb:ce:df:4e:21:07:55:6e:97:84:3d:c7:66:
e5:fc:72:53
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFUgs2jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YmFiMzA2ODM4NTllYzdlMDIwNmZlOTI2NTM2M2U4ZTM5NzFhOWE4MB4XDTIyMDYw
NDEwNDEzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWE2NGUxODgyZDE0
NWZiMzBjMDk4OWViMWEyMTlmYTE1YjlhYTU3MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALDjHHDiumTysVLBgH7Wi9wzekywVfQz0yBAfW+TrO1IxtWY
52bPdgSJPjGj1mRtYPLB/zMNd411gtnalCzx+CAEgV/igIY5kZr60FfSLpq7mX1K
Fyu15v8t+6fx3XW5sTH75tAJVdFLmV0ZAs+o/9aS+VxzXY87EDP/li07T0i1MGgr
oO4R7BBrMN+YIVLNlRTvCDTD/uHjQVJkLfcBr1SezFGF4ERjqFsOvfrbV9ln3HUD
QxRLk54GBzn6bPfHbVjvi4P38ZCUIqt5s+YutKdKCjJbOtq+2ei8t6H4t6RGb63E
AMBwCupEMjGHi9OKKXoq2itLdJUkBXh4Cv6XgG8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSqZOGILRRfswwJiesaIZ+hW5qlcDAfBgNVHSMEGDAWgBSLqzBoOFnsfgIG
/pJlNj6OOXGpqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2k2c3dhRGhaN0g0Q0J2NlNaVFktampseHFhZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmIvODFmZDFhLTQ3YTctNDVkOC1iZTc0LTNhYzllNTZjMzA4OS8x
L3FtVGhpQzBVWDdNTUNZbnJHaUdmb1Z1YXBYQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIv
ODFmZDFhLTQ3YTctNDVkOC1iZTc0LTNhYzllNTZjMzA4OS8xL2k2c3dhRGhaN0g0
Q0J2NlNaVFktampseHFhZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsEfaDANBgkqhkiG9w0BAQsFAAOC
AQEAh9bQnB+TlJOfQPA6532QNuUhfUrTU2H0jXdybwFSRqPU3QHy0oGceeLLUei3
WcPlqKhZG8sQmA63shOSdbZuI9SliY9oX55+Acod0wV3vmaCvCAdr7uArpUwAD+/
G7U3VqVTwex7hq21BP3/pSAYBXHrS3frSUYSaQEdfMmYSUcjaAkYRL5YPiKOdXRd
JPD0LFxnBbL+gJLhokBmhzXGC2lnt7fH+5j/eS3Dx5mfzpfgNI7KY+BvZAi7RXx7
wBzV3PyLlD0DKKwLo2JyZWqtDzQJEI7/9oNfRqfKqO+iXLEQ1kTNjjFikDEgI2sp
uh27zt9OIQdVbpeEPcdm5fxyUw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-fra.rpki-client.org