Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/868832-9bc8-433c-a54e-cd4d2f163c32/1/qEZWrpZDVsqW2hT5TsR8d8bi4Us.roa
File: qEZWrpZDVsqW2hT5TsR8d8bi4Us.roa (raw, json)
Hash identifier: 23iSzxcY2vGXVTxFYPtEiKHYIqQypvQJNyB97FUfj2Y=
Subject key identifier: A8:46:56:AE:96:43:56:CA:96:DA:14:F9:4E:C4:7C:77:C6:E2:E1:4B
Certificate issuer: /CN=c13ebd29c69ff0a2b33dac6d86b488ba50c9e888
Certificate serial: 01821A560C817A6497942253924032E1FA8A
Authority key identifier: C1:3E:BD:29:C6:9F:F0:A2:B3:3D:AC:6D:86:B4:88:BA:50:C9:E8:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wT69Kcaf8KKzPaxthrSIulDJ6Ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/868832-9bc8-433c-a54e-cd4d2f163c32/1/qEZWrpZDVsqW2hT5TsR8d8bi4Us.roa
Signing time: Wed 20 Jul 2022 06:40:23 +0000
ROA not before: Wed 20 Jul 2022 06:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50344
IP address blocks: 193.104.236.0/24 maxlen: 24
2001:67c:26fc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:56:0c:81:7a:64:97:94:22:53:92:40:32:e1:fa:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c13ebd29c69ff0a2b33dac6d86b488ba50c9e888
Validity
Not Before: Jul 20 06:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a84656ae964356ca96da14f94ec47c77c6e2e14b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:6f:5a:0c:e3:e5:5f:63:a0:b5:ed:cd:fe:61:
af:0d:0a:81:b6:3b:8b:03:fd:33:f2:9d:b5:77:36:
ce:b0:7a:92:ee:ab:89:5d:50:e6:dd:31:ca:4c:c9:
a2:7e:27:8f:d5:c5:53:48:3a:43:5c:84:0c:a3:cd:
65:98:f8:cb:36:5e:97:3a:77:bd:01:55:48:18:93:
9a:1c:9a:d0:1c:05:df:3c:89:0a:66:c2:2b:47:e7:
30:5c:55:77:43:1d:6a:95:6a:84:0b:22:f4:6c:3b:
98:d7:d7:96:46:60:5a:58:4f:23:14:d9:ca:1a:ca:
c2:dd:f0:05:df:d8:92:ca:73:2a:ec:35:ad:bd:01:
0f:25:7e:17:ac:2e:e6:51:c5:6c:32:73:e3:16:a7:
bd:f1:73:79:48:95:dc:a0:22:31:47:ef:9c:35:c3:
ba:29:85:25:4a:c4:01:e3:1f:d1:a1:66:57:60:85:
c9:a9:b7:80:02:b7:a1:d4:57:2b:3c:e4:48:93:0e:
20:b0:c3:8b:7c:67:93:1c:06:07:20:2e:e9:84:d9:
36:65:09:6c:c5:5b:35:ce:fb:e3:5c:11:fe:57:58:
e8:08:91:fe:7e:b2:92:2e:e8:d3:4f:68:da:3b:87:
7a:46:9e:4a:d8:e5:51:cc:32:10:7a:08:07:a4:d9:
d9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:46:56:AE:96:43:56:CA:96:DA:14:F9:4E:C4:7C:77:C6:E2:E1:4B
X509v3 Authority Key Identifier:
keyid:C1:3E:BD:29:C6:9F:F0:A2:B3:3D:AC:6D:86:B4:88:BA:50:C9:E8:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wT69Kcaf8KKzPaxthrSIulDJ6Ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/868832-9bc8-433c-a54e-cd4d2f163c32/1/qEZWrpZDVsqW2hT5TsR8d8bi4Us.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/868832-9bc8-433c-a54e-cd4d2f163c32/1/wT69Kcaf8KKzPaxthrSIulDJ6Ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.236.0/24
IPv6:
2001:67c:26fc::/48
Signature Algorithm: sha256WithRSAEncryption
3a:ff:2c:95:f2:0e:1e:e7:b9:aa:75:2b:e1:ab:16:65:64:cb:
75:4d:8f:77:c8:d3:e3:03:ba:e4:24:81:e9:30:f4:eb:00:68:
75:38:d8:19:d9:c1:97:87:6e:2b:4d:d2:af:ea:95:d5:fb:0f:
5f:0c:83:32:69:bb:7b:1d:95:7b:5b:e7:9a:e3:f3:82:04:5b:
72:08:66:e1:41:f4:5d:da:65:de:c0:ff:72:18:33:ac:73:a3:
30:eb:d1:80:88:17:6e:48:81:66:fa:11:50:ac:4f:09:98:a1:
2c:d8:e7:3e:a6:ec:2c:3e:4a:2e:b1:2e:bf:2e:76:37:ae:69:
64:ff:d6:31:45:5c:b2:59:79:78:b2:b0:50:cd:3d:9e:cc:b4:
87:d2:f0:5e:00:fc:67:65:b8:aa:66:04:a4:e2:0d:a8:b5:b6:
80:68:eb:40:45:a8:4f:a7:ed:f0:a1:c4:e2:c8:b2:8e:fa:2f:
bc:f4:9f:ee:c7:d1:95:41:85:8f:b8:d2:74:6a:82:7c:39:4d:
72:9b:44:a8:3f:03:e3:96:15:85:df:36:44:80:a3:5c:00:f8:
94:00:44:bd:d3:52:24:6c:16:9d:99:52:b6:2b:9c:0a:ba:89:
0d:e9:ef:28:7d:da:e0:dc:cb:73:d1:7a:3f:c5:a0:99:ee:2c:
7d:b7:32:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:54 2023 by rpki-client on console-ams.rpki-client.org