Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/7c07e8-3b8c-4c93-9a08-a909cb0a138f/1/QYwpzYUowtKRrJjhaM5BYKCRJfs.roa
File: QYwpzYUowtKRrJjhaM5BYKCRJfs.roa (raw, json)
Hash identifier: CdU7qorqu93zS+7wVEH/6PLAiuEbf3/MHkWKfnxPOn4=
Subject key identifier: 41:8C:29:CD:85:28:C2:D2:91:AC:98:E1:68:CE:41:60:A0:91:25:FB
Certificate issuer: /CN=a802b73ef4a8b6b0e0883a9c8bc6e7f012db93a0
Certificate serial: 01628C
Authority key identifier: A8:02:B7:3E:F4:A8:B6:B0:E0:88:3A:9C:8B:C6:E7:F0:12:DB:93:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qAK3PvSotrDgiDqci8bn8BLbk6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/7c07e8-3b8c-4c93-9a08-a909cb0a138f/1/QYwpzYUowtKRrJjhaM5BYKCRJfs.roa
Signing time: Tue 25 Jan 2022 12:14:41 +0000
ROA not before: Tue 25 Jan 2022 12:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44592
IP address blocks: 193.141.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90764 (0x1628c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a802b73ef4a8b6b0e0883a9c8bc6e7f012db93a0
Validity
Not Before: Jan 25 12:14:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=418c29cd8528c2d291ac98e168ce4160a09125fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:86:2d:8e:86:bd:67:db:b7:b6:5f:67:d7:7f:
08:b7:55:e3:8c:da:5e:0d:f7:b9:e8:a8:53:71:35:
c7:17:58:5e:c8:9b:27:c0:ff:aa:b9:b6:ff:d3:7b:
76:35:39:42:94:29:ca:33:7f:18:a5:b7:fc:ea:4d:
29:7a:93:35:c6:42:04:38:f4:11:91:f7:a4:df:a2:
6b:0e:e0:16:f5:32:06:32:9e:8c:b4:14:24:72:70:
d4:04:36:ec:fb:f4:e9:b0:0b:70:98:c8:8f:2a:d2:
34:26:76:3a:b9:5b:6f:42:61:d3:5d:1e:58:d1:d7:
5f:52:b1:3b:35:08:53:1d:1b:c1:22:4e:81:9f:30:
ab:4a:72:07:44:2c:a1:a9:40:e1:90:6e:ef:42:10:
fd:f4:45:19:a3:a9:28:7d:ef:5f:33:61:f9:65:04:
29:24:f9:da:f4:07:64:bc:b9:97:07:2b:bd:97:bd:
85:48:72:a6:ad:c4:9e:a7:75:93:3b:bb:71:62:c6:
9f:ed:2a:64:2a:4f:b4:e3:7d:c2:a0:e8:af:6f:78:
ea:f5:7b:22:c0:e6:01:74:e9:13:51:41:87:a1:b2:
b2:23:93:ab:9c:3b:ad:68:b1:f5:2f:b0:5b:39:33:
fc:52:52:65:15:ba:8a:5c:7b:ea:ba:3e:79:aa:2f:
0c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8C:29:CD:85:28:C2:D2:91:AC:98:E1:68:CE:41:60:A0:91:25:FB
X509v3 Authority Key Identifier:
keyid:A8:02:B7:3E:F4:A8:B6:B0:E0:88:3A:9C:8B:C6:E7:F0:12:DB:93:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qAK3PvSotrDgiDqci8bn8BLbk6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7c07e8-3b8c-4c93-9a08-a909cb0a138f/1/QYwpzYUowtKRrJjhaM5BYKCRJfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7c07e8-3b8c-4c93-9a08-a909cb0a138f/1/qAK3PvSotrDgiDqci8bn8BLbk6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.60.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:33:2e:de:67:62:f1:00:ad:bd:be:f9:62:91:cf:ce:27:04:
68:4f:47:23:e5:6f:81:79:ae:70:84:a3:50:3f:24:8f:53:6f:
88:aa:af:70:5a:2b:b1:88:d4:c9:9d:a1:3f:88:44:43:ab:be:
6e:96:e8:02:87:55:68:c3:5c:76:52:7d:be:4a:30:04:78:52:
97:dc:85:d0:1a:ed:82:5e:fc:5b:1b:d5:64:8f:e9:24:29:f0:
0c:15:00:9e:de:c4:46:b2:68:36:83:a7:af:3a:e4:f1:71:52:
6f:01:44:0a:a3:0a:ac:4a:67:52:fd:96:e6:bb:9b:47:d7:dd:
82:e7:32:78:a2:73:69:ca:b1:69:09:ed:77:c9:46:4f:70:32:
2f:58:a2:d8:e4:e1:d8:4e:8d:63:3e:7c:a9:0b:21:33:4d:ef:
e9:f7:9c:92:47:a3:00:7b:50:9b:46:31:1d:d7:40:e7:f6:fd:
7c:82:4d:43:3b:ee:6a:85:83:10:02:f3:51:f0:c1:83:ed:5c:
2e:28:f3:ad:57:82:1f:7d:21:9f:78:59:30:ac:f6:c4:16:69:
8e:5a:88:f6:62:97:76:af:1c:2d:e7:bb:05:4c:40:78:54:2c:
11:58:4e:cc:d7:10:ef:6d:8b:07:e8:bb:06:6b:43:ea:f4:9a:
c9:fa:a2:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:51 2024 by rpki-client on console-ams.rpki-client.org