Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/afd611-9ac0-414e-be44-523e445f90dc/1/QZz-aSE67JAtRenHoCYlXaaZxi8.roa
File: QZz-aSE67JAtRenHoCYlXaaZxi8.roa (raw, json)
Hash identifier: webHb2uEsGxfCdEcsb/qltmaI03fuWnNQF/6ZTJzOeY=
Subject key identifier: 41:9C:FE:69:21:3A:EC:90:2D:45:E9:C7:A0:26:25:5D:A6:99:C6:2F
Certificate issuer: /CN=edc3df046e1e1d5bf0522bb913f2957287a49b4b
Certificate serial: 01855D901509FE87CCCAB45B1A61085DBA43
Authority key identifier: ED:C3:DF:04:6E:1E:1D:5B:F0:52:2B:B9:13:F2:95:72:87:A4:9B:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7cPfBG4eHVvwUiu5E_KVcoekm0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/afd611-9ac0-414e-be44-523e445f90dc/1/QZz-aSE67JAtRenHoCYlXaaZxi8.roa
Signing time: Thu 29 Dec 2022 11:06:41 +0000
ROA not before: Thu 29 Dec 2022 11:06:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200916
IP address blocks: 193.100.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:90:15:09:fe:87:cc:ca:b4:5b:1a:61:08:5d:ba:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edc3df046e1e1d5bf0522bb913f2957287a49b4b
Validity
Not Before: Dec 29 11:06:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=419cfe69213aec902d45e9c7a026255da699c62f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5e:4b:28:eb:2c:23:14:65:dc:2f:06:4b:a3:
ca:e6:69:11:3a:c2:6f:cb:e9:dc:18:ae:26:fe:bf:
47:a6:4e:a5:4a:74:72:51:99:bd:ee:37:02:47:21:
f5:67:3f:28:72:1e:3c:07:01:91:b3:8e:49:8c:72:
b5:a3:29:4f:ba:b3:09:1b:07:aa:d5:a8:eb:f2:62:
63:3c:86:e7:16:43:2e:e2:45:75:2d:a5:9c:d7:95:
30:75:bb:be:25:c0:e0:b1:96:ce:7a:ed:06:01:f6:
41:95:7b:e5:16:cc:eb:9f:98:4d:5f:5b:16:45:6f:
1a:28:05:29:b3:f6:82:07:d4:08:e2:53:ba:4f:58:
e6:12:ef:41:d5:38:66:70:59:25:92:9b:2b:55:91:
ed:b9:dc:e4:71:15:70:08:9c:39:2e:5e:e7:35:d1:
17:d4:24:45:9f:37:4f:2c:db:f4:0c:2f:ef:45:3c:
eb:15:eb:b1:92:1e:08:11:95:16:09:5a:93:de:4f:
12:24:c5:9e:70:cf:ad:ad:24:21:46:77:ba:c1:db:
4f:56:e1:32:ef:46:ec:e0:0d:f0:46:0b:92:05:59:
83:b7:d7:09:49:46:dd:da:f7:2c:53:68:c6:59:22:
6d:9c:2b:79:3e:43:a5:41:e4:6d:f8:01:d5:7d:de:
f8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:9C:FE:69:21:3A:EC:90:2D:45:E9:C7:A0:26:25:5D:A6:99:C6:2F
X509v3 Authority Key Identifier:
keyid:ED:C3:DF:04:6E:1E:1D:5B:F0:52:2B:B9:13:F2:95:72:87:A4:9B:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7cPfBG4eHVvwUiu5E_KVcoekm0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/afd611-9ac0-414e-be44-523e445f90dc/1/QZz-aSE67JAtRenHoCYlXaaZxi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/afd611-9ac0-414e-be44-523e445f90dc/1/7cPfBG4eHVvwUiu5E_KVcoekm0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.100.167.0/24
Signature Algorithm: sha256WithRSAEncryption
10:54:6e:b6:64:cb:b1:d0:cf:ef:7a:33:9c:ed:e6:50:30:2c:
b9:14:95:f1:ef:5b:3b:68:bc:00:15:e3:8d:05:30:8b:96:1c:
b3:f6:89:7e:ba:aa:cb:a4:c5:3b:09:ca:85:89:07:1d:21:5c:
89:fd:0b:1e:0f:4c:73:0a:41:4a:09:e1:3b:c5:db:56:27:27:
8b:16:bb:9d:84:cf:f9:ce:17:b5:42:9e:84:c7:9f:7c:53:d2:
a0:21:55:61:c4:37:43:60:60:c3:a4:bb:45:23:88:fc:54:1e:
34:d0:c9:05:f6:d5:65:54:35:9d:9d:bd:1a:85:d8:22:75:52:
9e:75:26:e2:87:be:ec:3e:9b:8d:65:9f:c1:1f:a2:90:13:11:
a6:95:e2:87:32:e7:a9:49:2b:cc:cd:fd:7e:ad:b1:9e:cb:a0:
7f:dd:14:27:ad:5f:a3:e4:0f:b5:1e:b1:7d:a5:dc:2e:99:eb:
9a:29:4c:12:75:0b:66:9e:f8:9a:19:46:88:d2:d5:2c:2e:09:
26:d6:b7:58:ca:35:73:43:6c:76:d0:81:e0:82:76:75:fe:ba:
41:7c:a7:a3:06:dc:f2:ee:f3:61:8b:fb:42:ee:69:85:eb:a7:
88:0e:01:97:ab:d8:30:40:f7:d5:49:b4:35:bd:16:bb:00:bf:
b4:7b:1c:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:04 2024 by rpki-client on console-fra.rpki-client.org