Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/quZhqM6w2hkz-sM2iGE9PK12L1s.roa
File: quZhqM6w2hkz-sM2iGE9PK12L1s.roa (raw, json)
Hash identifier: XOCxOuQGwNIgXvIj/tmTeLGCe9Sqto5hG87utDeOpIo=
Subject key identifier: AA:E6:61:A8:CE:B0:DA:19:33:FA:C3:36:88:61:3D:3C:AD:76:2F:5B
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 0182106D76D39103F9377829023D4BCD18A8
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/quZhqM6w2hkz-sM2iGE9PK12L1s.roa
Signing time: Mon 18 Jul 2022 08:29:45 +0000
ROA not before: Mon 18 Jul 2022 08:29:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 194.107.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:10:6d:76:d3:91:03:f9:37:78:29:02:3d:4b:cd:18:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Jul 18 08:29:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aae661a8ceb0da1933fac33688613d3cad762f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7e:b5:28:eb:70:90:83:ef:9e:08:ae:67:d4:
68:d6:80:50:76:d0:6b:81:f8:c9:31:d2:39:7c:03:
fe:38:3f:74:42:fc:86:e6:fc:fa:29:ea:38:32:cf:
f7:2c:a7:61:81:55:78:83:e9:99:76:68:c0:db:ad:
8c:5f:27:16:a0:3b:6c:25:44:9a:b5:80:7d:be:a1:
5f:a2:e1:f7:37:ad:02:62:92:37:56:2c:aa:e3:02:
52:f2:96:9b:3e:91:f1:51:ec:22:40:52:87:fe:d6:
fa:ee:fb:54:81:c7:19:95:cb:6a:98:c6:eb:e1:6f:
7b:44:41:50:7a:d8:d9:4c:7f:2b:c0:d1:18:f3:f2:
54:0e:09:a9:cc:b9:ee:1e:ca:ad:00:c8:a8:3b:18:
03:09:66:cf:ee:c0:3e:c3:b1:6f:51:b7:ca:49:58:
9e:44:7d:ba:08:86:de:2b:70:bc:d4:ce:bf:d3:61:
69:e6:4e:b2:11:9f:3b:4e:db:03:91:e6:24:95:a6:
9a:91:4a:83:1d:27:28:07:87:32:6d:28:24:d5:c6:
9c:9a:8b:06:e9:c4:ea:84:de:c9:66:3d:27:7c:0a:
61:22:64:8d:66:ed:d3:eb:50:a8:24:b7:f2:b2:71:
4b:d0:d6:08:5b:41:10:7e:d1:1a:2b:74:d8:c3:24:
be:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E6:61:A8:CE:B0:DA:19:33:FA:C3:36:88:61:3D:3C:AD:76:2F:5B
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/quZhqM6w2hkz-sM2iGE9PK12L1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.160.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:3f:f3:bc:f9:76:e1:dc:73:a0:e0:e3:64:20:50:20:98:f7:
d0:ad:04:06:0e:f1:ed:21:e6:6b:c5:e6:18:fd:ab:8d:1e:29:
37:49:bf:91:80:7e:0c:47:be:47:ce:e8:bb:72:d2:38:74:2e:
e5:ff:0d:dc:57:8a:ad:93:26:6c:fc:a0:60:4a:1b:8b:d2:5e:
78:36:9e:91:99:f0:d6:49:47:64:f6:2a:c3:42:81:e4:dd:1b:
ee:13:18:d8:bf:dc:b4:9e:f2:c5:a9:da:1d:55:13:90:e1:e7:
61:f7:97:e6:67:d4:f9:11:06:df:e1:a1:2b:42:20:c3:cc:0e:
3f:eb:00:39:83:69:d4:e9:dc:83:cf:f6:fd:bb:e8:8d:f8:65:
af:5e:cd:c4:a7:b7:bd:5c:e1:4a:10:59:5f:3e:12:0b:92:58:
ee:a1:66:dd:b5:b1:20:2b:39:91:6c:12:a2:42:97:c8:ca:a4:
aa:2b:54:c1:29:dc:fb:6a:5f:b4:21:32:e6:67:f0:cf:bb:c5:
c2:9b:bf:3d:b1:44:2a:c5:80:d8:d3:af:d6:54:1e:c3:da:10:
c3:e0:3c:a3:c3:bd:4d:66:cd:97:73:f5:ce:c6:10:95:6c:93:
23:b7:1e:6c:ac:ca:12:95:02:9e:e0:17:ee:18:df:c1:13:b6:
23:4b:20:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:12 2024 by rpki-client on console-fra.rpki-client.org