Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/QPTVmzogsnbqobb-1XdJuuVMFZQ.roa
File: QPTVmzogsnbqobb-1XdJuuVMFZQ.roa (raw, json)
Hash identifier: l4iiQeHi2Abe9Q+sIfiXplV8EOyUgIQc+ZjR97v5v00=
Subject key identifier: 40:F4:D5:9B:3A:20:B2:76:EA:A1:B6:FE:D5:77:49:BA:E5:4C:15:94
Certificate issuer: /CN=6e831066ea8fe20b067a136006b7af906633843b
Certificate serial: 0185719E5E6B150753931C16E26D6B403E7A
Authority key identifier: 6E:83:10:66:EA:8F:E2:0B:06:7A:13:60:06:B7:AF:90:66:33:84:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/QPTVmzogsnbqobb-1XdJuuVMFZQ.roa
Signing time: Mon 02 Jan 2023 08:34:42 +0000
ROA not before: Mon 02 Jan 2023 08:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49923
IP address blocks: 193.104.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:5e:6b:15:07:53:93:1c:16:e2:6d:6b:40:3e:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e831066ea8fe20b067a136006b7af906633843b
Validity
Not Before: Jan 2 08:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40f4d59b3a20b276eaa1b6fed57749bae54c1594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7e:bb:42:f2:22:96:12:37:df:8f:94:1c:9a:
ed:14:a8:75:17:39:50:4f:d7:70:78:7a:22:7f:6e:
bd:08:d2:fe:9a:11:bd:ea:fe:97:d2:88:39:e0:d4:
a7:de:38:79:d8:79:8e:0f:0d:dd:0f:98:c9:79:2d:
29:56:20:c9:ee:4d:b8:6c:f8:3a:50:6e:1d:d6:82:
f5:dd:53:e7:37:ba:7b:0d:36:22:88:61:3b:dc:ec:
bd:d3:73:5b:3e:09:20:5a:e3:71:2e:08:cc:98:8a:
14:6b:0e:59:9d:f0:b9:79:7f:6d:08:c7:4d:b9:a9:
ab:06:24:97:44:97:da:90:70:6e:46:2c:a7:72:72:
cb:eb:29:66:79:e7:a1:de:dc:68:d7:17:40:80:24:
cf:19:e0:d9:42:ac:e2:80:33:89:62:5c:24:1d:16:
b4:b8:97:23:6a:cd:2e:6d:4a:6d:14:bd:78:ee:a7:
26:34:21:b8:c0:12:e9:75:d2:9e:2b:08:ce:0e:7d:
ab:60:29:5a:6c:4c:68:e1:61:e9:d6:0b:b7:c2:17:
89:09:aa:59:c3:78:1b:b9:ff:7d:0e:c3:b6:2a:b5:
13:ef:d1:28:28:34:22:92:4e:52:b5:34:f7:a5:15:
4e:54:a1:1e:30:9d:7f:65:eb:8a:33:8b:91:f5:23:
4f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:F4:D5:9B:3A:20:B2:76:EA:A1:B6:FE:D5:77:49:BA:E5:4C:15:94
X509v3 Authority Key Identifier:
keyid:6E:83:10:66:EA:8F:E2:0B:06:7A:13:60:06:B7:AF:90:66:33:84:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/QPTVmzogsnbqobb-1XdJuuVMFZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.48.0/24
Signature Algorithm: sha256WithRSAEncryption
20:1d:5c:d3:1c:bd:ea:b1:a9:8f:2e:c4:98:3d:a1:cd:00:a6:
17:47:98:af:72:d7:c5:6d:30:c7:61:85:a5:62:ba:87:d6:44:
9d:c5:a1:e5:ff:33:a7:42:44:76:bf:e3:a2:fc:19:ba:73:38:
1a:81:e8:28:d3:6f:d2:d4:bd:1c:5a:a5:2c:4b:3c:cb:6c:65:
2b:8f:ba:9f:67:09:21:b2:0a:6d:57:f4:98:1e:4e:f0:9f:b8:
96:3e:be:63:aa:06:c4:ef:b1:5b:c0:a5:65:31:3a:64:2b:2b:
1b:85:ef:aa:9d:e7:fd:2f:58:1c:c2:8c:35:2c:43:2d:68:b1:
84:02:fa:f9:a4:b3:c1:e2:07:35:61:83:bf:39:90:d5:8c:3d:
a0:50:3a:f9:83:d8:b6:8b:e4:9e:04:fd:02:96:f1:36:b9:06:
ee:3c:ae:83:5a:fa:3a:d3:3e:a5:22:68:31:29:e4:72:fb:2a:
b5:e6:f1:8f:05:cc:98:d1:64:67:75:db:96:f6:1e:78:cf:0a:
55:18:de:a3:e0:23:b8:ff:25:9e:f6:db:a7:a7:e7:37:55:3f:
60:15:8a:52:13:b3:74:9a:3c:fb:d6:c8:2d:16:e7:19:36:07:
d3:e8:2a:a7:0b:42:af:b9:aa:f4:0a:e2:2c:62:3b:6e:b6:70:
e3:5c:95:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:33 2025 by rpki-client