Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/3Qww_AZ6IRPSfRpgLxSOYSL1xow.roa
File: 3Qww_AZ6IRPSfRpgLxSOYSL1xow.roa (raw, json)
Hash identifier: Q7rLiq69rsNZMR0FVIh7/NsxvE4tMsSsbgIqp8Z/Ihg=
Subject key identifier: DD:0C:30:FC:06:7A:21:13:D2:7D:1A:60:2F:14:8E:61:22:F5:C6:8C
Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Certificate serial: 077F9B63
Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/3Qww_AZ6IRPSfRpgLxSOYSL1xow.roa
Signing time: Sat 01 Jan 2022 14:58:28 +0000
ROA not before: Sat 01 Jan 2022 14:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.9.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125803363 (0x77f9b63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Validity
Not Before: Jan 1 14:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd0c30fc067a2113d27d1a602f148e6122f5c68c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:23:20:13:48:29:89:40:7a:56:94:39:c8:7d:
10:a1:a6:23:c7:db:5a:ed:66:c1:1b:05:b7:16:73:
b5:f1:53:2f:da:b4:86:4a:e1:f8:a3:55:f9:7f:c5:
58:0d:62:24:5b:b7:0d:d6:6e:39:d4:e8:58:15:5c:
46:e2:51:d7:13:7f:35:56:f0:1d:f5:4d:70:0b:79:
e6:3a:58:60:2e:4e:39:1f:44:bc:ca:37:e8:3d:c4:
88:e7:65:76:9f:45:53:b9:65:f1:07:a2:bd:5a:47:
3e:d3:e6:1f:c4:9f:d2:bb:4d:ee:b8:78:f6:96:3b:
64:15:ff:9c:7e:cc:57:68:f2:0a:f6:e6:d1:25:4d:
ee:18:1c:f9:5d:13:2d:54:5c:ff:d9:46:a2:79:84:
67:fe:00:52:e8:5d:62:30:3f:89:98:2d:a6:3e:9e:
c9:31:e5:11:67:d6:1c:61:fe:21:39:91:be:cf:9f:
98:6d:22:6a:b1:c9:aa:45:70:1f:67:9d:ec:9d:8e:
92:12:23:ce:82:9e:45:14:87:aa:54:e6:76:e6:4b:
58:1c:b5:98:ab:98:04:a1:2a:4d:95:df:45:75:1d:
8e:bf:0c:2d:0f:27:c5:33:b8:ba:ad:04:c4:95:45:
bb:20:84:32:1b:a1:b8:ff:03:83:c0:b4:f2:cc:7b:
0f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:0C:30:FC:06:7A:21:13:D2:7D:1A:60:2F:14:8E:61:22:F5:C6:8C
X509v3 Authority Key Identifier:
keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/3Qww_AZ6IRPSfRpgLxSOYSL1xow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.122.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:cb:2e:fe:e0:46:b0:f5:7b:78:49:03:04:22:93:7f:f8:7d:
68:8b:6c:e2:cf:22:ba:87:78:5d:00:2c:89:60:9b:93:eb:df:
0a:99:b5:0b:d1:aa:1a:ff:17:f0:03:5d:12:61:57:77:7a:4e:
38:12:f8:7e:5e:b5:34:1e:d4:e1:a0:f6:ef:2f:91:7c:3b:3b:
5a:41:87:48:5f:fb:54:80:44:98:51:31:ea:d3:93:5c:7d:75:
8b:a8:2c:77:16:75:93:ce:1b:96:e0:6c:6f:cb:a1:28:46:3f:
8a:ad:87:99:52:17:82:bf:15:2e:bd:75:dc:d8:12:fa:c8:87:
62:c8:9c:cb:e5:fa:29:17:0b:b6:af:92:d1:46:1c:dc:98:8c:
99:17:cc:5b:1b:50:56:3f:14:b3:07:75:e8:1e:75:25:5c:c9:
d9:73:4b:9a:2f:9b:de:cf:37:df:26:e2:13:ca:31:af:9a:d8:
ca:d9:fe:09:10:4c:39:9a:30:f8:d2:2a:27:54:79:b8:8d:3c:
8f:0e:e8:c0:92:9c:55:a2:e3:93:24:12:68:1a:d0:32:68:8a:
36:68:af:34:21:53:44:93:92:7e:f9:33:62:45:85:06:05:ee:
93:ef:c8:8c:11:dd:3c:6d:02:5c:2f:38:3b:5c:93:3a:eb:68:
3c:1c:de:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:33 2024 by rpki-client on console-ams.rpki-client.org