Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/b50bda-6899-4eef-a231-5e0026303629/1/q9yviiTCD3FdIzb8-Tf_CuBRBlU.roa
File: q9yviiTCD3FdIzb8-Tf_CuBRBlU.roa (raw, json)
Hash identifier: 0dBY8Og3EzrTpIV1Zwt5uV2GOZA1aMBDlPW1OW1omgA=
Subject key identifier: AB:DC:AF:8A:24:C2:0F:71:5D:23:36:FC:F9:37:FF:0A:E0:51:06:55
Certificate issuer: /CN=3c931f265a8471d32ce8449d9e186f0dc7114a7a
Certificate serial: 03C3919D
Authority key identifier: 3C:93:1F:26:5A:84:71:D3:2C:E8:44:9D:9E:18:6F:0D:C7:11:4A:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PJMfJlqEcdMs6ESdnhhvDccRSno.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/b50bda-6899-4eef-a231-5e0026303629/1/q9yviiTCD3FdIzb8-Tf_CuBRBlU.roa
Signing time: Sat 01 Jan 2022 10:55:29 +0000
ROA not before: Sat 01 Jan 2022 10:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41865
IP address blocks: 94.158.136.0/21 maxlen: 21
193.34.0.0/23 maxlen: 23
193.34.0.0/22 maxlen: 22
193.34.2.0/23 maxlen: 23
94.158.128.0/20 maxlen: 20
94.158.128.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63148445 (0x3c3919d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c931f265a8471d32ce8449d9e186f0dc7114a7a
Validity
Not Before: Jan 1 10:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abdcaf8a24c20f715d2336fcf937ff0ae0510655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6f:6f:30:9d:d2:01:98:e8:38:cf:4b:d9:80:
f3:ea:84:58:ff:d8:e7:77:fe:42:e2:d4:95:f3:34:
aa:d9:47:92:85:71:ee:30:a1:34:47:d8:06:d6:e8:
a4:2b:da:5d:89:3d:c5:ee:45:b6:b4:83:1e:58:14:
d3:2a:0d:0b:07:34:fa:10:53:5a:81:fc:da:e1:3b:
a0:5f:f0:43:ba:cf:54:89:7f:2b:75:47:59:fd:77:
3e:c4:fa:3a:63:8b:a6:d4:8e:fc:6d:6b:53:47:53:
63:df:a8:fa:0d:f0:7f:f7:c4:e4:ed:a3:03:6d:df:
9f:ed:b2:72:c9:d7:4d:5e:b9:36:b3:b0:1c:43:70:
1a:99:7f:86:7f:61:69:79:f4:e0:9c:be:27:48:a5:
14:ed:0f:5e:56:a4:21:87:44:c1:61:72:2d:08:d4:
9f:29:e5:a5:f8:94:fa:68:d0:88:ff:83:1c:72:53:
f8:44:3e:d6:93:97:ba:ce:54:8b:a6:4a:0a:15:1f:
3e:4f:a3:dc:4f:67:74:b4:70:6e:b3:94:c9:c3:21:
22:9e:a0:ee:35:9e:1d:da:3d:68:31:01:d2:1c:03:
05:40:43:01:89:34:2d:52:99:7a:00:6f:75:27:61:
91:32:12:8a:00:41:5a:11:c7:5a:c0:87:bf:9c:c8:
ea:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DC:AF:8A:24:C2:0F:71:5D:23:36:FC:F9:37:FF:0A:E0:51:06:55
X509v3 Authority Key Identifier:
keyid:3C:93:1F:26:5A:84:71:D3:2C:E8:44:9D:9E:18:6F:0D:C7:11:4A:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PJMfJlqEcdMs6ESdnhhvDccRSno.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/b50bda-6899-4eef-a231-5e0026303629/1/q9yviiTCD3FdIzb8-Tf_CuBRBlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/b50bda-6899-4eef-a231-5e0026303629/1/PJMfJlqEcdMs6ESdnhhvDccRSno.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.158.128.0/20
193.34.0.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:26:14:6a:a7:41:1f:66:36:19:7c:6c:35:98:7a:d8:6d:ca:
6d:e3:b5:9f:4e:32:13:2b:3b:9c:cb:2d:57:d8:f6:1b:56:8b:
32:2e:e0:46:89:c8:2a:a6:8c:b7:7f:98:5b:39:6c:a5:de:a6:
28:44:31:50:33:d0:83:21:02:91:75:6a:c2:64:23:ce:92:db:
04:5f:ea:02:91:d1:8e:1e:be:d8:cc:82:7e:49:cc:03:35:49:
4e:48:ec:1e:c9:3e:c9:7f:4b:5c:8b:76:1a:8d:0e:71:ca:fe:
fd:1c:e9:1a:98:a2:ed:7b:f5:d4:91:e0:5e:79:0e:0f:96:5e:
7d:43:8f:69:82:3e:4f:15:32:14:e2:c0:a3:80:d6:30:39:e0:
af:bd:49:44:05:70:9c:0b:34:b1:b7:90:cf:35:48:f6:60:32:
7f:cb:17:ae:d2:01:a1:cc:4b:12:c3:39:8c:cd:8a:a1:e4:ac:
54:86:4b:a7:03:75:8a:af:d6:63:19:16:ad:05:b1:2f:c3:06:
f1:f6:bb:a7:66:49:c0:0b:90:0f:2b:05:dc:00:b3:54:42:5f:
c2:1c:2e:aa:63:26:85:55:c9:d2:c3:6c:b3:cc:88:9f:04:78:
b6:74:3f:34:65:21:48:f8:38:66:4a:99:ba:a6:8c:b6:1f:0d:
cf:93:27:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:17 2023 by rpki-client on console-fra.rpki-client.org