Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/daf1ae-d5eb-4ca4-8aaf-78741ac93b30/1/Q-IIBoNuW24Do-KqHYsgnlsEzaQ.roa
File: Q-IIBoNuW24Do-KqHYsgnlsEzaQ.roa (raw, json)
Hash identifier: RGj/T4rFUqC6W/Xf+/I9E/aD2wP77JNK0qmGbaUIfCU=
Subject key identifier: 43:E2:08:06:83:6E:5B:6E:03:A3:E2:AA:1D:8B:20:9E:5B:04:CD:A4
Certificate issuer: /CN=0e282a15c1a5d154bbda872b357607a91f950aa5
Certificate serial: 03079B83
Authority key identifier: 0E:28:2A:15:C1:A5:D1:54:BB:DA:87:2B:35:76:07:A9:1F:95:0A:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DigqFcGl0VS72ocrNXYHqR-VCqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/daf1ae-d5eb-4ca4-8aaf-78741ac93b30/1/Q-IIBoNuW24Do-KqHYsgnlsEzaQ.roa
Signing time: Sat 01 Jan 2022 10:55:22 +0000
ROA not before: Sat 01 Jan 2022 10:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34092
IP address blocks: 193.107.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50830211 (0x3079b83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e282a15c1a5d154bbda872b357607a91f950aa5
Validity
Not Before: Jan 1 10:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43e20806836e5b6e03a3e2aa1d8b209e5b04cda4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:54:fa:64:ba:6f:dd:a7:3e:81:a2:2a:10:54:
20:d8:2e:8c:12:55:37:f1:a1:ec:59:9d:ec:dd:b2:
21:7b:7a:82:17:e3:1f:3c:14:e5:71:57:44:b5:a1:
cc:ae:d8:85:60:fa:94:ae:3c:bd:d4:a1:80:03:1b:
28:22:4f:37:cc:af:8a:a6:44:0d:e5:53:7a:9c:cb:
07:e5:b2:29:f2:de:9b:59:53:34:9e:45:4d:e8:5d:
18:e0:4b:1f:4d:64:2f:a8:0d:23:d8:18:93:40:1a:
12:83:0a:93:7d:d9:ba:78:7f:13:ee:09:9f:d1:b0:
7a:8b:a6:fd:00:8f:80:00:d5:95:22:6d:39:81:08:
30:b2:2b:e2:df:a1:ed:ce:87:ab:e1:45:55:c3:04:
1a:60:1e:37:6d:1b:01:4d:a0:cf:b5:7d:a8:23:ef:
f6:a3:d9:b7:ee:32:c9:16:50:ab:5c:c7:95:b5:3a:
0c:d3:17:a1:a3:b0:04:92:49:2e:f2:52:6d:43:2c:
e6:a4:14:4b:1f:af:7f:62:17:ce:02:fa:65:ef:1a:
86:d8:a6:2e:2b:0f:69:e6:e4:e1:95:f9:1f:01:ae:
ac:7b:77:1c:ec:7c:e0:1c:92:14:58:84:df:de:eb:
4f:ef:68:f1:d6:4e:bb:3b:6d:7b:94:2f:83:af:a0:
56:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E2:08:06:83:6E:5B:6E:03:A3:E2:AA:1D:8B:20:9E:5B:04:CD:A4
X509v3 Authority Key Identifier:
keyid:0E:28:2A:15:C1:A5:D1:54:BB:DA:87:2B:35:76:07:A9:1F:95:0A:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DigqFcGl0VS72ocrNXYHqR-VCqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/daf1ae-d5eb-4ca4-8aaf-78741ac93b30/1/Q-IIBoNuW24Do-KqHYsgnlsEzaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/daf1ae-d5eb-4ca4-8aaf-78741ac93b30/1/DigqFcGl0VS72ocrNXYHqR-VCqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.82.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:e1:54:94:93:7a:e5:52:5f:be:c9:b6:8a:f5:f7:76:42:5e:
e9:2a:0f:bc:33:f9:df:c8:43:45:7f:eb:21:f3:52:1e:51:01:
0c:f4:e2:6a:99:a4:41:58:aa:95:3d:89:1c:30:91:5d:c7:eb:
44:9c:00:bd:e5:b8:27:48:88:ee:f3:38:d1:ae:43:9b:65:40:
d8:dd:4f:f3:f4:4d:1e:90:df:eb:88:19:5e:4d:a5:0a:d6:d5:
b0:c2:5d:25:c8:b6:ee:f8:ae:fe:9a:88:b7:54:cd:f5:be:9e:
2f:ea:65:41:07:0c:a5:90:6e:25:7f:47:19:67:d4:7c:13:1f:
ea:e1:63:1f:28:70:c6:06:7e:1c:10:cc:d6:40:ef:98:a2:8e:
d8:5b:e0:1a:8c:cb:8b:16:1a:89:a5:6a:5e:6c:8c:7a:aa:81:
56:8f:5a:5b:f9:8c:49:f7:2a:db:cd:b3:70:ed:31:08:28:d9:
a2:46:ff:b4:3b:51:03:11:c5:f1:34:09:1f:09:d3:c4:eb:72:
ec:bd:dc:45:02:d8:9d:f9:bb:09:ba:45:d0:48:d9:21:0e:82:
11:fa:a2:6f:70:52:cb:64:fb:04:66:6f:2a:2d:c9:21:cb:da:
88:c9:9d:28:8d:e5:03:4f:c3:02:96:5f:01:5d:65:d0:4f:bd:
92:25:de:e1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAwebgzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZTI4MmExNWMxYTVkMTU0YmJkYTg3MmIzNTc2MDdhOTFmOTUwYWE1MB4XDTIyMDEw
MTEwNTUyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDNlMjA4MDY4MzZl
NWI2ZTAzYTNlMmFhMWQ4YjIwOWU1YjA0Y2RhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMVU+mS6b92nPoGiKhBUINgujBJVN/Gh7Fmd7N2yIXt6ghfj
HzwU5XFXRLWhzK7YhWD6lK48vdShgAMbKCJPN8yviqZEDeVTepzLB+WyKfLem1lT
NJ5FTehdGOBLH01kL6gNI9gYk0AaEoMKk33Zunh/E+4Jn9Gweoum/QCPgADVlSJt
OYEIMLIr4t+h7c6Hq+FFVcMEGmAeN20bAU2gz7V9qCPv9qPZt+4yyRZQq1zHlbU6
DNMXoaOwBJJJLvJSbUMs5qQUSx+vf2IXzgL6Ze8ahtimLisPaebk4ZX5HwGurHt3
HOx84BySFFiE397rT+9o8dZOuztte5Qvg6+gVmECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRD4ggGg25bbgOj4qodiyCeWwTNpDAfBgNVHSMEGDAWgBQOKCoVwaXRVLva
hys1dgepH5UKpTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RpZ3FGY0dsMFZTNzJvY3JOWFlIcVItVkNxVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvZGFmMWFlLWQ1ZWItNGNhNC04YWFmLTc4NzQxYWM5M2IzMC8x
L1EtSUlCb051VzI0RG8tS3FIWXNnbmxzRXphUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
ZGFmMWFlLWQ1ZWItNGNhNC04YWFmLTc4NzQxYWM5M2IzMC8xL0RpZ3FGY0dsMFZT
NzJvY3JOWFlIcVItVkNxVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFrUjANBgkqhkiG9w0BAQsFAAOC
AQEAveFUlJN65VJfvsm2ivX3dkJe6SoPvDP538hDRX/rIfNSHlEBDPTiapmkQViq
lT2JHDCRXcfrRJwAveW4J0iI7vM40a5Dm2VA2N1P8/RNHpDf64gZXk2lCtbVsMJd
Jci27viu/pqIt1TN9b6eL+plQQcMpZBuJX9HGWfUfBMf6uFjHyhwxgZ+HBDM1kDv
mKKO2FvgGozLixYaiaVqXmyMeqqBVo9aW/mMSfcq282zcO0xCCjZokb/tDtRAxHF
8TQJHwnTxOty7L3cRQLYnfm7CbpF0EjZIQ6CEfqib3BSy2T7BGZvKi3JIcvaiMmd
KI3lA0/DApZfAV1l0E+9kiXe4Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:27 2023 by rpki-client on console-ams.rpki-client.org