Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/qsoILL4H3VMsS7zacTg6ORhHzqU.roa
File: qsoILL4H3VMsS7zacTg6ORhHzqU.roa (raw, json)
Hash identifier: kRb+yd716fWL4NknTkM6xy2ht+hxdgZczJ1pL0fudaI=
Subject key identifier: AA:CA:08:2C:BE:07:DD:53:2C:4B:BC:DA:71:38:3A:39:18:47:CE:A5
Certificate issuer: /CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Certificate serial: 0D6A7A7E
Authority key identifier: DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/qsoILL4H3VMsS7zacTg6ORhHzqU.roa
Signing time: Sat 01 Jan 2022 03:52:02 +0000
ROA not before: Sat 01 Jan 2022 03:52:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34756
IP address blocks: 194.105.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225081982 (0xd6a7a7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Validity
Not Before: Jan 1 03:52:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aaca082cbe07dd532c4bbcda71383a391847cea5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:82:16:c9:af:07:d2:fb:84:0d:89:3d:cc:b0:
d9:1c:12:62:ba:2f:c4:61:10:c3:c3:3a:df:b1:ee:
a2:b1:2d:ef:2c:c1:ed:bd:61:64:9d:55:24:5c:62:
bd:6b:c1:ce:2e:a5:1f:ef:60:ef:ac:0a:30:d9:aa:
8a:bd:ef:d5:ae:af:24:90:c4:9c:35:09:ee:b6:32:
e9:70:d4:fd:59:82:8c:06:84:41:5f:45:fb:c8:b5:
6d:89:94:3f:94:67:22:d6:e4:e0:ee:58:08:2a:98:
fd:b4:1a:1b:f1:69:a8:ca:33:ea:c2:03:fa:28:2f:
bd:47:78:db:56:3f:c4:f1:63:76:63:df:b9:97:0e:
1c:66:0c:9c:2c:a2:91:d1:db:9d:8b:aa:0e:23:7c:
e2:2f:d2:2b:24:b7:18:ce:ec:c6:0c:1e:8d:dc:0b:
cf:6d:f3:0d:50:2a:19:41:c5:52:29:5e:fa:f4:8c:
58:6a:98:34:fc:25:e2:bf:fa:d7:3b:65:97:a4:ea:
92:fd:ad:f2:69:c5:2f:a4:c8:25:bf:f9:af:01:f9:
cc:e6:29:ca:00:2a:c9:a3:4c:09:99:7d:7c:a0:48:
47:02:99:61:07:f5:43:82:f2:af:c2:38:b7:b6:52:
77:4b:f7:e5:15:c7:aa:55:f1:25:66:d8:0a:84:62:
c1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:CA:08:2C:BE:07:DD:53:2C:4B:BC:DA:71:38:3A:39:18:47:CE:A5
X509v3 Authority Key Identifier:
keyid:DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/qsoILL4H3VMsS7zacTg6ORhHzqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.105.150.0/23
Signature Algorithm: sha256WithRSAEncryption
c2:5b:7a:4d:c0:4b:8c:43:f5:d2:5a:1c:3c:e9:80:af:f5:75:
42:e3:9a:c2:fd:df:96:4b:9f:73:b9:c0:b6:32:ef:8e:07:83:
92:67:88:69:02:ce:4c:41:61:98:a7:13:a0:b0:3f:e4:38:ae:
a3:cb:4f:15:8c:48:56:31:77:b4:68:6c:a0:5e:0a:8e:70:a0:
87:1d:a0:f3:e4:ba:53:e3:2b:19:44:29:a3:8f:9e:6e:aa:2e:
7a:1b:57:06:18:08:cb:22:4b:70:a4:95:e1:bf:c4:dc:73:a4:
63:6a:9b:4e:c3:73:08:56:5a:1a:b0:c0:2b:e8:b4:b3:8b:98:
dd:68:88:35:8d:01:62:93:f1:0b:04:1b:df:e2:24:e6:58:22:
40:30:19:b9:04:03:7f:d6:4f:a6:7c:cf:19:b0:d2:6d:1a:cf:
ef:bd:fb:cf:ec:42:45:ee:00:78:14:19:14:61:ca:97:85:ac:
2e:ba:be:b0:6a:a7:35:20:06:66:02:23:45:74:4c:81:84:c2:
99:14:45:2a:a7:f7:84:e5:59:46:59:d9:ef:88:a7:c1:a3:7b:
ca:41:c5:eb:ec:39:c6:e3:d6:7d:4f:9b:48:33:fb:23:d9:58:
e7:ea:73:e6:19:92:17:4d:c3:b4:e2:e0:e6:54:34:33:48:0a:
c3:b7:fd:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:51 2023 by rpki-client on console-fra.rpki-client.org