Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/e--QLlT5S8-5C0ITlgw7stOHQro.roa
File: e--QLlT5S8-5C0ITlgw7stOHQro.roa (raw, json)
Hash identifier: UwuIXbcwTrJ2EKRiJZeZnJiZ9FtV0A44nv99SAGWsME=
Subject key identifier: 7B:EF:90:2E:54:F9:4B:CF:B9:0B:42:13:96:0C:3B:B2:D3:87:42:BA
Certificate issuer: /CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Certificate serial: 0633A0FE
Authority key identifier: 1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/e--QLlT5S8-5C0ITlgw7stOHQro.roa
Signing time: Thu 19 May 2022 13:40:31 +0000
ROA not before: Thu 19 May 2022 13:40:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1273
IP address blocks: 194.70.32.0/22 maxlen: 22
194.70.37.0/24 maxlen: 24
194.70.38.0/23 maxlen: 23
194.70.40.0/21 maxlen: 21
194.70.48.0/20 maxlen: 20
194.70.64.0/20 maxlen: 20
195.173.0.0/16 maxlen: 16
195.11.0.0/16 maxlen: 16
194.70.2.0/24 maxlen: 24
194.70.4.0/22 maxlen: 22
194.70.0.0/23 maxlen: 23
194.70.8.0/21 maxlen: 21
194.70.16.0/20 maxlen: 20
194.70.80.0/21 maxlen: 21
194.70.88.0/22 maxlen: 22
194.70.92.0/23 maxlen: 23
194.70.95.0/24 maxlen: 24
194.70.96.0/19 maxlen: 19
194.217.0.0/16 maxlen: 16
194.70.128.0/18 maxlen: 18
194.70.240.0/20 maxlen: 20
194.70.192.0/19 maxlen: 19
194.70.224.0/21 maxlen: 21
194.70.232.0/23 maxlen: 23
194.70.235.0/24 maxlen: 24
194.70.236.0/22 maxlen: 22
194.159.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104046846 (0x633a0fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Validity
Not Before: May 19 13:40:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bef902e54f94bcfb90b4213960c3bb2d38742ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e8:10:d1:d8:23:8f:bb:f1:c4:16:b1:84:49:
da:5a:b0:9a:e4:cd:df:5e:e6:4e:e4:9f:91:53:b8:
47:21:54:15:6c:08:63:7a:ca:f9:cd:74:bc:b6:b6:
03:4b:89:31:4e:62:03:de:5c:f3:04:6c:ab:d8:b2:
f0:73:c9:8f:82:6c:22:af:5d:9d:a6:ac:6e:05:30:
aa:aa:9c:f5:e2:7f:c1:4d:21:21:24:e2:d8:2d:3d:
c5:c7:2f:75:e7:5c:b1:0e:88:f6:6a:8d:80:46:91:
fe:06:03:59:65:c8:37:03:d0:37:67:6d:58:ab:c3:
da:66:0e:67:bf:32:5b:1a:7c:45:69:6b:3a:d7:8e:
ca:c7:b9:e8:dc:b7:9e:1b:84:48:50:f8:58:9a:c2:
77:cf:04:5b:f1:3e:15:20:23:26:7d:42:55:21:9f:
06:75:d3:fb:a1:41:8b:06:40:a8:48:2d:92:28:06:
5a:88:b1:95:be:19:35:00:61:5d:f5:d6:a3:99:3b:
f2:c8:a0:5a:b5:10:04:3b:76:05:b4:b9:2f:e7:b6:
fe:f9:b7:41:05:b2:9d:a1:52:71:b0:a2:77:2c:d3:
69:0e:de:b8:55:31:2b:77:2f:3d:51:93:dc:dc:14:
f5:30:72:cc:be:fb:31:16:68:7a:af:02:93:85:b7:
aa:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:EF:90:2E:54:F9:4B:CF:B9:0B:42:13:96:0C:3B:B2:D3:87:42:BA
X509v3 Authority Key Identifier:
keyid:1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/e--QLlT5S8-5C0ITlgw7stOHQro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/GtoiXLfylBbnU0aV-_shdi_uk8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.70.0.0-194.70.2.255
194.70.4.0-194.70.35.255
194.70.37.0-194.70.93.255
194.70.95.0-194.70.233.255
194.70.235.0-194.70.255.255
194.159.0.0/16
194.217.0.0/16
195.11.0.0/16
195.173.0.0/16
Signature Algorithm: sha256WithRSAEncryption
02:c1:b5:46:6f:07:de:e7:5d:78:eb:ba:17:41:b4:cc:24:01:
ce:db:20:db:a6:c6:d3:1d:0c:5f:42:a7:3c:46:7e:e5:a4:8e:
2f:64:f9:dc:48:fc:a7:d7:65:22:6b:c5:29:f4:c7:92:b5:6e:
26:84:0e:b8:a0:18:cb:31:5a:6e:8b:3c:d4:a1:3e:35:15:46:
64:fe:e1:9d:dc:5e:4f:79:78:ff:44:99:4e:d1:9e:79:80:9e:
ee:c5:b6:2f:94:cc:1f:0f:c3:4c:da:56:ad:68:77:a7:f5:d9:
06:2a:71:a6:3a:7e:99:ee:c7:a6:a4:28:28:e0:ba:83:5d:13:
1f:01:2e:2a:f5:d4:e3:41:08:fd:fc:82:c6:73:32:63:02:18:
95:95:6a:af:0d:a8:25:2a:b0:dd:c7:87:62:fa:81:dc:b3:ee:
c7:4e:e2:b6:26:2b:c5:3b:1a:65:e9:ac:21:49:d8:1e:83:18:
08:ff:b3:01:2b:ca:cc:c3:9c:4d:2a:ac:92:62:e7:16:b3:b8:
c0:a7:ea:e7:db:a0:9f:63:fc:1c:fe:6e:5e:4f:e0:4b:ce:ed:
81:ff:9a:0a:b6:0e:60:69:b1:e7:89:35:6f:36:6a:97:ff:b0:
25:56:94:a8:86:2f:ae:0b:c7:13:9d:57:8f:3b:79:71:1e:a9:
07:af:01:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:00 2023 by rpki-client on console-fra.rpki-client.org