Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/fac2a2-5f69-4043-8d65-5bc8795c2cba/1/QLCWufAF9vMgbfp2opiAtUjm30Q.roa
File: QLCWufAF9vMgbfp2opiAtUjm30Q.roa (raw, json)
Hash identifier: F0TWHqqNckBoFiXnoVhQ0YZ6pCtPW5hVX5BYS/BKZE4=
Subject key identifier: 40:B0:96:B9:F0:05:F6:F3:20:6D:FA:76:A2:98:80:B5:48:E6:DF:44
Certificate issuer: /CN=a84570854fe886b94ae625363c625dda60bb3efc
Certificate serial: 06CDBC69
Authority key identifier: A8:45:70:85:4F:E8:86:B9:4A:E6:25:36:3C:62:5D:DA:60:BB:3E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEVwhU_ohrlK5iU2PGJd2mC7Pvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/fac2a2-5f69-4043-8d65-5bc8795c2cba/1/QLCWufAF9vMgbfp2opiAtUjm30Q.roa
Signing time: Sat 01 Jan 2022 15:03:45 +0000
ROA not before: Sat 01 Jan 2022 15:03:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35407
IP address blocks: 193.138.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114146409 (0x6cdbc69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a84570854fe886b94ae625363c625dda60bb3efc
Validity
Not Before: Jan 1 15:03:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40b096b9f005f6f3206dfa76a29880b548e6df44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:62:72:55:1f:0a:22:e0:f1:da:74:51:b1:f6:
68:a4:2b:b3:b4:b7:59:3a:8c:15:63:0f:64:df:b9:
69:98:6b:eb:a4:28:27:35:da:ee:95:ff:4e:88:8e:
0e:d7:4e:12:f4:1f:3a:61:a4:f2:4a:c6:b6:4b:14:
8f:be:c9:ec:af:81:89:79:b0:29:87:11:e0:c8:7a:
4e:40:60:89:c7:30:05:87:0e:9c:b8:94:58:7c:af:
3f:99:d4:23:19:f5:6f:53:eb:e9:25:6a:6f:d7:57:
cc:de:15:22:20:51:9d:da:47:af:bc:2d:09:13:25:
a2:9b:85:e1:c7:f2:60:fc:75:c7:36:58:8f:19:ce:
20:59:a9:c4:85:eb:40:3d:b9:81:93:17:07:8b:65:
09:14:2f:e6:9b:72:bf:7d:3c:11:b2:81:99:99:fb:
48:d3:84:3c:81:04:98:6e:00:14:74:2b:89:1d:a3:
db:76:fe:4f:4a:79:81:88:1b:ab:70:dc:fd:50:eb:
d1:56:d9:a4:34:fd:d1:28:83:c1:a8:92:0e:67:94:
bc:31:e6:11:cd:6f:2d:06:20:6f:59:cc:61:5e:52:
2b:91:ff:8a:d5:c3:ea:d2:65:bd:a6:77:36:9b:8e:
1d:05:c0:8c:61:80:5a:07:a5:83:98:b0:b7:fc:9d:
26:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B0:96:B9:F0:05:F6:F3:20:6D:FA:76:A2:98:80:B5:48:E6:DF:44
X509v3 Authority Key Identifier:
keyid:A8:45:70:85:4F:E8:86:B9:4A:E6:25:36:3C:62:5D:DA:60:BB:3E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEVwhU_ohrlK5iU2PGJd2mC7Pvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/fac2a2-5f69-4043-8d65-5bc8795c2cba/1/QLCWufAF9vMgbfp2opiAtUjm30Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/fac2a2-5f69-4043-8d65-5bc8795c2cba/1/qEVwhU_ohrlK5iU2PGJd2mC7Pvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.30.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ad:05:12:93:0f:38:f0:8a:cc:e0:de:5c:d2:24:ea:76:b4:
6e:df:1b:59:92:5d:a3:26:64:de:66:ed:68:aa:4f:c6:f2:48:
a1:19:43:71:88:8b:e4:76:e8:ab:1a:11:3f:ef:1e:69:bc:cd:
a2:92:e9:81:09:3a:88:0c:e3:cc:92:c5:c2:b3:3e:e5:83:31:
f9:4a:c4:f8:b3:f8:51:17:a2:5a:56:be:74:19:b1:7e:bf:51:
48:80:f6:0f:67:01:30:aa:d0:95:be:f1:cc:14:e6:7e:69:ea:
81:72:6c:fb:93:7f:73:7e:25:86:7d:ad:df:03:c4:15:57:42:
10:64:ae:ce:4a:2b:d2:63:2c:43:a6:7b:11:4f:0b:6b:72:be:
5b:9c:b6:75:71:57:eb:2c:3f:7e:97:fd:c8:0d:4c:e3:5f:47:
50:93:04:00:7a:2b:d1:e9:7d:0c:de:12:f4:e3:f5:94:c3:8d:
04:01:eb:81:42:22:c8:8e:76:11:8f:27:81:40:00:5c:36:53:
ce:4a:04:c6:be:bc:f5:5f:9d:7d:ee:a3:cf:1d:93:46:9c:9d:
eb:d5:50:73:76:80:75:a4:5f:54:ab:a1:9a:86:05:39:5a:72:
49:e9:5c:b4:66:8a:a5:61:7c:bf:26:2f:74:37:d5:cb:c3:f5:
8c:c8:7e:04
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBs28aTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ODQ1NzA4NTRmZTg4NmI5NGFlNjI1MzYzYzYyNWRkYTYwYmIzZWZjMB4XDTIyMDEw
MTE1MDM0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDBiMDk2YjlmMDA1
ZjZmMzIwNmRmYTc2YTI5ODgwYjU0OGU2ZGY0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ1iclUfCiLg8dp0UbH2aKQrs7S3WTqMFWMPZN+5aZhr66Qo
JzXa7pX/ToiODtdOEvQfOmGk8krGtksUj77J7K+BiXmwKYcR4Mh6TkBgiccwBYcO
nLiUWHyvP5nUIxn1b1Pr6SVqb9dXzN4VIiBRndpHr7wtCRMlopuF4cfyYPx1xzZY
jxnOIFmpxIXrQD25gZMXB4tlCRQv5ptyv308EbKBmZn7SNOEPIEEmG4AFHQriR2j
23b+T0p5gYgbq3Dc/VDr0VbZpDT90SiDwaiSDmeUvDHmEc1vLQYgb1nMYV5SK5H/
itXD6tJlvaZ3NpuOHQXAjGGAWgelg5iwt/ydJrUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRAsJa58AX28yBt+naimIC1SObfRDAfBgNVHSMEGDAWgBSoRXCFT+iGuUrm
JTY8Yl3aYLs+/DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FFVndoVV9vaHJsSzVpVTJQR0pkMm1DN1B2dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2UvZmFjMmEyLTVmNjktNDA0My04ZDY1LTViYzg3OTVjMmNiYS8x
L1FMQ1d1ZkFGOXZNZ2JmcDJvcGlBdFVqbTMwUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Uv
ZmFjMmEyLTVmNjktNDA0My04ZDY1LTViYzg3OTVjMmNiYS8xL3FFVndoVV9vaHJs
SzVpVTJQR0pkMm1DN1B2dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMGKHjANBgkqhkiG9w0BAQsFAAOC
AQEAbq0FEpMPOPCKzODeXNIk6na0bt8bWZJdoyZk3mbtaKpPxvJIoRlDcYiL5Hbo
qxoRP+8eabzNopLpgQk6iAzjzJLFwrM+5YMx+UrE+LP4UReiWla+dBmxfr9RSID2
D2cBMKrQlb7xzBTmfmnqgXJs+5N/c34lhn2t3wPEFVdCEGSuzkor0mMsQ6Z7EU8L
a3K+W5y2dXFX6yw/fpf9yA1M419HUJMEAHor0el9DN4S9OP1lMONBAHrgUIiyI52
EY8ngUAAXDZTzkoExr689V+dfe6jzx2TRpyd69VQc3aAdaRfVKuhmoYFOVpySelc
tGaKpWF8vyYvdDfVy8P1jMh+BA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:34 2024 by rpki-client on console-fra.rpki-client.org