Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/VsaGdGmsfI8tFaxcbg0dxz_Queo.roa
File: VsaGdGmsfI8tFaxcbg0dxz_Queo.roa (raw, json)
Hash identifier: 7xOoN7rb6rKVXR14nPaVfwnGQN2i71A+lKV+lAu7/9U=
Subject key identifier: 56:C6:86:74:69:AC:7C:8F:2D:15:AC:5C:6E:0D:1D:C7:3F:D0:B9:EA
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 3941291F
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/VsaGdGmsfI8tFaxcbg0dxz_Queo.roa
Signing time: Sat 01 Jan 2022 08:05:31 +0000
ROA not before: Sat 01 Jan 2022 08:05:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34837
IP address blocks: 193.104.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960571679 (0x3941291f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 1 08:05:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56c6867469ac7c8f2d15ac5c6e0d1dc73fd0b9ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ef:be:c5:83:79:12:97:e1:6c:82:4e:f6:2c:
d2:45:ca:a5:0e:0c:d1:0d:ea:89:da:30:92:aa:d8:
36:38:39:dd:7a:a5:03:0e:74:03:a3:9d:9e:11:b2:
fe:60:67:72:1c:36:21:c1:55:ad:62:0c:8b:ea:9b:
f7:fa:2d:b1:1c:1d:11:bc:45:9c:4f:71:86:7c:15:
00:c0:58:dc:2c:5a:7e:12:ea:ee:99:30:e0:34:f0:
a6:ad:09:c2:84:ca:94:62:a6:f6:4c:96:5e:5f:e5:
40:c2:79:6b:2d:85:29:7f:13:34:5a:93:51:63:1a:
ce:7e:cc:3a:b9:8d:f2:12:ac:c0:18:e5:da:cb:24:
6a:4d:62:19:77:48:4a:de:6b:4b:fd:24:9f:61:f7:
37:d8:89:33:4f:23:75:d4:2e:2a:4f:c9:a4:46:f4:
aa:a3:41:bd:98:20:4b:ab:43:be:36:1a:f9:db:52:
62:85:2f:de:4c:c7:b0:9e:5b:0e:05:dd:b2:ff:c3:
f3:1d:72:31:fd:2e:fd:ea:01:66:2f:df:53:9f:b1:
b5:c6:ae:50:f5:4b:e9:ab:ba:cf:ca:90:05:5e:20:
d7:a2:5b:b2:c8:f4:63:7e:b3:00:cc:6c:ca:23:0a:
fd:59:d3:95:76:6e:7e:c2:67:fe:6a:a5:dd:0b:7d:
d9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:C6:86:74:69:AC:7C:8F:2D:15:AC:5C:6E:0D:1D:C7:3F:D0:B9:EA
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/VsaGdGmsfI8tFaxcbg0dxz_Queo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.212.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:da:f8:2c:4c:e7:29:3d:0a:e8:58:f6:ad:de:d4:53:4f:3c:
68:ad:e6:c0:b5:ff:34:66:04:2f:22:ca:35:61:55:64:a0:06:
3f:6e:6b:8d:cc:27:b1:72:d3:b4:39:66:51:c9:06:fa:6c:9a:
97:0a:d7:64:8d:5f:ed:52:8b:8b:14:22:90:9f:79:cf:b9:17:
f1:6a:bc:e7:82:38:32:9b:85:53:09:5a:80:f7:4b:0e:4d:3f:
5f:e3:69:17:fd:4b:fb:b7:09:07:25:a1:12:0e:af:a7:b7:8f:
bf:1a:04:20:57:49:10:cd:f6:38:f8:e2:d7:99:27:f6:73:45:
ef:d1:d1:e4:9f:ab:56:ea:39:05:58:fb:bb:1c:06:b4:26:2a:
ae:e7:a9:81:87:15:85:28:f4:38:95:a3:fa:59:54:95:f7:0a:
11:ed:33:d8:c2:38:69:6e:c1:3b:f1:87:88:15:ff:01:b7:a3:
c4:bd:a8:0f:21:b1:3b:6c:b9:d0:46:e3:3a:ca:0d:f6:62:50:
da:43:a7:06:fa:ac:2d:da:aa:33:3f:ec:e5:93:27:99:53:80:
ff:7e:06:3a:9f:3a:84:3e:95:fd:fc:f4:52:0a:71:f7:7c:c7:
a2:d6:44:9f:a1:5c:a7:a4:4f:4d:ba:6c:d7:33:ae:78:69:87:
d3:7d:9c:2d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOUEpHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ODNkNzYwNTEwMTdkMGFmYTkxNWZjZmI3OTBhMDBmNDY2N2IwYTg4MB4XDTIyMDEw
MTA4MDUzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTZjNjg2NzQ2OWFj
N2M4ZjJkMTVhYzVjNmUwZDFkYzczZmQwYjllYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKPvvsWDeRKX4WyCTvYs0kXKpQ4M0Q3qidowkqrYNjg53Xql
Aw50A6OdnhGy/mBnchw2IcFVrWIMi+qb9/otsRwdEbxFnE9xhnwVAMBY3CxafhLq
7pkw4DTwpq0JwoTKlGKm9kyWXl/lQMJ5ay2FKX8TNFqTUWMazn7MOrmN8hKswBjl
2sskak1iGXdISt5rS/0kn2H3N9iJM08jddQuKk/JpEb0qqNBvZggS6tDvjYa+dtS
YoUv3kzHsJ5bDgXdsv/D8x1yMf0u/eoBZi/fU5+xtcauUPVL6au6z8qQBV4g16Jb
ssj0Y36zAMxsyiMK/VnTlXZufsJn/mql3Qt92ckCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRWxoZ0aax8jy0VrFxuDR3HP9C56jAfBgNVHSMEGDAWgBRYPXYFEBfQr6kV
/Pt5CgD0ZnsKiDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dEMTJCUkFYMEstcEZmejdlUW9BOUdaN0NvZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODQvNGYxYjI3LTMyNmEtNDY3OS1hNjRiLWRhNjE1Mzg4NWYzYi8x
L1ZzYUdkR21zZkk4dEZheGNiZzBkeHpfUXVlby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODQv
NGYxYjI3LTMyNmEtNDY3OS1hNjRiLWRhNjE1Mzg4NWYzYi8xL1dEMTJCUkFYMEst
cEZmejdlUW9BOUdaN0NvZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMFo1DANBgkqhkiG9w0BAQsFAAOC
AQEADNr4LEznKT0K6Fj2rd7UU088aK3mwLX/NGYELyLKNWFVZKAGP25rjcwnsXLT
tDlmUckG+myalwrXZI1f7VKLixQikJ95z7kX8Wq854I4MpuFUwlagPdLDk0/X+Np
F/1L+7cJByWhEg6vp7ePvxoEIFdJEM32OPji15kn9nNF79HR5J+rVuo5BVj7uxwG
tCYqruepgYcVhSj0OJWj+llUlfcKEe0z2MI4aW7BO/GHiBX/AbejxL2oDyGxO2y5
0EbjOsoN9mJQ2kOnBvqsLdqqMz/s5ZMnmVOA/34GOp86hD6V/fz0Ugpx93zHotZE
n6Fcp6RPTbps1zOueGmH032cLQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-ams.rpki-client.org