Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/12e7d5-3a0f-4bc6-9611-05435efd8bf6/1/QcKEVFTUr12dsHOEYBKpp0twBjY.roa
File: QcKEVFTUr12dsHOEYBKpp0twBjY.roa (raw, json)
Hash identifier: pghnvmJrN1dJ/lldZFIzPiXAR8szPAog/lqfnS6a+Dg=
Subject key identifier: 41:C2:84:54:54:D4:AF:5D:9D:B0:73:84:60:12:A9:A7:4B:70:06:36
Certificate issuer: /CN=6d3ee1a52a5d65b9091de5a5b464fb97032d0e9b
Certificate serial: 3104136B
Authority key identifier: 6D:3E:E1:A5:2A:5D:65:B9:09:1D:E5:A5:B4:64:FB:97:03:2D:0E:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bT7hpSpdZbkJHeWltGT7lwMtDps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/12e7d5-3a0f-4bc6-9611-05435efd8bf6/1/QcKEVFTUr12dsHOEYBKpp0twBjY.roa
Signing time: Fri 03 Jun 2022 12:13:20 +0000
ROA not before: Fri 03 Jun 2022 12:13:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204776
IP address blocks: 193.16.100.0/24 maxlen: 24
195.246.98.0/24 maxlen: 24
195.246.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 822350699 (0x3104136b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d3ee1a52a5d65b9091de5a5b464fb97032d0e9b
Validity
Not Before: Jun 3 12:13:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41c2845454d4af5d9db073846012a9a74b700636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a0:66:f9:c0:b4:d7:37:e1:5c:77:9e:c8:52:
0a:8a:70:5a:9c:7f:36:bf:f8:27:74:b6:65:f3:53:
74:94:af:27:cd:37:87:67:57:e5:c4:59:5b:56:a6:
6e:0c:e9:5a:5b:6a:61:f6:83:9b:99:0f:bd:b4:b5:
53:31:b7:2e:96:55:50:38:92:a5:c6:a8:4a:e4:64:
ca:94:e7:b4:96:a3:14:f6:f0:3f:de:dc:14:45:bd:
6c:f6:ba:42:80:5d:4f:ad:29:3f:64:3a:de:4f:43:
d2:fe:da:2a:73:49:3f:e0:3a:11:cc:4c:1b:87:d2:
d8:f3:ec:40:6f:01:69:79:39:96:f6:c6:60:d7:2c:
15:aa:93:ed:aa:9f:23:0d:ad:23:a4:b5:1d:cf:33:
36:a1:87:d8:e3:26:cd:da:c5:bb:41:88:d3:c5:2c:
fb:aa:bd:0a:04:01:57:64:7f:b7:fd:59:47:d9:0a:
2f:e6:87:14:6d:c3:65:9b:fa:a5:d6:fe:28:d4:fa:
9c:3b:10:2b:08:ee:de:67:d7:87:28:fd:47:77:58:
07:b3:a5:42:17:94:ac:6d:2a:df:a4:02:f7:4b:f1:
d8:64:f8:21:e0:6d:3e:c9:a0:f8:84:1a:35:42:e6:
14:3a:6f:a4:55:db:14:9b:2c:d0:af:c8:15:b7:11:
e2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C2:84:54:54:D4:AF:5D:9D:B0:73:84:60:12:A9:A7:4B:70:06:36
X509v3 Authority Key Identifier:
keyid:6D:3E:E1:A5:2A:5D:65:B9:09:1D:E5:A5:B4:64:FB:97:03:2D:0E:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bT7hpSpdZbkJHeWltGT7lwMtDps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/12e7d5-3a0f-4bc6-9611-05435efd8bf6/1/QcKEVFTUr12dsHOEYBKpp0twBjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/12e7d5-3a0f-4bc6-9611-05435efd8bf6/1/bT7hpSpdZbkJHeWltGT7lwMtDps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.100.0/24
195.246.98.0/23
Signature Algorithm: sha256WithRSAEncryption
96:8c:82:39:b2:d6:6a:9a:04:18:f5:59:3a:09:4f:55:3b:d1:
d4:9d:74:a3:ea:74:d4:cb:dd:3b:f9:96:d2:d9:5f:91:dc:43:
6e:ac:5b:e3:0a:c5:bc:15:10:63:7d:52:77:40:c5:e8:a7:45:
d5:0f:37:dd:94:6b:a5:e2:38:d5:9c:a3:08:6b:b2:91:40:a3:
61:b4:f4:be:d9:d9:ed:a6:53:c2:55:00:08:5e:60:5b:05:46:
3b:ab:97:43:d5:87:3d:28:c1:89:87:4f:c0:f0:4f:eb:0a:f7:
fc:90:25:18:1b:cc:95:0b:96:e1:3d:83:e6:3d:ea:e4:c4:f0:
7d:5f:31:1d:33:ff:7e:00:f0:83:06:20:53:89:a5:cf:a1:45:
6e:b4:25:73:26:e6:6f:8f:9b:96:3a:21:fd:ac:e0:13:89:ed:
2b:a8:d4:93:7c:74:9d:b8:76:87:04:02:cd:9b:d3:4d:2f:af:
31:b5:17:d7:9d:8b:79:d0:01:b2:5e:e4:d3:d0:8a:e3:95:3c:
1e:25:90:af:17:62:7d:6f:e2:77:70:b8:d0:e3:05:cd:70:b1:
9c:ea:6e:93:a4:8c:f0:6e:10:b8:90:04:7b:1b:4c:ec:e4:43:
b2:ab:9e:bd:01:d3:f9:d9:90:18:53:79:54:52:28:c8:2a:e0:
a6:6b:c2:a3
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEMQQTazANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZDNlZTFhNTJhNWQ2NWI5MDkxZGU1YTViNDY0ZmI5NzAzMmQwZTliMB4XDTIyMDYw
MzEyMTMyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDFjMjg0NTQ1NGQ0
YWY1ZDlkYjA3Mzg0NjAxMmE5YTc0YjcwMDYzNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO2gZvnAtNc34Vx3nshSCopwWpx/Nr/4J3S2ZfNTdJSvJ803
h2dX5cRZW1ambgzpWltqYfaDm5kPvbS1UzG3LpZVUDiSpcaoSuRkypTntJajFPbw
P97cFEW9bPa6QoBdT60pP2Q63k9D0v7aKnNJP+A6EcxMG4fS2PPsQG8BaXk5lvbG
YNcsFaqT7aqfIw2tI6S1Hc8zNqGH2OMmzdrFu0GI08Us+6q9CgQBV2R/t/1ZR9kK
L+aHFG3DZZv6pdb+KNT6nDsQKwju3mfXhyj9R3dYB7OlQheUrG0q36QC90vx2GT4
IeBtPsmg+IQaNULmFDpvpFXbFJss0K/IFbcR4i8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRBwoRUVNSvXZ2wc4RgEqmnS3AGNjAfBgNVHSMEGDAWgBRtPuGlKl1luQkd
5aW0ZPuXAy0OmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JUN2hwU3BkWmJrSkhlV2x0R1Q3bHdNdERwcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGEvMTJlN2Q1LTNhMGYtNGJjNi05NjExLTA1NDM1ZWZkOGJmNi8x
L1FjS0VWRlRVcjEyZHNIT0VZQktwcDB0d0JqWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGEv
MTJlN2Q1LTNhMGYtNGJjNi05NjExLTA1NDM1ZWZkOGJmNi8xL2JUN2hwU3BkWmJr
SkhlV2x0R1Q3bHdNdERwcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMEQZAMEAcP2YjANBgkqhkiG9w0B
AQsFAAOCAQEAloyCObLWapoEGPVZOglPVTvR1J10o+p01MvdO/mW0tlfkdxDbqxb
4wrFvBUQY31Sd0DF6KdF1Q833ZRrpeI41ZyjCGuykUCjYbT0vtnZ7aZTwlUACF5g
WwVGO6uXQ9WHPSjBiYdPwPBP6wr3/JAlGBvMlQuW4T2D5j3q5MTwfV8xHTP/fgDw
gwYgU4mlz6FFbrQlcybmb4+bljoh/azgE4ntK6jUk3x0nbh2hwQCzZvTTS+vMbUX
152LedABsl7k09CK45U8HiWQrxdifW/id3C40OMFzXCxnOpuk6SM8G4QuJAEextM
7ORDsquevQHT+dmQGFN5VFIoyCrgpmvCow==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:46 2023 by rpki-client on console-ams.rpki-client.org