Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/977ddb-3095-488d-b36b-8008d1e7c38c/1/QY1hzODRQGqs0jyD9L4ZQOzNT-U.roa
File: QY1hzODRQGqs0jyD9L4ZQOzNT-U.roa (raw, json)
Hash identifier: lmXkAMJIjJhuKsX/ApPpjer6UG8OKLZc/X2jOHLi/tQ=
Subject key identifier: 41:8D:61:CC:E0:D1:40:6A:AC:D2:3C:83:F4:BE:19:40:EC:CD:4F:E5
Certificate issuer: /CN=cb302a273ab4ef25a8ea91a4a3779bcf7d1de59b
Certificate serial: 22363B
Authority key identifier: CB:30:2A:27:3A:B4:EF:25:A8:EA:91:A4:A3:77:9B:CF:7D:1D:E5:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzAqJzq07yWo6pGko3ebz30d5Zs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/977ddb-3095-488d-b36b-8008d1e7c38c/1/QY1hzODRQGqs0jyD9L4ZQOzNT-U.roa
Signing time: Tue 15 Mar 2022 18:18:05 +0000
ROA not before: Tue 15 Mar 2022 18:18:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43028
IP address blocks: 193.200.201.0/24 maxlen: 24
2001:67c:12c8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2242107 (0x22363b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb302a273ab4ef25a8ea91a4a3779bcf7d1de59b
Validity
Not Before: Mar 15 18:18:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=418d61cce0d1406aacd23c83f4be1940eccd4fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f4:79:2d:1a:07:d5:d7:c4:cc:aa:46:a3:87:
59:8f:c3:71:d5:36:b9:2b:b8:3c:e5:db:c3:35:13:
fe:12:ae:e5:37:1c:4a:40:2d:26:c0:96:a8:c2:64:
4a:c5:02:f7:0b:88:0b:39:23:d5:cd:19:16:8c:3c:
a7:7f:46:1c:2f:1c:e8:85:39:97:e8:f0:04:f8:76:
89:55:1c:91:32:7d:67:6f:66:70:4d:cc:ec:2e:85:
e0:f6:de:71:f5:ab:38:79:91:6e:83:ac:56:a1:75:
69:14:d1:c7:b1:b9:3c:86:d1:8f:51:d8:cb:a5:0c:
47:a2:47:f8:10:50:83:ca:15:35:ef:ac:60:d4:f5:
ab:62:53:95:4a:fc:2f:36:ce:15:f1:54:f8:5d:82:
08:b9:cc:a3:63:38:ed:2c:45:9a:20:61:18:40:36:
5f:36:05:3f:25:8e:c8:40:4e:4b:a8:c2:ae:cc:28:
cd:7c:ed:5d:79:98:1a:8d:a5:7b:d3:98:b2:83:16:
a5:af:74:a5:31:05:84:f9:36:15:6c:26:6d:53:28:
91:aa:12:ec:72:08:eb:c0:91:13:3d:05:61:d2:2b:
ce:c7:2c:4a:2a:fa:2e:5e:7a:11:e7:98:7d:c7:25:
a2:c9:f3:9b:b4:de:ef:9a:01:79:8d:b7:c1:a3:94:
09:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8D:61:CC:E0:D1:40:6A:AC:D2:3C:83:F4:BE:19:40:EC:CD:4F:E5
X509v3 Authority Key Identifier:
keyid:CB:30:2A:27:3A:B4:EF:25:A8:EA:91:A4:A3:77:9B:CF:7D:1D:E5:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzAqJzq07yWo6pGko3ebz30d5Zs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/977ddb-3095-488d-b36b-8008d1e7c38c/1/QY1hzODRQGqs0jyD9L4ZQOzNT-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/977ddb-3095-488d-b36b-8008d1e7c38c/1/yzAqJzq07yWo6pGko3ebz30d5Zs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.201.0/24
IPv6:
2001:67c:12c8::/48
Signature Algorithm: sha256WithRSAEncryption
70:7b:0b:11:1a:07:b0:85:f9:0d:f3:08:5f:3c:3d:e5:94:c5:
d0:91:60:15:57:1e:6c:ff:5f:5a:56:57:79:cd:94:9b:10:71:
bf:d3:5b:19:4e:29:32:33:ab:94:5b:c6:24:12:fb:f5:22:40:
24:a9:9a:c9:02:1f:cd:9b:26:22:56:ab:b2:31:6a:ed:66:48:
53:9e:74:df:a0:c0:d4:1e:48:6c:c6:21:14:1c:6b:ea:13:1b:
76:3f:83:56:ca:10:7d:b8:d2:bb:57:d9:ef:bf:0f:ff:eb:8b:
ca:eb:76:5b:4a:0b:8d:e8:5a:af:0d:f6:34:e9:b5:6c:8d:e6:
a9:e2:31:e4:4c:c5:43:b3:3f:1c:d3:3a:f8:6c:06:de:e2:84:
07:8a:15:4f:68:7f:53:99:13:5f:a8:e2:87:a5:e3:69:20:72:
80:70:d9:da:44:6e:74:b8:fd:76:ac:3a:87:08:bd:5f:4f:ac:
32:47:95:cd:ab:c5:53:d4:8e:57:f5:0b:60:4a:d3:e6:82:a1:
d4:6e:62:1a:cd:3c:99:37:7b:ee:91:10:4f:b5:62:a6:37:f4:
90:d6:3b:e3:b0:d8:6a:67:30:08:a5:62:6e:45:15:79:50:b7:
57:dd:71:45:10:8a:a9:60:24:08:a9:25:61:af:5c:dc:89:85:
86:6b:38:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:46 2024 by rpki-client on console-ams.rpki-client.org