Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/QYO97fHzoN-76ha2E1FpC9SmCyo.roa
File: QYO97fHzoN-76ha2E1FpC9SmCyo.roa (raw, json)
Hash identifier: NgdoTsp2ocigquo8YiYVC8tLZUfom5Q8ECdsvJ/V45M=
Subject key identifier: 41:83:BD:ED:F1:F3:A0:DF:BB:EA:16:B6:13:51:69:0B:D4:A6:0B:2A
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 037B53A5
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/QYO97fHzoN-76ha2E1FpC9SmCyo.roa
Signing time: Sun 20 Mar 2022 05:54:08 +0000
ROA not before: Sun 20 Mar 2022 05:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207152
IP address blocks: 185.248.50.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58413989 (0x37b53a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: Mar 20 05:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4183bdedf1f3a0dfbbea16b61351690bd4a60b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:61:a5:73:dd:8c:bc:05:6e:d2:9d:c8:8c:68:
01:3a:4f:fa:bc:2a:1a:9c:1a:b9:09:8f:37:01:1e:
66:96:fb:a0:6c:c0:7e:ec:84:d9:34:43:fb:58:1e:
68:29:d2:8f:24:58:1b:11:1d:f5:62:fe:d7:59:4e:
dd:a1:b2:ea:b2:7d:eb:d9:7a:d0:63:a6:3e:ed:c9:
5c:97:3f:fe:df:0e:e4:da:0e:75:f1:8a:69:62:8f:
35:91:b9:5b:a8:f9:3c:6f:ee:2b:67:0b:f4:51:89:
f6:df:ae:ea:c0:33:f2:4f:c3:b7:36:e6:81:29:75:
1b:cf:0f:88:f4:f7:9f:5d:6a:65:5e:7f:dc:34:ae:
81:ca:18:20:fd:06:c4:ce:80:21:5a:7b:b2:d8:18:
1e:77:ab:d0:be:93:5b:12:41:88:9f:c8:ed:a3:a6:
29:0b:e3:ce:86:f7:53:ef:99:a6:58:e6:26:39:13:
60:da:77:74:28:f2:ff:31:04:96:49:79:66:94:b6:
2a:d5:b3:12:20:3a:65:bf:69:dd:9e:f8:a5:96:0c:
ef:61:f7:56:0b:d4:62:fa:de:c0:02:f8:a4:03:64:
ad:83:6b:97:b0:00:38:85:01:f0:23:e1:78:ed:bf:
11:bc:d9:9b:e6:5d:9e:4e:b9:ff:9c:79:e9:a5:e7:
78:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:83:BD:ED:F1:F3:A0:DF:BB:EA:16:B6:13:51:69:0B:D4:A6:0B:2A
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/QYO97fHzoN-76ha2E1FpC9SmCyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.50.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:c0:2d:dc:44:fb:00:7c:3e:6a:87:5d:41:00:c7:9f:87:2d:
03:e9:15:35:61:61:b9:f0:b5:9e:ee:6e:50:ee:1c:2d:27:dc:
0a:fd:cc:8d:f9:5f:38:ac:ac:7e:fa:58:fc:02:d6:75:90:e5:
06:94:b0:2a:90:c8:05:7c:68:db:5c:3d:e2:2e:a4:7a:c8:ba:
cb:e2:ee:af:9c:26:0d:c0:2d:3f:d3:de:bf:6e:9d:93:4a:ce:
a2:c2:82:75:4c:9d:87:5c:04:65:93:08:cf:b2:08:fd:84:09:
2f:8e:4f:5c:c8:7f:6d:4b:69:d0:a5:91:15:14:03:b7:0e:7b:
36:dc:7c:c5:35:70:f7:85:22:80:59:b7:2c:08:1f:63:39:58:
cd:1b:29:ce:8a:a6:01:0d:eb:e8:24:6d:66:5c:34:4d:9f:cb:
70:25:75:1a:55:81:a4:31:30:b6:f1:25:b2:0e:56:ae:7f:5e:
50:55:d0:8d:6c:01:fb:17:05:b1:d4:3e:99:5e:08:ad:e4:8e:
d8:d2:9f:cd:a8:cd:91:d9:85:62:c3:67:b1:c1:21:58:8d:a9:
72:cc:e7:32:2e:74:c0:5b:26:b3:41:3b:48:72:4d:77:b7:0e:
6b:62:92:66:23:13:92:97:60:fb:1d:c6:3e:6f:e3:49:c5:91:
e1:3a:b7:8a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA3tTpTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
YzQxNDExZTkzZTI1ZDVlYzY1MDk5NTY5YjFiNWM1ZmFkYzFhZTNkMB4XDTIyMDMy
MDA1NTQwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDE4M2JkZWRmMWYz
YTBkZmJiZWExNmI2MTM1MTY5MGJkNGE2MGIyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMxhpXPdjLwFbtKdyIxoATpP+rwqGpwauQmPNwEeZpb7oGzA
fuyE2TRD+1geaCnSjyRYGxEd9WL+11lO3aGy6rJ969l60GOmPu3JXJc//t8O5NoO
dfGKaWKPNZG5W6j5PG/uK2cL9FGJ9t+u6sAz8k/DtzbmgSl1G88PiPT3n11qZV5/
3DSugcoYIP0GxM6AIVp7stgYHner0L6TWxJBiJ/I7aOmKQvjzob3U++ZpljmJjkT
YNp3dCjy/zEElkl5ZpS2KtWzEiA6Zb9p3Z74pZYM72H3VgvUYvrewAL4pANkrYNr
l7AAOIUB8CPheO2/EbzZm+Zdnk65/5x56aXneF8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRBg73t8fOg37vqFrYTUWkL1KYLKjAfBgNVHSMEGDAWgBTcQUEek+JdXsZQ
mVabG1xfrcGuPTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNFRkJIcFBpWFY3R1VKbFdteHRjWDYzQnJqMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGQvM2Q0NzMxLThjZjMtNDMyNy1hZTZhLTUxMzg3ZDE2MGJhOS8x
L1FZTzk3Zkh6b04tNzZoYTJFMUZwQzlTbUN5by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGQv
M2Q0NzMxLThjZjMtNDMyNy1hZTZhLTUxMzg3ZDE2MGJhOS8xLzNFRkJIcFBpWFY3
R1VKbFdteHRjWDYzQnJqMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAbn4MjANBgkqhkiG9w0BAQsFAAOC
AQEAXcAt3ET7AHw+aoddQQDHn4ctA+kVNWFhufC1nu5uUO4cLSfcCv3MjflfOKys
fvpY/ALWdZDlBpSwKpDIBXxo21w94i6kesi6y+Lur5wmDcAtP9Pev26dk0rOosKC
dUydh1wEZZMIz7II/YQJL45PXMh/bUtp0KWRFRQDtw57Ntx8xTVw94UigFm3LAgf
YzlYzRspzoqmAQ3r6CRtZlw0TZ/LcCV1GlWBpDEwtvElsg5Wrn9eUFXQjWwB+xcF
sdQ+mV4IreSO2NKfzajNkdmFYsNnscEhWI2pcsznMi50wFsms0E7SHJNd7cOa2KS
ZiMTkpdg+x3GPm/jScWR4Tq3ig==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:59 2023 by rpki-client on console-ams.rpki-client.org