Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/QVvTRZ2raWNZGnIjhwP7YQnVux8.roa
File: QVvTRZ2raWNZGnIjhwP7YQnVux8.roa (raw, json)
Hash identifier: Ala9RxZLaYDMxzjz54+cG6o9DdU5oLOAi8kwCj0iaQk=
Subject key identifier: 41:5B:D3:45:9D:AB:69:63:59:1A:72:23:87:03:FB:61:09:D5:BB:1F
Certificate issuer: /CN=126c660b30f5692b2b16e289b24901c518fda520
Certificate serial: 06B97723
Authority key identifier: 12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/QVvTRZ2raWNZGnIjhwP7YQnVux8.roa
Signing time: Sat 01 Jan 2022 05:06:31 +0000
ROA not before: Sat 01 Jan 2022 05:06:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213019
IP address blocks: 194.39.71.0/24 maxlen: 24
194.39.69.0/24 maxlen: 24
194.39.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112817955 (0x6b97723)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=126c660b30f5692b2b16e289b24901c518fda520
Validity
Not Before: Jan 1 05:06:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=415bd3459dab6963591a72238703fb6109d5bb1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:16:b0:48:b1:92:b6:8d:03:26:5f:7e:d2:34:
f9:53:cf:3e:6a:bd:50:42:32:fc:1d:22:de:3d:64:
0a:0c:e7:4f:6e:5a:21:ff:d5:3e:d7:50:69:81:df:
d6:08:8d:1a:b9:c4:78:9c:99:00:07:7e:8e:7d:de:
20:20:17:06:4d:eb:ec:09:ea:fd:20:e1:f5:da:1d:
66:6d:33:f6:10:08:8a:79:34:35:3a:d1:e9:79:55:
d1:d2:b3:4d:bf:84:7f:c3:0f:ba:56:e8:e2:70:2a:
e2:b4:6b:06:ec:f8:dd:a9:a7:6c:5d:7c:c0:00:a7:
00:7b:24:c0:7d:42:06:8b:f0:d9:90:ba:8f:31:f9:
3c:a3:d8:61:59:dd:3c:63:9e:a1:77:52:75:26:5d:
58:ac:57:8f:13:bc:46:4e:e6:07:17:f2:5f:0a:3e:
6e:b6:f2:bf:7a:66:0e:a8:4f:de:5d:fd:6a:6b:35:
ea:f6:22:de:9f:e9:df:bf:66:c1:7c:21:66:25:c1:
d7:39:61:1f:dc:5a:53:47:3a:be:39:f2:05:69:ef:
94:32:82:7b:7e:95:b2:15:dc:5d:0b:0e:96:50:3d:
2d:34:8d:69:86:ea:8c:e7:e7:25:7e:04:0f:ac:97:
5c:f0:fa:85:3b:d8:20:12:d0:74:69:73:81:80:ba:
12:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:5B:D3:45:9D:AB:69:63:59:1A:72:23:87:03:FB:61:09:D5:BB:1F
X509v3 Authority Key Identifier:
keyid:12:6C:66:0B:30:F5:69:2B:2B:16:E2:89:B2:49:01:C5:18:FD:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EmxmCzD1aSsrFuKJskkBxRj9pSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/QVvTRZ2raWNZGnIjhwP7YQnVux8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/db787f-c27a-4f23-99b2-438acb72fc5b/1/EmxmCzD1aSsrFuKJskkBxRj9pSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.69.0-194.39.71.255
Signature Algorithm: sha256WithRSAEncryption
2d:51:8e:04:96:9e:4d:bf:66:54:af:9e:72:c4:29:4d:41:89:
31:46:8a:a7:f7:42:6d:23:65:8e:6a:f2:90:38:58:60:1a:4d:
53:c4:91:87:90:5d:7d:8c:fe:d2:fa:f7:7b:bb:c1:f4:18:82:
46:ec:a9:58:f6:db:00:c4:94:2d:91:dd:31:71:b9:fe:6e:3f:
72:7e:b2:c4:22:ee:b4:f0:3f:3d:63:7b:21:e0:f2:26:e6:08:
b6:45:b4:30:4c:e4:ad:1a:4c:2b:af:76:ff:c9:ed:6c:68:ca:
79:a4:08:35:ef:7c:b5:8b:c7:94:7d:1f:87:ab:9d:24:43:ed:
91:ce:74:69:c9:5a:f3:79:5e:cd:41:5f:87:8b:5f:bf:d3:fc:
f6:cc:fa:7a:63:06:14:00:46:12:06:56:c1:26:69:08:99:33:
d9:f9:fe:a2:e5:6a:db:c5:d7:9b:e3:5f:d8:aa:8a:eb:2a:69:
d3:27:5e:1d:d5:cf:9b:05:b8:34:be:c0:61:f0:37:33:b9:fe:
ef:be:10:68:80:94:2a:fc:d8:3d:40:f5:8e:72:1d:86:23:35:
97:d6:00:27:12:e9:49:16:80:0e:01:e3:5b:68:30:ea:08:48:
43:6b:49:a0:e4:f2:28:17:85:3a:1b:77:c7:bc:1b:c2:42:f1:
6c:99:d2:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:10 2023 by rpki-client on console-ams.rpki-client.org