Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/d505a5-243d-4619-a6fa-fbd703ee6c93/1/q_cZ4K2kN6w0NAgmI8ZveS2uLAc.roa
File: q_cZ4K2kN6w0NAgmI8ZveS2uLAc.roa (raw, json)
Hash identifier: keAxdKEKa01bjOqGeEFJO9Cfs4CGKBT6S3X1T+nM3eg=
Subject key identifier: AB:F7:19:E0:AD:A4:37:AC:34:34:08:26:23:C6:6F:79:2D:AE:2C:07
Certificate issuer: /CN=8ff1c98d3a77824e236b2c4cdd9378c0509a3de8
Certificate serial: 18414BA9
Authority key identifier: 8F:F1:C9:8D:3A:77:82:4E:23:6B:2C:4C:DD:93:78:C0:50:9A:3D:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_HJjTp3gk4jayxM3ZN4wFCaPeg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/d505a5-243d-4619-a6fa-fbd703ee6c93/1/q_cZ4K2kN6w0NAgmI8ZveS2uLAc.roa
Signing time: Sat 01 Jan 2022 12:58:17 +0000
ROA not before: Sat 01 Jan 2022 12:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198854
IP address blocks: 194.33.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406932393 (0x18414ba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ff1c98d3a77824e236b2c4cdd9378c0509a3de8
Validity
Not Before: Jan 1 12:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abf719e0ada437ac3434082623c66f792dae2c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f6:c3:67:d7:0f:8f:0c:55:f1:bd:7b:44:4f:
e7:84:5c:5d:fc:86:ba:cf:a4:1d:8a:32:8b:f5:f2:
22:d5:81:ad:8f:5a:42:ee:c5:90:28:08:27:af:09:
b1:f0:2d:fb:01:ad:76:34:da:c4:b7:b8:51:5a:71:
bb:09:77:ab:a2:39:42:ee:4e:9c:f8:55:9b:99:fd:
44:21:1c:c9:79:f0:75:c4:e9:69:34:20:7b:c1:ba:
ed:b8:1a:f2:92:d4:6c:6f:76:91:80:4e:62:fa:5e:
e9:5a:74:e6:ce:ce:e9:26:f4:09:11:5d:37:7f:5e:
a7:17:07:e7:5e:ba:b9:a6:7e:61:e6:ba:79:f3:7e:
c2:9d:81:60:18:e0:26:92:ac:22:b2:a6:09:5d:fe:
72:dd:9e:56:73:b0:62:72:ff:bf:c7:07:3c:64:1b:
36:8a:43:37:8f:15:8b:47:49:d4:ac:74:65:e9:83:
1d:75:24:4b:e1:a6:b6:0e:ac:42:5f:f5:d0:e0:c6:
a4:fa:b8:dd:07:3b:19:67:b3:61:0c:3a:5b:88:9a:
e3:18:62:47:7d:00:9c:3c:51:e5:5f:cb:d3:6f:a6:
bf:32:0c:af:8b:73:8a:11:32:cf:36:45:e5:65:01:
09:b4:1c:7d:6e:1f:1f:70:24:45:17:15:08:8a:f3:
db:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F7:19:E0:AD:A4:37:AC:34:34:08:26:23:C6:6F:79:2D:AE:2C:07
X509v3 Authority Key Identifier:
keyid:8F:F1:C9:8D:3A:77:82:4E:23:6B:2C:4C:DD:93:78:C0:50:9A:3D:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_HJjTp3gk4jayxM3ZN4wFCaPeg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/d505a5-243d-4619-a6fa-fbd703ee6c93/1/q_cZ4K2kN6w0NAgmI8ZveS2uLAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/d505a5-243d-4619-a6fa-fbd703ee6c93/1/j_HJjTp3gk4jayxM3ZN4wFCaPeg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.83.0/24
Signature Algorithm: sha256WithRSAEncryption
47:08:fc:81:02:43:ee:12:b8:a4:e0:96:7c:f8:e1:88:13:2e:
e5:31:d9:4f:16:96:4d:c7:13:95:8c:ff:3d:2b:eb:18:6a:05:
af:d0:f3:34:74:60:a7:9d:d9:2f:e1:fc:63:e0:75:0e:74:71:
1d:bc:8b:b6:fc:84:77:4a:c1:97:5b:44:c7:cd:98:bd:a2:00:
e9:c4:60:aa:3b:9d:47:c4:9b:85:86:eb:58:08:57:78:96:d9:
62:43:fb:6e:cf:fa:ea:ac:a0:6e:f6:3a:1e:1b:35:d8:d8:64:
40:b6:31:db:79:1c:2b:b2:94:8d:bf:1a:13:db:2c:6a:d3:a4:
97:c1:47:ef:0f:e0:2b:51:18:fa:50:d1:06:82:fc:90:3d:75:
d3:17:1b:76:1c:2e:c5:2d:cc:be:d8:9b:bf:2f:4a:eb:8f:64:
02:8b:5e:f9:24:8b:ca:27:23:0d:d8:bf:42:17:d9:4e:8d:db:
b2:ed:55:89:0e:70:a0:a1:6e:a7:ce:9b:6e:93:40:84:d4:6d:
ab:a9:ee:22:a4:08:cf:3f:45:1a:7f:82:e3:5c:da:89:62:aa:
dc:cd:1c:3f:bd:93:4d:36:de:80:33:78:7d:7f:d6:65:36:76:
56:19:ae:d9:ab:28:41:d0:39:de:4d:e0:be:19:be:31:f1:d3:
05:00:2a:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:41 2023 by rpki-client on console-fra.rpki-client.org