Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/qdjBZVdup7xrEJHFYex8VmWMv4I.roa
File: qdjBZVdup7xrEJHFYex8VmWMv4I.roa (raw, json)
Hash identifier: YpggujfJVMDDJq56Nu9uXQkgN+lcL6uPQfRMyDozIBA=
Subject key identifier: A9:D8:C1:65:57:6E:A7:BC:6B:10:91:C5:61:EC:7C:56:65:8C:BF:82
Certificate issuer: /CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Certificate serial: 01837A57F6591267B3C679AD6485358AFCE6
Authority key identifier: EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/qdjBZVdup7xrEJHFYex8VmWMv4I.roa
Signing time: Mon 26 Sep 2022 15:08:48 +0000
ROA not before: Mon 26 Sep 2022 15:08:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 185.255.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7a:57:f6:59:12:67:b3:c6:79:ad:64:85:35:8a:fc:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Validity
Not Before: Sep 26 15:08:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9d8c165576ea7bc6b1091c561ec7c56658cbf82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:1b:01:7f:fb:6e:b6:4e:09:7f:d1:5a:ae:6f:
f3:8d:1b:5c:b5:24:28:f4:d0:bd:85:d2:13:b7:5b:
bc:5c:8b:59:30:1d:41:df:47:61:37:0c:ff:ab:48:
41:7a:1f:a7:d1:23:44:db:ee:c9:b6:d8:79:27:ce:
9e:34:6e:46:6b:36:bf:e4:b5:12:a8:28:1c:92:73:
ed:89:12:45:51:ab:fe:28:27:10:f3:a7:10:c8:14:
c0:96:91:f3:25:ff:5c:48:23:3e:fd:72:08:28:30:
64:d9:c7:d1:65:33:24:79:26:fc:af:50:0d:40:c7:
18:73:57:24:93:bf:f7:7b:89:bf:ba:41:b5:ac:ae:
c8:a9:ad:3e:9a:b2:52:19:6f:08:15:52:8e:73:1a:
f7:d9:ad:cd:a1:2d:e0:93:26:a4:e0:ae:01:39:49:
d8:2c:4a:5d:61:4d:cb:95:f9:c9:75:e0:8c:b6:d2:
e6:8a:d0:33:5d:d4:bf:23:5c:5c:71:e4:c5:bd:c3:
18:42:65:72:dd:a2:2f:59:cf:66:87:39:ae:b1:cb:
e7:41:26:21:ba:0a:56:c6:03:50:08:79:7c:1c:89:
17:80:43:d6:e1:46:0f:a0:1a:7f:64:4f:0b:f9:89:
f9:2b:8d:30:30:fc:8b:88:7f:98:4e:64:c2:98:8b:
98:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:D8:C1:65:57:6E:A7:BC:6B:10:91:C5:61:EC:7C:56:65:8C:BF:82
X509v3 Authority Key Identifier:
keyid:EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/qdjBZVdup7xrEJHFYex8VmWMv4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/73OJCflNmWhDa7Tgmi1HzHkBczw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.123.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:d5:4b:85:b1:0b:e9:5c:9f:0c:c1:14:55:4a:c7:7b:e1:34:
8e:e5:a8:80:b5:67:e7:0f:be:9e:58:c7:d0:ff:eb:6b:19:e0:
02:db:fa:fc:5d:75:6a:4d:0f:0c:8d:33:cf:d1:96:47:61:f6:
ee:85:19:f4:59:f1:9e:94:3f:4d:d8:7f:27:ff:34:c1:e9:2f:
6f:4a:a6:9a:25:f4:dc:89:68:b7:86:1a:4c:4a:5d:6d:71:ab:
0b:16:94:5d:ab:a5:82:3e:43:b0:1d:fd:0f:31:19:e4:c2:51:
0e:ae:6d:a0:b2:99:39:6d:cf:3b:c3:79:11:b1:e1:3a:56:1f:
51:4e:eb:9e:00:b4:fd:81:64:4f:40:0c:fd:83:6c:42:a5:16:
ae:a7:76:57:6a:cf:12:47:cd:c3:c2:8e:48:12:f3:21:ea:9f:
20:af:88:f2:29:6e:41:37:f1:3b:80:30:7e:3d:28:97:5c:10:
32:c1:25:65:8c:6f:1a:fb:3b:e3:21:fd:9f:18:5d:04:d2:13:
d8:f7:3a:51:ce:98:e7:c9:e1:b6:b1:8c:4c:0f:2a:19:c0:4e:
e6:52:6b:88:30:0c:ff:36:2e:4d:97:ad:32:64:df:b4:0b:3f:
f2:5c:83:dc:cf:96:67:c1:d4:db:84:8a:6d:7b:7b:d4:1c:9c:
83:2e:09:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:30 2023 by rpki-client on console-fra.rpki-client.org