Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/I742-QglvoQ2mn5uSchrVpfao_Y.roa
File: I742-QglvoQ2mn5uSchrVpfao_Y.roa (raw, json)
Hash identifier: h+UuNwWioj3K8d8NxCtIvEomWqVMLpUxt2vBEUDd3/I=
Subject key identifier: 23:BE:36:F9:08:25:BE:84:36:9A:7E:6E:49:C8:6B:56:97:DA:A3:F6
Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170
Certificate serial: 06F02AED
Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/I742-QglvoQ2mn5uSchrVpfao_Y.roa
Signing time: Sat 01 Jan 2022 11:56:28 +0000
ROA not before: Sat 01 Jan 2022 11:56:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25115
IP address blocks: 193.201.236.0/22 maxlen: 22
193.23.243.0/24 maxlen: 24
194.15.176.0/23 maxlen: 23
2a09:20c1::/32 maxlen: 32
2a09:20c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116402925 (0x6f02aed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64daba15d1d366cb53095412d06490e23498e170
Validity
Not Before: Jan 1 11:56:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23be36f90825be84369a7e6e49c86b5697daa3f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e9:20:c5:a0:8f:f5:51:1b:8d:40:c1:d2:85:
24:58:3c:0b:82:44:1b:9d:1d:ef:d6:5e:a0:51:ac:
95:af:bc:79:38:90:d8:99:5c:ea:53:d2:4b:4d:ee:
8e:08:b7:a6:58:75:6f:c7:e7:32:e6:03:85:23:ec:
a9:b4:ab:6d:ee:3c:a9:1d:8d:e9:a0:7f:b0:bf:13:
7c:fd:3d:3a:ad:91:f3:4b:05:11:dd:bf:a7:0d:82:
1c:31:5e:87:00:65:7c:30:78:00:c1:9b:e6:a8:52:
ed:94:02:a3:f2:2b:88:f6:de:83:cb:3b:75:a5:96:
10:1e:5c:c3:56:c2:cd:11:ca:c0:32:8b:02:7a:fd:
4d:39:92:26:a4:65:8e:14:ab:3d:30:f4:9d:b2:43:
96:ec:93:7e:a2:db:29:b3:e1:21:15:7f:5a:12:4f:
30:7e:46:65:24:d1:0f:9c:a2:ac:09:66:e3:86:0c:
40:47:34:41:a0:69:3c:22:c6:4e:4e:13:6d:f9:42:
e1:7d:d5:d8:05:15:26:5a:73:38:10:94:3d:86:65:
4b:58:88:b1:f6:57:2f:a0:40:45:a0:07:a6:cf:1f:
9d:e4:ce:b8:05:0d:8a:9d:c9:82:2b:58:56:fc:71:
da:a0:2e:3d:20:b1:d5:5b:ea:45:92:83:fd:e1:8a:
c2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:BE:36:F9:08:25:BE:84:36:9A:7E:6E:49:C8:6B:56:97:DA:A3:F6
X509v3 Authority Key Identifier:
keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/I742-QglvoQ2mn5uSchrVpfao_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.243.0/24
193.201.236.0/22
194.15.176.0/23
IPv6:
2a09:20c0::/31
Signature Algorithm: sha256WithRSAEncryption
79:84:d2:31:8a:4f:d8:a5:ac:59:10:e2:db:c4:62:c9:6d:42:
7c:8c:03:f4:b7:7a:66:e5:40:fb:f6:ba:0c:93:1e:dd:b4:12:
01:6b:f7:58:e6:89:15:6b:04:1f:bb:ab:7a:06:b0:bd:b6:d7:
de:ce:1b:37:e6:b4:37:16:ea:bc:e6:38:5d:60:67:f5:7e:22:
b5:a7:01:8f:9a:18:df:4c:3f:7e:b2:4b:38:24:a9:2c:b0:cb:
f1:fb:c2:d1:7b:80:b2:d7:40:30:a0:55:3d:6f:1f:ee:8a:a5:
5c:a4:47:f0:44:00:01:5b:f8:ff:54:13:49:fd:0f:eb:cc:fe:
c8:2b:bc:97:47:b2:8e:ca:03:43:c0:eb:bb:51:81:a0:4e:be:
cd:9d:ee:28:2b:5a:a4:b6:04:af:e5:ec:42:2c:0b:5a:f0:b9:
2b:8c:e5:46:15:fb:6c:3d:09:e9:48:f2:1a:b1:dc:63:4a:d3:
a2:11:a3:7c:ee:52:0e:b2:2c:26:bb:9a:6d:74:c3:70:60:64:
03:cf:9c:7a:94:8f:73:77:58:41:e8:af:b9:4e:71:05:4f:41:
2e:e0:3d:52:74:b8:b5:c8:e6:be:ad:8e:88:9a:b5:b5:12:b3:
e0:2d:27:2b:6a:4f:ff:c7:4e:1f:18:af:17:d6:ce:78:65:0a:
3d:81:b3:b7
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:04 2024 by rpki-client on console-fra.rpki-client.org