Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/QHljL1VU2vWzByiV6ynKrFdI3ko.roa
File: QHljL1VU2vWzByiV6ynKrFdI3ko.roa (raw, json)
Hash identifier: AEjSLL9MD4ZVY4d1j5lFiFwd7LSlcImsTFE+oekWb7g=
Subject key identifier: 40:79:63:2F:55:54:DA:F5:B3:07:28:95:EB:29:CA:AC:57:48:DE:4A
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 060D461C
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/QHljL1VU2vWzByiV6ynKrFdI3ko.roa
Signing time: Sat 01 Jan 2022 16:01:29 +0000
ROA not before: Sat 01 Jan 2022 16:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212946
IP address blocks: 193.41.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101533212 (0x60d461c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 16:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4079632f5554daf5b3072895eb29caac5748de4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:94:a4:b9:84:73:5f:7d:53:d1:07:b0:eb:31:
cb:91:4c:34:2a:66:12:5a:0a:85:5b:3d:23:20:c0:
6d:da:15:75:3a:06:43:52:64:ad:9c:10:90:59:59:
90:e8:77:c5:4e:a3:0b:17:15:e3:db:bb:c9:ea:61:
a4:ac:f7:da:ab:b8:16:4f:4a:7d:b2:d5:c2:a0:d4:
df:10:21:88:04:32:60:b4:11:ba:95:fe:99:a6:11:
cc:3c:c1:99:30:ee:23:67:07:77:82:99:76:d4:cf:
db:e6:7a:69:83:55:d2:8e:b5:e4:61:9e:65:5f:19:
40:09:64:b8:ba:31:e9:e4:84:83:e7:2d:23:40:1d:
83:b1:05:ec:8f:00:f2:d0:bf:d6:2c:3f:b1:e1:3c:
2c:35:fe:0d:fa:13:10:bb:a5:d3:e5:9e:b7:49:9a:
a6:9c:e7:fb:f5:cb:64:db:88:64:79:8f:60:95:40:
5f:c7:ad:0a:76:1a:c4:39:e7:ca:d5:e9:75:2f:10:
0e:14:09:c7:89:36:6f:1c:39:84:04:ab:0e:10:99:
a0:16:d4:3f:fc:67:f2:a2:bf:8a:28:c0:78:44:8f:
bc:34:b4:23:33:1e:40:d9:b2:5f:97:54:62:8d:bd:
43:41:00:dd:bb:34:05:f1:e8:a9:e0:f7:70:84:b5:
aa:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:79:63:2F:55:54:DA:F5:B3:07:28:95:EB:29:CA:AC:57:48:DE:4A
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/QHljL1VU2vWzByiV6ynKrFdI3ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.217.0/24
Signature Algorithm: sha256WithRSAEncryption
75:af:89:38:c2:18:c0:5a:53:0f:05:03:58:6c:90:a3:de:af:
c7:36:8f:61:f2:b4:8d:59:77:97:fb:34:aa:94:09:62:5c:80:
a9:f9:e7:87:5b:78:9a:85:09:f5:94:94:4f:5d:ab:69:4f:3c:
ae:a2:47:ff:03:60:87:5c:0e:cd:21:d6:e0:b1:50:8c:5e:48:
54:0d:b3:03:2c:80:a4:be:69:12:34:6e:85:0e:25:e4:e8:bd:
bd:28:b6:7e:3f:6b:1e:ce:ab:64:1b:d9:9e:47:03:d4:45:bc:
75:5a:83:59:02:1c:a1:c7:54:89:c5:00:65:29:51:8d:8b:f7:
5a:a7:61:1e:d2:0e:94:1e:fd:60:56:c8:33:65:c6:2d:cf:72:
da:67:43:3e:b1:a8:c7:68:4c:28:b3:9f:b9:cf:bf:a2:98:1c:
83:04:8c:dc:29:8e:55:bb:04:3e:45:c5:c5:94:13:4b:7f:ae:
a1:65:c7:ce:0a:b8:fb:1c:71:b6:16:22:27:62:84:b4:35:aa:
2b:e7:2b:c5:08:85:89:c7:04:36:ad:d3:e1:61:44:4e:27:aa:
92:f1:8b:a6:60:98:f5:4e:3f:fb:7c:12:cc:d4:25:50:92:e3:
8e:99:d2:26:b2:1b:d4:9e:cf:65:98:be:b0:f5:40:f6:83:2d:
20:3d:e8:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org