Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/Qizyh-xYYCgfioEzNrnOEQB2iTE.roa
File: Qizyh-xYYCgfioEzNrnOEQB2iTE.roa (raw, json)
Hash identifier: l51kHkIPfUxoCli6j0nK77RqIOZiVIfv9pDxFDwvKFg=
Subject key identifier: 42:2C:F2:87:EC:58:60:28:1F:8A:81:33:36:B9:CE:11:00:76:89:31
Certificate issuer: /CN=1da3393991409489ef9fd7460a75a370cae9dca7
Certificate serial: EBF617
Authority key identifier: 1D:A3:39:39:91:40:94:89:EF:9F:D7:46:0A:75:A3:70:CA:E9:DC:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HaM5OZFAlInvn9dGCnWjcMrp3Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/Qizyh-xYYCgfioEzNrnOEQB2iTE.roa
Signing time: Wed 23 Feb 2022 11:16:02 +0000
ROA not before: Wed 23 Feb 2022 11:16:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62579
IP address blocks: 194.45.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15463959 (0xebf617)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1da3393991409489ef9fd7460a75a370cae9dca7
Validity
Not Before: Feb 23 11:16:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=422cf287ec5860281f8a813336b9ce1100768931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:01:d2:17:4f:b0:9b:bc:df:05:37:b5:68:97:
e8:d5:d1:08:23:4c:6d:1e:7b:cf:5c:28:1e:ba:c2:
ba:da:93:b5:0f:67:b3:97:c2:79:17:d9:17:ab:64:
50:1d:23:5a:ac:72:57:0d:6c:c1:8e:ae:0a:5d:60:
bc:06:b9:cb:ec:fe:6f:24:67:1f:3c:71:3a:78:c6:
c5:e7:d8:49:a4:48:59:36:55:da:c2:c9:43:2f:b9:
35:f3:68:f1:cd:7b:e7:ff:50:ce:30:16:2d:2a:0f:
32:b0:d0:98:ca:72:82:fe:75:98:3d:17:04:5e:13:
1b:0c:d1:4b:25:9f:45:ae:23:b6:2f:b6:a6:23:84:
96:02:4f:b1:91:ec:8d:7e:33:cb:bb:d4:ca:8e:24:
bb:6b:03:0a:a9:ec:6f:98:cf:fc:7e:ab:49:5f:59:
54:ba:2e:d9:53:71:8a:32:1e:41:1b:4e:7d:93:6e:
8b:c4:32:32:e5:7c:05:a9:08:6b:66:3b:5b:ad:2c:
b8:e4:49:a3:0a:98:d1:7d:cd:a0:0e:0e:41:6b:02:
70:c1:50:68:56:eb:75:a2:59:9b:38:ba:ed:97:b2:
33:83:b2:e0:7c:d2:e1:4b:27:06:0b:88:a5:63:11:
11:03:17:81:a0:27:0d:bb:76:37:4e:c6:a9:fe:79:
ba:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:2C:F2:87:EC:58:60:28:1F:8A:81:33:36:B9:CE:11:00:76:89:31
X509v3 Authority Key Identifier:
keyid:1D:A3:39:39:91:40:94:89:EF:9F:D7:46:0A:75:A3:70:CA:E9:DC:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HaM5OZFAlInvn9dGCnWjcMrp3Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/Qizyh-xYYCgfioEzNrnOEQB2iTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/HaM5OZFAlInvn9dGCnWjcMrp3Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.45.100.0/24
Signature Algorithm: sha256WithRSAEncryption
03:b1:1c:65:c8:44:4e:39:25:93:6a:52:8a:7c:3c:cf:85:50:
a8:b3:28:26:2c:37:4f:60:09:d0:fd:74:85:6f:e9:2f:a2:88:
f0:0f:f7:d5:dd:97:f4:81:5c:e1:41:0e:cb:0b:d5:a7:1e:f4:
14:64:9d:b2:10:2f:70:3f:e2:38:3e:00:28:16:d7:e8:5f:cb:
ea:79:a5:74:89:6c:27:c5:55:c6:6c:9e:82:a2:9e:c4:16:9d:
27:21:3c:30:f1:0c:74:56:17:12:cd:ef:68:7f:95:78:fe:6c:
8b:45:79:ab:5b:23:95:b9:9d:0b:47:a6:30:f0:7a:12:44:28:
71:80:02:3d:af:a0:88:4e:b3:b6:76:9f:a0:36:75:2a:37:97:
0e:7b:21:e7:f5:c4:81:0d:ad:44:58:d5:3c:0e:36:ab:62:17:
0c:62:de:d7:62:1d:bd:26:0f:ae:fd:a7:db:fb:29:66:f3:05:
e4:82:0d:59:df:60:59:f3:83:50:5f:00:e7:6f:78:4d:4f:17:
eb:58:dc:14:15:e9:5a:49:56:5e:2b:14:c8:77:71:f6:28:a6:
8b:cf:66:39:1d:ac:f6:fa:45:e9:fd:f1:27:13:72:9b:fd:69:
21:d7:60:9f:fd:e3:99:43:63:b6:a2:33:1e:28:8e:4e:a1:ca:
60:c8:20:2b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAOv2FzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZGEzMzkzOTkxNDA5NDg5ZWY5ZmQ3NDYwYTc1YTM3MGNhZTlkY2E3MB4XDTIyMDIy
MzExMTYwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDIyY2YyODdlYzU4
NjAyODFmOGE4MTMzMzZiOWNlMTEwMDc2ODkzMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMwB0hdPsJu83wU3tWiX6NXRCCNMbR57z1woHrrCutqTtQ9n
s5fCeRfZF6tkUB0jWqxyVw1swY6uCl1gvAa5y+z+byRnHzxxOnjGxefYSaRIWTZV
2sLJQy+5NfNo8c175/9QzjAWLSoPMrDQmMpygv51mD0XBF4TGwzRSyWfRa4jti+2
piOElgJPsZHsjX4zy7vUyo4ku2sDCqnsb5jP/H6rSV9ZVLou2VNxijIeQRtOfZNu
i8QyMuV8BakIa2Y7W60suORJowqY0X3NoA4OQWsCcMFQaFbrdaJZmzi67ZeyM4Oy
4HzS4UsnBguIpWMREQMXgaAnDbt2N07Gqf55ulUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRCLPKH7FhgKB+KgTM2uc4RAHaJMTAfBgNVHSMEGDAWgBQdozk5kUCUie+f
10YKdaNwyuncpzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hhTTVPWkZBbEludm45ZEdDbldqY01ycDNLYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTgvNTA4MDE3LWU0ODQtNDA5NC04MDdjLTg2YTNhNzk1ZGE0OS8x
L1FpenloLXhZWUNnZmlvRXpOcm5PRVFCMmlURS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTgv
NTA4MDE3LWU0ODQtNDA5NC04MDdjLTg2YTNhNzk1ZGE0OS8xL0hhTTVPWkZBbElu
dm45ZEdDbldqY01ycDNLYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMItZDANBgkqhkiG9w0BAQsFAAOC
AQEAA7EcZchETjklk2pSinw8z4VQqLMoJiw3T2AJ0P10hW/pL6KI8A/31d2X9IFc
4UEOywvVpx70FGSdshAvcD/iOD4AKBbX6F/L6nmldIlsJ8VVxmyegqKexBadJyE8
MPEMdFYXEs3vaH+VeP5si0V5q1sjlbmdC0emMPB6EkQocYACPa+giE6ztnafoDZ1
KjeXDnsh5/XEgQ2tRFjVPA42q2IXDGLe12IdvSYPrv2n2/spZvMF5IINWd9gWfOD
UF8A5294TU8X61jcFBXpWklWXisUyHdx9iimi89mOR2s9vpF6f3xJxNym/1pIddg
n/3jmUNjtqIzHiiOTqHKYMggKw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:53 2023 by rpki-client on console-fra.rpki-client.org