Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/Qsnwb_t4PYTM4uC1p6ZbzHwdl9Q.roa
File: Qsnwb_t4PYTM4uC1p6ZbzHwdl9Q.roa (raw, json)
Hash identifier: ix9M8iDXhgrRWyn43v+2TQ0CtDM9jdDIb6IIcMmPvr4=
Subject key identifier: 42:C9:F0:6F:FB:78:3D:84:CC:E2:E0:B5:A7:A6:5B:CC:7C:1D:97:D4
Certificate issuer: /CN=29187f811597dd03513be42f43155bc15a3a0b3f
Certificate serial: 063B0D8C
Authority key identifier: 29:18:7F:81:15:97:DD:03:51:3B:E4:2F:43:15:5B:C1:5A:3A:0B:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRh_gRWX3QNRO-QvQxVbwVo6Cz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/Qsnwb_t4PYTM4uC1p6ZbzHwdl9Q.roa
Signing time: Sat 01 Jan 2022 15:00:25 +0000
ROA not before: Sat 01 Jan 2022 15:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49239
IP address blocks: 193.17.179.0/24 maxlen: 24
193.17.70.0/24 maxlen: 24
193.17.193.0/24 maxlen: 24
2a0f:7540:1::/48 maxlen: 48
2a0f:7540::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104533388 (0x63b0d8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29187f811597dd03513be42f43155bc15a3a0b3f
Validity
Not Before: Jan 1 15:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42c9f06ffb783d84cce2e0b5a7a65bcc7c1d97d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1d:db:4f:5f:25:d9:da:f1:93:66:17:8a:2a:
8e:9e:57:c4:e2:47:4c:33:f5:fc:5f:01:b0:dc:91:
da:11:e0:6c:ad:bc:d1:86:72:74:93:0f:23:2a:0f:
51:05:a8:6d:d8:45:71:71:cd:51:59:3d:da:4b:15:
4d:f9:b6:b8:8c:ae:2d:18:ce:3d:a4:0b:b6:6f:c5:
46:db:3d:01:86:1d:ba:da:0d:ce:a0:81:21:98:81:
47:57:b3:d1:7f:cd:48:d5:b1:d8:85:cf:ce:06:40:
ce:a5:a9:dc:7f:24:97:04:55:56:90:ab:54:80:ba:
6e:e0:43:99:5a:69:93:3e:ba:48:5b:9e:d6:cc:7d:
76:f4:0c:c8:cc:7c:4d:e1:c8:e0:b2:68:75:8d:45:
0c:5d:2e:52:cb:32:fd:28:e9:09:5a:f2:33:73:cb:
4c:f7:94:a1:25:36:09:a5:c3:ab:05:76:73:f1:85:
27:1e:88:a7:5c:56:d1:81:ef:cb:78:1e:72:14:ac:
20:2a:08:56:04:8a:d3:72:b3:6e:41:fb:e0:22:45:
7c:67:eb:38:77:bd:f5:1c:20:bd:4f:ef:28:61:12:
8f:96:e4:c6:66:51:f9:67:fc:42:db:bd:71:a2:38:
fc:93:d4:5b:e4:cb:7f:ab:29:1d:b9:16:60:77:33:
5d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C9:F0:6F:FB:78:3D:84:CC:E2:E0:B5:A7:A6:5B:CC:7C:1D:97:D4
X509v3 Authority Key Identifier:
keyid:29:18:7F:81:15:97:DD:03:51:3B:E4:2F:43:15:5B:C1:5A:3A:0B:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRh_gRWX3QNRO-QvQxVbwVo6Cz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/Qsnwb_t4PYTM4uC1p6ZbzHwdl9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/KRh_gRWX3QNRO-QvQxVbwVo6Cz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.70.0/24
193.17.179.0/24
193.17.193.0/24
IPv6:
2a0f:7540::/47
Signature Algorithm: sha256WithRSAEncryption
04:a1:1f:bb:ec:94:07:6d:2e:d1:d3:77:c8:9c:59:e3:73:06:
be:46:49:25:4a:0f:72:2f:64:5d:39:11:38:de:87:51:e9:5e:
b0:98:b2:64:a5:dd:be:a0:23:5d:60:15:53:98:c5:5f:cc:84:
c3:de:f6:d4:58:16:7f:65:ee:79:f9:03:36:31:e2:ab:e6:96:
ed:61:80:9a:98:4c:ee:b5:c3:a3:2d:f1:c4:92:15:91:f3:4a:
9c:0a:2d:cd:6a:57:ef:45:18:b6:f6:03:a1:ac:9c:c9:85:27:
ea:4e:8c:b6:ab:dd:41:45:bf:d5:32:75:e7:82:00:0d:8f:10:
dd:7f:29:40:fd:32:8c:75:b4:d3:12:cf:66:0f:f4:bd:ed:e3:
ce:e3:4f:56:97:75:17:85:14:9a:66:e3:90:ff:54:59:ff:f1:
d6:dc:3a:16:2f:bd:8d:77:66:bf:2f:ef:9d:ab:ec:97:85:53:
70:2d:3a:fb:c1:55:f3:53:61:c8:93:c3:d4:26:6e:ba:8f:0a:
eb:c0:96:c7:6b:6d:2a:72:f0:11:75:8c:30:79:04:8a:9b:a2:
19:88:0e:77:4a:7a:0c:b2:33:53:25:11:22:8d:0a:1c:60:03:
85:5a:93:aa:aa:b9:55:94:8b:d8:f0:69:f6:b6:54:c6:ba:50:
96:74:09:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:14 2024 by rpki-client on console-ams.rpki-client.org