Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/QU4iJSYoH4BvEykFzWRJpzj4UKs.roa
File: QU4iJSYoH4BvEykFzWRJpzj4UKs.roa (raw, json)
Hash identifier: RWOTwY2jOHX+WJ/AqP3hKSkFKtAyQxSHY63lACfcIzA=
Subject key identifier: 41:4E:22:25:26:28:1F:80:6F:13:29:05:CD:64:49:A7:38:F8:50:AB
Certificate issuer: /CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Certificate serial: 07FCDC84
Authority key identifier: 9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/QU4iJSYoH4BvEykFzWRJpzj4UKs.roa
Signing time: Sat 01 Jan 2022 16:01:35 +0000
ROA not before: Sat 01 Jan 2022 16:01:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44408
IP address blocks: 194.54.13.0/24 maxlen: 24
194.54.12.0/23 maxlen: 23
194.54.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134012036 (0x7fcdc84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Validity
Not Before: Jan 1 16:01:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=414e222526281f806f132905cd6449a738f850ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ef:42:ce:6e:22:37:82:06:30:b5:b6:31:49:
94:b3:c8:d4:11:b6:ec:85:1e:f0:3d:5f:8e:7d:b8:
96:13:30:9d:a1:0b:6f:bd:86:50:07:b7:78:0c:b4:
1f:72:e3:3f:fa:f3:fc:04:b7:00:af:c3:ca:5c:5a:
b8:27:e5:98:ee:14:65:cf:e9:6f:05:59:b1:d5:53:
61:a5:59:06:37:2b:ca:d4:fc:8d:8f:ca:28:d1:dc:
2e:ef:73:99:1b:84:be:40:07:f7:38:bd:4e:8f:bc:
11:33:2b:4b:18:5e:d9:9a:9d:4f:9a:fb:55:15:84:
63:f1:b9:70:95:88:e3:f8:5a:96:3f:08:ee:bf:1e:
e7:a3:84:ab:79:9d:ee:39:ab:57:68:cf:1f:f2:a4:
98:0a:16:e9:ed:af:f5:b4:35:2b:b3:e6:2c:69:80:
88:72:6b:e2:db:29:4c:f9:0c:ed:c6:35:db:4d:2f:
60:03:25:db:86:4e:41:e6:09:c3:96:2e:75:ce:0e:
37:6f:ee:27:41:f5:d8:72:cd:cf:2e:db:9f:49:c2:
f0:53:58:ca:96:66:51:84:f2:8e:df:72:56:a9:7d:
80:81:80:cb:04:c7:2c:43:1f:4c:2a:8b:11:a6:43:
c1:d7:9b:47:7e:e7:f6:09:07:7d:cd:11:39:3a:05:
3c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4E:22:25:26:28:1F:80:6F:13:29:05:CD:64:49:A7:38:F8:50:AB
X509v3 Authority Key Identifier:
keyid:9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/QU4iJSYoH4BvEykFzWRJpzj4UKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/mlJqc86Pn2LBShGi6pE-wnPVjEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.12.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:b0:4b:90:50:08:8e:9e:43:27:7d:fe:32:5d:2c:69:85:60:
64:69:94:5d:bb:5d:7d:88:c7:68:b4:f2:e4:5a:8b:69:9b:76:
e7:84:1c:b5:45:99:a5:38:2e:46:50:f7:14:9b:55:2c:1d:0c:
a2:fc:fc:41:72:fb:22:03:ec:54:40:0f:b0:0f:88:76:c9:08:
8d:70:61:54:91:d7:f9:5e:85:71:7a:12:ca:9f:ef:4b:dd:9b:
7e:08:56:70:5f:a0:aa:84:e0:55:e7:04:4e:6f:dc:a9:2b:df:
5f:0f:d6:14:8b:54:bc:ab:e3:a3:bc:df:c8:14:fa:c0:16:a4:
48:d4:d6:9d:3a:c4:72:df:f6:3d:8c:36:ef:b8:bb:3d:a4:44:
db:cd:15:69:00:3c:48:50:b2:92:01:8a:0c:b4:57:70:45:77:
40:65:eb:e0:24:e3:3d:ea:06:8e:31:9e:0a:f1:fe:53:8c:06:
d5:60:c0:83:88:59:98:ee:07:e9:e4:27:fb:a0:0b:02:44:35:
19:14:43:ec:90:26:1b:86:55:74:2e:51:84:82:5c:d9:79:80:
40:7f:53:fc:e1:e9:f9:78:c0:e9:90:4a:ad:9a:61:0d:4d:30:
91:78:64:c1:00:5e:01:2a:5b:e6:bb:cc:ed:8b:1d:2d:67:19:
61:20:91:2f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB/zchDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YTUyNmE3M2NlOGY5ZjYyYzE0YTExYTJlYTkxM2VjMjczZDU4YzQ2MB4XDTIyMDEw
MTE2MDEzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDE0ZTIyMjUyNjI4
MWY4MDZmMTMyOTA1Y2Q2NDQ5YTczOGY4NTBhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKvvQs5uIjeCBjC1tjFJlLPI1BG27IUe8D1fjn24lhMwnaEL
b72GUAe3eAy0H3LjP/rz/AS3AK/DylxauCflmO4UZc/pbwVZsdVTYaVZBjcrytT8
jY/KKNHcLu9zmRuEvkAH9zi9To+8ETMrSxhe2ZqdT5r7VRWEY/G5cJWI4/halj8I
7r8e56OEq3md7jmrV2jPH/KkmAoW6e2v9bQ1K7PmLGmAiHJr4tspTPkM7cY1200v
YAMl24ZOQeYJw5Yudc4ON2/uJ0H12HLNzy7bn0nC8FNYypZmUYTyjt9yVql9gIGA
ywTHLEMfTCqLEaZDwdebR37n9gkHfc0ROToFPNcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRBTiIlJigfgG8TKQXNZEmnOPhQqzAfBgNVHSMEGDAWgBSaUmpzzo+fYsFK
EaLqkT7Cc9WMRjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L21sSnFjODZQbjJMQlNoR2k2cEUtd25QVmpFWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2IvNmZjZGNhLWQxMjEtNDM5MS05Y2ZjLTdkMTZiOTBkYmU3Mi8x
L1FVNGlKU1lvSDRCdkV5a0Z6V1JKcHpqNFVLcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Iv
NmZjZGNhLWQxMjEtNDM5MS05Y2ZjLTdkMTZiOTBkYmU3Mi8xL21sSnFjODZQbjJM
QlNoR2k2cEUtd25QVmpFWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcI2DDANBgkqhkiG9w0BAQsFAAOC
AQEAK7BLkFAIjp5DJ33+Ml0saYVgZGmUXbtdfYjHaLTy5FqLaZt254QctUWZpTgu
RlD3FJtVLB0Movz8QXL7IgPsVEAPsA+IdskIjXBhVJHX+V6FcXoSyp/vS92bfghW
cF+gqoTgVecETm/cqSvfXw/WFItUvKvjo7zfyBT6wBakSNTWnTrEct/2PYw277i7
PaRE280VaQA8SFCykgGKDLRXcEV3QGXr4CTjPeoGjjGeCvH+U4wG1WDAg4hZmO4H
6eQn+6ALAkQ1GRRD7JAmG4ZVdC5RhIJc2XmAQH9T/OHp+XjA6ZBKrZphDU0wkXhk
wQBeASpb5rvM7YsdLWcZYSCRLw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:51 2023 by rpki-client on console-ams.rpki-client.org