Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QSY4hOwxrZVM7PtOzPSJPcxLk0I.roa
File: QSY4hOwxrZVM7PtOzPSJPcxLk0I.roa (raw, json)
Hash identifier: bVdUVlGLoQV0Qr9Zf6Id4GZCM654l3PK2WE77TDe8cU=
Subject key identifier: 41:26:38:84:EC:31:AD:95:4C:EC:FB:4E:CC:F4:89:3D:CC:4B:93:42
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1A049781
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QSY4hOwxrZVM7PtOzPSJPcxLk0I.roa
Signing time: Wed 04 May 2022 22:49:50 +0000
ROA not before: Wed 04 May 2022 22:49:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.187.153.0/24 maxlen: 32
2.59.174.0/24 maxlen: 32
213.232.104.0/24 maxlen: 32
92.119.150.0/24 maxlen: 32
91.188.203.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 436508545 (0x1a049781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: May 4 22:49:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41263884ec31ad954cecfb4eccf4893dcc4b9342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:aa:01:5e:ea:ed:2d:3c:aa:22:45:29:64:93:
8d:2a:c7:42:10:1a:05:bb:be:0d:df:ad:4e:9e:95:
ae:f7:45:0b:c7:ad:93:3f:ca:35:85:09:f3:e2:6d:
d5:db:31:90:5a:b8:63:21:10:3a:d6:82:5f:56:0c:
d3:88:ca:88:89:af:96:7d:22:30:2b:f3:05:4c:f2:
ad:00:86:d8:0d:4d:cd:74:3d:de:81:b3:4c:f0:7a:
31:db:66:33:59:17:8c:07:5d:73:39:37:34:8f:c3:
95:07:f8:9e:f7:85:8c:87:49:72:28:ca:b3:74:80:
03:b6:cb:0c:31:81:59:3a:d0:7b:f0:0e:d6:0b:8c:
d8:90:8c:52:a2:3d:cb:05:94:38:73:78:04:8f:22:
df:bc:ff:40:ed:72:0c:95:07:49:4f:20:ea:cf:07:
b6:af:19:dd:31:f3:46:c2:65:a3:ac:c5:97:dc:26:
8a:7d:e2:cc:68:1d:dd:52:c5:22:65:1b:79:58:3a:
9b:46:21:73:7c:81:2b:d2:5e:7d:bd:79:1e:c2:e9:
1e:cd:4c:03:97:7a:04:cb:77:e6:13:a6:94:23:63:
22:4c:15:b3:71:5e:69:df:e1:87:08:e1:95:ef:80:
89:57:f0:10:51:1b:cb:a4:bd:aa:72:66:6c:fa:9f:
27:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:26:38:84:EC:31:AD:95:4C:EC:FB:4E:CC:F4:89:3D:CC:4B:93:42
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QSY4hOwxrZVM7PtOzPSJPcxLk0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.174.0/24
91.188.203.0/24
92.119.150.0/24
193.187.153.0/24
213.232.104.0/24
Signature Algorithm: sha256WithRSAEncryption
48:a3:3e:8a:13:95:9c:c9:ce:12:92:8c:50:f9:85:fd:4b:b2:
f5:bb:23:ba:03:e5:bd:e8:8a:ca:90:ca:69:85:c2:9f:7f:90:
12:a6:fe:26:2a:b4:ff:96:8b:d5:37:4d:a8:3d:06:3b:85:00:
3a:5f:6f:4e:9f:67:25:15:29:07:57:6c:59:9a:ff:25:98:d3:
a4:f1:10:40:9c:41:25:85:bf:c7:07:46:51:41:79:32:cb:1d:
4b:05:6e:fb:13:fa:54:36:6c:f4:2d:aa:86:75:d0:06:b7:cd:
55:5c:81:90:67:82:0e:3b:88:33:a5:5a:6a:36:e5:10:6d:3b:
bf:fd:60:c6:51:17:80:ac:60:73:1b:cb:ce:2d:cf:15:a1:63:
16:45:d8:59:95:f6:db:47:94:53:30:a7:10:9b:26:0c:10:f4:
9e:86:2d:f6:c5:b3:76:c3:a0:3e:d4:6d:2d:95:44:86:ab:5c:
22:6e:65:6b:db:dc:44:c4:1c:3e:73:ba:98:cc:85:a7:1a:2f:
23:b1:c1:52:f4:79:b6:5d:dc:1a:0b:80:60:97:41:ae:a5:e0:
03:75:af:3c:c0:e0:f7:4d:da:c0:84:3a:16:eb:5c:4b:b7:e5:
bc:8d:88:be:39:5a:79:e5:36:f3:7c:d6:f6:4b:0e:e0:69:8f:
4c:53:d9:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org