Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/qu0DYQosS88I49DFAnaIH7n6Y2s.roa
File: qu0DYQosS88I49DFAnaIH7n6Y2s.roa (raw, json)
Hash identifier: 4vvC241Hddjle+MIStfnq7EI8/S/eHu5YGUZhIJFNz0=
Subject key identifier: AA:ED:03:61:0A:2C:4B:CF:08:E3:D0:C5:02:76:88:1F:B9:FA:63:6B
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 1A24B0E4
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/qu0DYQosS88I49DFAnaIH7n6Y2s.roa
Signing time: Sat 14 May 2022 18:23:29 +0000
ROA not before: Sat 14 May 2022 18:23:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 213.232.104.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 438612196 (0x1a24b0e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: May 14 18:23:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aaed03610a2c4bcf08e3d0c50276881fb9fa636b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:01:04:a7:2f:0b:ae:35:1d:6a:14:58:44:3f:
36:91:b5:c1:2d:a1:a7:56:e9:22:66:5e:b7:30:10:
02:5c:5d:c6:8e:8b:e8:08:6e:28:71:42:41:61:9f:
f0:02:4b:8a:cb:0d:0a:cf:32:2b:e4:d3:09:e1:47:
d6:61:1b:f5:90:07:da:5e:1b:da:67:77:a1:b0:53:
b9:eb:ca:44:e4:c1:2e:e5:b5:a1:35:2b:48:81:3c:
60:d5:26:8c:e4:fc:2e:da:5d:9b:7d:00:3f:ea:e7:
2f:0e:90:13:0c:91:e5:f9:ac:ff:08:2a:ec:bf:bd:
c7:a4:5d:a4:c5:00:b4:f8:de:cd:7c:17:04:18:29:
0f:db:6f:59:0c:8c:15:7e:34:62:97:b9:87:d8:c3:
5e:17:d9:6c:f0:df:9f:e7:89:0b:0b:d6:8b:bd:5a:
ed:fe:45:e8:a0:2e:36:a5:58:da:23:52:2b:56:7d:
eb:cb:ce:b0:c7:c8:35:4c:b3:c6:1a:96:13:ba:b8:
a9:ba:7c:9a:b3:c3:14:9c:d4:0c:0e:1e:52:04:2b:
8a:cc:4b:26:03:91:ec:89:a5:e9:13:aa:ef:63:3b:
80:8d:3b:17:b5:49:e8:05:e3:98:28:c0:07:2b:d4:
26:67:a5:a2:8f:96:b7:03:c3:dc:6d:71:d9:62:dd:
bd:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:ED:03:61:0A:2C:4B:CF:08:E3:D0:C5:02:76:88:1F:B9:FA:63:6B
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/qu0DYQosS88I49DFAnaIH7n6Y2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.104.0/24
Signature Algorithm: sha256WithRSAEncryption
24:e2:ea:ee:d7:c7:fa:c7:3c:1a:be:2d:16:08:ee:50:e0:8d:
b3:ae:57:a6:27:21:be:3a:13:b4:56:cd:6b:67:9b:7d:d5:66:
ef:f9:f7:d5:3a:fa:7a:57:a4:46:a6:b4:00:e3:ce:72:4e:95:
6a:88:37:05:a8:8e:76:37:be:3a:1c:2e:be:51:c4:7d:65:c8:
65:ab:d8:7d:3c:1f:ab:66:84:5e:db:89:3a:ed:51:43:3c:48:
cb:3c:dc:99:90:5f:57:de:ac:e7:60:1f:ff:6e:1e:cf:7f:41:
7d:5d:7f:55:b6:f5:63:88:ec:75:86:b9:83:a1:97:f2:90:23:
ba:65:bd:de:75:78:6a:97:df:0d:51:c1:0e:5f:f5:bf:ea:7c:
89:da:bc:95:77:ab:8e:00:30:02:a4:49:9e:47:4c:c5:ce:10:
95:96:74:46:8e:92:46:f3:1e:65:dd:21:27:d3:45:68:fd:4d:
0d:8a:1e:52:0c:b8:9b:72:55:e4:0f:88:10:b7:b5:43:1f:48:
bf:11:ea:a8:3f:de:0f:63:ee:c2:8d:4f:7c:11:98:ae:90:c0:
64:28:56:e2:63:54:25:85:76:a0:75:cf:8a:d5:5a:a9:06:c3:
a6:62:03:80:b4:1a:91:fa:4f:1c:d9:46:f9:39:ad:7e:4a:f6:
d8:db:21:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org