Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/5a260e-aec0-4e4a-aa85-4b8df098496d/1/QTC_YujuWoPXLXok3aigITDEpLQ.roa
File: QTC_YujuWoPXLXok3aigITDEpLQ.roa (raw, json)
Hash identifier: 9XmpKwIX4YaYv23nDn7L6Vqv+/Ezz/Hr/RkVPVpCapw=
Subject key identifier: 41:30:BF:62:E8:EE:5A:83:D7:2D:7A:24:DD:A8:A0:21:30:C4:A4:B4
Certificate issuer: /CN=240e7594aae24a4fd6c38554517d8b9d6fae060d
Certificate serial: 0B45A3F7
Authority key identifier: 24:0E:75:94:AA:E2:4A:4F:D6:C3:85:54:51:7D:8B:9D:6F:AE:06:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JA51lKriSk_Ww4VUUX2LnW-uBg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/5a260e-aec0-4e4a-aa85-4b8df098496d/1/QTC_YujuWoPXLXok3aigITDEpLQ.roa
Signing time: Sat 01 Jan 2022 07:58:55 +0000
ROA not before: Sat 01 Jan 2022 07:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 193.47.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189113335 (0xb45a3f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=240e7594aae24a4fd6c38554517d8b9d6fae060d
Validity
Not Before: Jan 1 07:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4130bf62e8ee5a83d72d7a24dda8a02130c4a4b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:23:08:25:d6:ce:b3:39:0a:10:27:7c:68:40:
3b:1c:e9:20:ef:20:01:af:24:2c:0c:71:69:36:91:
38:41:e3:b4:c3:dd:46:52:fe:d0:7e:89:5d:51:a6:
fb:30:7a:38:08:5f:64:7b:14:14:39:9f:ad:33:6d:
14:57:ea:bd:b0:ef:03:b2:4e:60:65:8c:8a:70:64:
c4:e6:5a:6d:3e:fa:b6:b0:37:8e:95:99:3e:2e:6d:
30:70:a6:95:78:06:d5:51:c4:07:95:9b:9c:e9:24:
de:99:17:f2:9f:59:23:84:d3:f5:48:d4:c5:f2:ba:
53:b3:f8:57:5e:ac:8f:54:50:09:18:93:34:eb:0e:
42:9b:f5:73:ae:62:ac:03:d1:54:d0:a8:90:1e:59:
b6:cb:39:bf:6b:03:70:d5:32:75:1d:b2:d4:8c:c9:
a9:05:22:08:cc:70:db:76:d1:b5:4d:11:cd:c7:bd:
9a:d7:de:3c:46:a9:1b:03:e2:56:a3:f1:84:2b:46:
c3:2a:55:e9:ea:40:3e:b5:82:2f:a4:da:af:e8:bd:
b5:ec:6e:c9:5e:0f:92:6e:f7:14:08:aa:18:17:d4:
1c:2c:c2:81:ae:68:4c:d2:3c:3d:e5:31:18:92:1c:
a4:16:db:62:fb:d6:a8:64:71:d2:66:91:f9:1f:97:
8f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:30:BF:62:E8:EE:5A:83:D7:2D:7A:24:DD:A8:A0:21:30:C4:A4:B4
X509v3 Authority Key Identifier:
keyid:24:0E:75:94:AA:E2:4A:4F:D6:C3:85:54:51:7D:8B:9D:6F:AE:06:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JA51lKriSk_Ww4VUUX2LnW-uBg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5a260e-aec0-4e4a-aa85-4b8df098496d/1/QTC_YujuWoPXLXok3aigITDEpLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/5a260e-aec0-4e4a-aa85-4b8df098496d/1/JA51lKriSk_Ww4VUUX2LnW-uBg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.81.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:01:8d:1b:89:ef:6a:ea:44:5b:7d:39:7e:65:2b:16:f2:26:
f0:00:72:79:77:fc:6f:a2:25:8f:49:c8:60:40:9c:b0:73:97:
67:a6:85:68:36:ff:47:64:58:ac:54:90:ee:9e:9b:1d:3b:36:
be:33:95:55:74:b6:f5:7a:68:00:05:ae:19:b7:e7:9c:12:9c:
f1:d4:1c:9a:66:01:d6:37:ac:de:8c:38:d1:7c:99:bd:40:81:
9d:51:57:c5:bd:da:34:2a:69:12:48:12:4a:93:77:7c:c0:94:
29:37:92:80:8c:be:ba:46:68:4c:d5:f6:6b:4b:71:89:ab:de:
83:e1:e1:bb:ac:be:68:8f:14:5f:d5:99:7a:25:78:1a:4f:e0:
e7:74:06:9a:d1:1d:6c:7d:b2:06:06:2e:35:6c:94:77:8e:a3:
0a:8d:69:53:9d:d7:c3:c0:aa:e5:06:b7:a5:a3:49:d0:30:dc:
93:b5:e0:2a:0f:80:d8:19:b0:81:aa:4d:8d:93:c1:17:ce:65:
e6:58:db:65:96:76:82:f3:40:dd:61:d2:49:46:d9:b5:26:7b:
21:13:b9:38:4d:34:b3:20:2d:7c:34:cc:f0:e4:83:37:8b:50:
b8:46:60:58:3f:79:2a:18:00:f1:df:7f:55:45:dc:25:6f:cb:
58:f9:c3:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:53 2024 by rpki-client on console-fra.rpki-client.org