Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/QuZ_f_BCCny__z3UjBVeI3-J1JA.roa
File: QuZ_f_BCCny__z3UjBVeI3-J1JA.roa (raw, json)
Hash identifier: uVzz0AvS/Y5BpWgeRn+ijf97Sj26Lq8PlGyN5erZSjI=
Subject key identifier: 42:E6:7F:7F:F0:42:0A:7C:BF:FF:3D:D4:8C:15:5E:23:7F:89:D4:90
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0183793AA346A13E00B17BCC5470A2773504
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/QuZ_f_BCCny__z3UjBVeI3-J1JA.roa
Signing time: Mon 26 Sep 2022 09:57:09 +0000
ROA not before: Mon 26 Sep 2022 09:57:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60068
IP address blocks: 193.181.192.0/24 maxlen: 24
193.181.193.0/24 maxlen: 24
193.235.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:79:3a:a3:46:a1:3e:00:b1:7b:cc:54:70:a2:77:35:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Sep 26 09:57:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42e67f7ff0420a7cbfff3dd48c155e237f89d490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:01:14:a0:c4:ac:a8:d1:f2:65:70:fe:fb:8f:
f7:4a:85:e8:1a:78:5f:78:6d:d4:2d:52:c4:7f:24:
d6:5f:9a:d5:91:59:a1:27:6f:de:11:03:6d:eb:b0:
08:85:18:73:c3:91:48:d9:58:e4:3c:0b:ef:f7:90:
cf:27:6e:50:a2:95:eb:c5:6c:57:5e:08:fd:59:59:
6e:eb:13:5a:f8:30:b5:88:1f:be:2c:9a:92:1e:05:
50:43:d7:dd:5e:57:ed:2d:a8:b4:3b:43:a7:ab:6c:
5e:96:8b:98:4b:04:36:50:0a:f9:ae:e6:fc:d3:98:
de:49:c3:96:49:c0:c0:f9:86:07:c9:33:52:ea:3c:
e5:60:41:89:51:a0:a1:52:01:e0:af:2f:c6:ff:a8:
d7:d1:e2:53:ac:4d:bc:9c:bb:71:9b:92:ef:56:19:
66:44:33:22:0e:89:04:88:e0:bf:04:54:41:eb:5b:
d3:03:1a:de:2d:a5:c4:26:66:17:5d:42:4a:8f:7a:
08:75:48:3e:8d:0b:c6:ea:29:50:c1:0f:49:0f:fc:
32:dd:95:6d:f3:f1:75:b4:60:d8:e2:49:ac:b6:6a:
1d:db:f2:23:e6:ee:9a:71:2d:67:a1:0f:99:5d:f8:
5c:20:42:b2:d0:29:06:cc:eb:9a:a1:aa:50:cc:4c:
b5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E6:7F:7F:F0:42:0A:7C:BF:FF:3D:D4:8C:15:5E:23:7F:89:D4:90
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/QuZ_f_BCCny__z3UjBVeI3-J1JA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.181.192.0/23
193.235.32.0/24
Signature Algorithm: sha256WithRSAEncryption
04:14:12:34:03:2b:41:2f:5f:ce:55:fe:a8:ae:ec:60:c3:1d:
04:5e:11:65:ed:0f:a0:f8:4c:56:20:60:7b:47:be:80:ea:fd:
f8:78:7f:a8:5b:5b:35:48:3b:08:81:03:c4:f7:55:57:93:c9:
0f:0a:37:86:14:f7:83:3e:91:d3:64:97:6b:8c:2e:07:16:9e:
ac:25:8b:ec:f5:21:7f:c9:e8:cf:93:8e:dc:4f:ec:ec:f8:dd:
35:db:d9:04:d2:4d:b0:4c:d2:74:c3:52:8a:63:fb:ec:5b:17:
a0:b5:51:53:20:a9:d8:e4:17:f8:94:16:c7:ec:8e:38:ab:5b:
8c:71:89:c9:dd:f1:94:31:05:3d:10:29:e2:e3:d9:ad:49:d9:
58:11:0b:f2:59:05:7d:94:dc:3d:b8:b6:21:dc:e8:d2:98:e9:
37:9c:7c:eb:d0:5f:aa:82:df:59:37:d3:37:50:27:24:bb:45:
83:ff:8f:5d:06:0d:32:e8:7a:14:de:70:44:9a:2b:aa:5a:72:
9b:a7:80:37:2b:8a:c4:48:61:2d:0f:8f:aa:2a:4a:38:c6:2b:
bc:1d:eb:c4:d1:3c:4f:e7:e5:6a:5d:96:44:91:04:ad:33:fd:
cc:e1:8b:3e:66:b8:d4:17:fa:ed:0d:6c:c2:fa:eb:0e:ed:ae:
66:d4:4d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org