Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/cqykVlnEXW9JIxVVMWxzxUrWEqc.roa
File: cqykVlnEXW9JIxVVMWxzxUrWEqc.roa (raw, json)
Hash identifier: EDhZlydpotO1LJyMw3lREC1gVTK1zvlIbl8Ld923IHo=
Subject key identifier: 72:AC:A4:56:59:C4:5D:6F:49:23:15:55:31:6C:73:C5:4A:D6:12:A7
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0184F279D23C75FD48B9018A405833E06298
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/cqykVlnEXW9JIxVVMWxzxUrWEqc.roa
Signing time: Thu 08 Dec 2022 16:03:00 +0000
ROA not before: Thu 08 Dec 2022 16:03:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39658
IP address blocks: 193.180.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:79:d2:3c:75:fd:48:b9:01:8a:40:58:33:e0:62:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Dec 8 16:03:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72aca45659c45d6f49231555316c73c54ad612a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:69:e9:67:48:1c:7e:1f:e5:d4:ec:20:33:f9:
26:ea:65:26:82:1f:4f:53:19:d4:86:90:eb:31:24:
48:a8:97:0f:20:e1:a2:e7:d8:98:34:53:10:b3:16:
b3:82:ae:1e:d4:e9:56:77:04:da:ae:0a:e7:60:92:
d2:56:f6:2f:a1:76:e5:42:c0:f6:50:b1:8f:fa:cb:
fd:5f:fa:53:bc:c3:27:4e:cc:9c:dd:db:95:4f:9c:
28:3e:c5:6b:71:05:9b:d3:9f:ca:b3:c9:24:60:d3:
41:68:b3:89:b4:23:9a:ff:ac:80:fc:59:ef:63:c8:
ab:5c:9f:e1:e6:00:78:e7:b2:89:f0:5c:17:19:db:
e5:e4:7f:e3:10:49:59:63:51:62:5e:41:fe:6e:80:
32:5c:01:39:02:93:37:07:fa:d9:f3:c5:dc:d3:46:
f4:ac:18:2a:e2:4f:9e:8a:70:b9:90:06:d0:53:e3:
41:46:19:c1:67:30:23:eb:58:13:df:f7:0a:fa:c2:
8a:3e:77:52:fe:94:85:6f:2b:74:71:52:89:2c:a9:
c6:99:ad:84:62:e2:00:5b:e2:35:b0:6f:b1:bf:3e:
c6:a6:40:e8:25:10:eb:b2:ea:b9:cf:43:d0:52:63:
33:64:1c:38:e4:a6:7d:1b:08:44:a8:da:9f:c4:3c:
04:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:AC:A4:56:59:C4:5D:6F:49:23:15:55:31:6C:73:C5:4A:D6:12:A7
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/cqykVlnEXW9JIxVVMWxzxUrWEqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.180.124.0/24
Signature Algorithm: sha256WithRSAEncryption
00:3a:c1:bc:af:89:44:61:8b:c0:a7:ac:46:37:b2:e9:87:bc:
0d:4d:6b:a3:b2:08:05:ef:49:aa:9a:25:9c:77:34:99:90:60:
fc:42:5c:28:1d:6e:94:be:95:8b:f7:36:45:2f:a3:7a:47:5c:
e7:17:ff:49:70:d9:4b:b6:96:2b:eb:02:c6:31:92:cb:fd:56:
94:2b:87:e7:f5:29:96:00:c8:33:58:89:04:5c:b6:88:f8:8c:
b2:1e:bb:d6:c3:f3:9e:4f:48:05:96:85:20:c9:75:7a:f4:da:
76:44:4d:af:1b:09:51:6b:17:7d:bc:fa:e7:49:fa:a6:59:32:
86:29:48:39:46:aa:22:e2:7c:b6:c6:6d:4c:3f:99:f1:4f:d7:
49:30:34:40:9c:bc:01:cb:aa:69:d6:68:48:7c:e1:2a:2e:51:
ae:29:80:b1:3a:b6:ad:d2:5f:79:3d:62:bc:2f:e2:46:29:9a:
69:71:bb:2e:6d:ba:03:d6:5d:4c:92:ee:a5:21:4b:3d:51:99:
fc:b9:e4:7f:3e:be:fe:54:f5:1d:8b:0e:e1:94:9c:d3:58:5c:
94:09:21:ca:31:93:28:9a:ac:b1:23:e6:bf:17:14:11:d9:2b:
59:87:f1:f5:10:98:83:88:00:ab:1a:94:2b:c9:72:03:b4:36:
06:64:bc:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org