Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/qGU377WDR4JqU9PhLlEWcMqp6UQ.roa
File: qGU377WDR4JqU9PhLlEWcMqp6UQ.roa (raw, json)
Hash identifier: yIOEB915EAauA1SJmPJMOsaNTQbat9CKMxMyiNbPWn4=
Subject key identifier: A8:65:37:EF:B5:83:47:82:6A:53:D3:E1:2E:51:16:70:CA:A9:E9:44
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0183B2EB33846F0CFF8110ED4A549F3550FB
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/qGU377WDR4JqU9PhLlEWcMqp6UQ.roa
Signing time: Fri 07 Oct 2022 14:48:21 +0000
ROA not before: Fri 07 Oct 2022 14:48:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209659
IP address blocks: 193.180.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b2:eb:33:84:6f:0c:ff:81:10:ed:4a:54:9f:35:50:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Oct 7 14:48:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a86537efb58347826a53d3e12e511670caa9e944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ef:27:43:84:ca:b9:a6:74:12:69:3f:26:af:
0a:e7:67:0a:f7:98:78:1a:4c:7d:7c:02:c8:c0:6a:
2a:75:a5:64:63:2d:0b:d2:1a:a9:b1:5d:b5:b6:e5:
4c:d7:93:ba:2a:f5:81:fa:e5:cc:ec:85:44:aa:b9:
17:cd:86:21:77:ea:50:41:6f:de:e0:6e:33:3d:08:
cb:42:e7:1a:2f:20:b7:74:de:21:7b:66:4e:b0:4d:
cc:33:8a:93:5a:80:87:b7:53:dd:57:73:78:0d:8a:
91:2f:74:46:ab:71:67:dd:29:0e:e8:7f:dd:3d:ce:
da:8b:f9:0d:e9:e8:72:37:3e:37:93:2d:7c:30:20:
67:dc:33:35:76:ce:5e:2e:99:bf:58:17:2d:e0:cd:
dc:95:3c:5a:fb:91:13:10:43:0f:c1:86:8c:a7:24:
8e:22:b1:a4:4e:67:96:4a:79:7c:b4:7e:a1:da:32:
83:ab:a8:d5:59:38:dd:cb:60:04:0d:7d:25:3a:2b:
83:38:b2:83:40:d5:46:b2:83:ea:5c:dc:9d:39:7a:
da:b5:7e:8d:fe:2c:2b:a7:91:a9:c8:4d:7e:59:6b:
c4:11:a1:db:47:c1:6b:cd:66:c2:8a:c4:0f:73:1c:
d3:c4:50:2b:10:be:d0:d1:fe:58:78:43:f6:b7:c0:
7e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:65:37:EF:B5:83:47:82:6A:53:D3:E1:2E:51:16:70:CA:A9:E9:44
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/qGU377WDR4JqU9PhLlEWcMqp6UQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.180.173.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:f8:11:de:1a:41:4c:90:61:f9:a8:f1:f1:9f:ec:d7:8e:5b:
56:5a:f1:fe:52:d3:c2:e9:5a:18:14:57:79:6d:18:25:62:22:
84:3d:35:af:33:05:9c:e2:28:84:eb:4a:79:11:b2:eb:7f:1a:
73:27:7e:61:13:ea:4c:df:0f:de:68:0f:96:3d:5f:f1:2e:b1:
a2:85:15:4d:80:67:c7:52:64:c9:12:96:68:33:db:57:71:fb:
ef:8f:34:7b:08:17:19:4b:c3:50:4f:09:fc:a7:a7:45:8d:f4:
1f:b1:01:7b:3a:2d:ea:09:65:6f:8b:a2:ea:e2:5a:4a:4e:39:
4c:87:a9:03:70:97:20:6c:6e:5a:3e:29:79:57:04:ab:85:31:
d4:5a:c0:b6:32:5e:a7:0c:63:58:4a:11:2e:87:77:fc:ae:15:
f5:bc:a9:c3:30:8d:82:ff:0a:82:c6:82:0b:cd:51:ce:41:dd:
41:3e:c9:1b:86:e8:22:d2:46:b0:c1:51:26:d9:4b:92:23:62:
30:3f:d8:31:c3:8e:0a:05:d6:db:79:98:6e:51:9e:e1:93:6c:
8f:47:18:72:a9:c2:6e:5f:b5:0d:1e:b5:08:88:c8:02:c5:03:
7e:a6:af:93:55:c7:d3:f0:5f:97:d5:25:3a:9a:17:ba:b9:64:
e0:b5:5b:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org