Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/Q4MKQzgvhqZDoKIgU3NGFsXrsKs.roa
File: Q4MKQzgvhqZDoKIgU3NGFsXrsKs.roa (raw, json)
Hash identifier: Tc7wcgoNq9avvuSemGsQpYmz+8z8AQyzz1DyWiw3bRM=
Subject key identifier: 43:83:0A:43:38:2F:86:A6:43:A0:A2:20:53:73:46:16:C5:EB:B0:AB
Certificate issuer: /CN=91189e6edf53e40672c9b5f1f3519728291ec2ee
Certificate serial: 394224
Authority key identifier: 91:18:9E:6E:DF:53:E4:06:72:C9:B5:F1:F3:51:97:28:29:1E:C2:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiebt9T5AZyybXx81GXKCkewu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/Q4MKQzgvhqZDoKIgU3NGFsXrsKs.roa
Signing time: Tue 28 Jun 2022 16:01:02 +0000
ROA not before: Tue 28 Jun 2022 16:01:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.178.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3752484 (0x394224)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91189e6edf53e40672c9b5f1f3519728291ec2ee
Validity
Not Before: Jun 28 16:01:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43830a43382f86a643a0a22053734616c5ebb0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4d:36:6d:cb:4d:c2:1a:1a:9b:7e:44:dd:0f:
5a:8f:d3:82:19:f8:cc:dc:65:9e:9b:a0:33:db:3e:
43:9c:40:a9:16:2c:b5:6a:9b:63:ad:64:03:7d:c4:
79:ae:a3:70:ce:64:00:a8:4c:4a:ef:4b:da:23:b3:
a9:2f:fa:b1:ba:06:8f:8c:f5:de:a6:ef:83:48:7e:
79:de:c7:d4:e3:15:45:75:96:5c:0a:77:8c:98:67:
68:96:f1:69:fd:14:a2:7a:bf:df:77:88:6f:3c:2f:
9f:fb:92:f8:b3:d3:ec:6d:10:16:a6:ed:aa:c6:e7:
83:eb:52:af:6e:29:0a:a6:12:e5:65:7a:35:be:03:
f2:04:00:b8:7d:32:6e:9c:8c:44:e7:c0:3f:76:46:
d6:2f:c9:c4:2f:44:17:89:2f:6b:c8:f0:01:81:90:
2f:61:97:bf:2c:7c:3d:5c:68:61:2a:d1:9e:1f:d5:
1a:ca:8e:b5:c5:ca:73:65:1b:58:cb:1e:c9:a1:71:
85:35:f9:c8:b4:48:6a:76:c8:5b:05:2b:03:15:ad:
06:23:08:53:72:0c:65:0c:93:7d:5b:46:34:58:9f:
11:d0:e0:d6:af:5f:d6:10:16:2c:09:a1:b0:b1:58:
54:67:35:b7:13:5c:bd:a5:aa:57:4f:88:81:b6:63:
20:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:83:0A:43:38:2F:86:A6:43:A0:A2:20:53:73:46:16:C5:EB:B0:AB
X509v3 Authority Key Identifier:
keyid:91:18:9E:6E:DF:53:E4:06:72:C9:B5:F1:F3:51:97:28:29:1E:C2:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiebt9T5AZyybXx81GXKCkewu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/Q4MKQzgvhqZDoKIgU3NGFsXrsKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c1d4a2-7c4e-4adc-8f65-b148d4f066ce/1/kRiebt9T5AZyybXx81GXKCkewu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.134.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:96:c6:22:da:f8:1d:a8:1b:2b:5c:63:a7:3a:95:49:bf:8a:
73:f8:81:7a:75:25:65:3b:39:06:b9:52:1b:fa:53:e3:d7:10:
f3:96:ea:c9:74:ac:1b:b7:cf:96:39:35:47:51:60:22:fc:f3:
e6:a7:0d:81:01:ce:db:83:b9:3f:a4:53:af:a9:ff:0f:df:2d:
23:e6:a6:66:cd:b0:26:59:63:3f:2e:a5:18:24:f2:e5:be:cb:
be:a5:40:8a:b2:0e:7b:3b:92:41:c2:34:81:94:39:81:7b:87:
62:1f:d7:78:ab:7c:41:d8:0c:42:a4:44:05:a6:ed:b0:c6:19:
b5:52:4b:6c:62:95:41:6e:11:ae:2c:f3:66:ac:42:91:05:a5:
59:4a:9e:7c:f5:c2:21:a9:45:d1:fa:a5:db:ad:61:10:b9:04:
4d:25:2c:fa:0e:24:4d:08:3a:df:c6:ae:17:cb:06:b1:12:ad:
56:a3:22:bb:c5:6e:b7:c7:46:3d:47:71:dc:67:e7:a3:b5:4c:
49:e7:51:1e:67:8c:91:18:9a:df:07:68:63:78:53:d8:37:a0:
d0:15:13:0a:f5:51:a4:dc:e0:b7:55:b8:91:65:bf:0c:2b:9d:
3c:d4:f2:e8:26:49:c9:db:50:7d:1a:7d:22:17:ba:15:e6:42:
4c:34:25:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:28 2024 by rpki-client on console-ams.rpki-client.org