Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/qqueXQvT3q5NNlAMUKlqRBiisqU.roa
File: qqueXQvT3q5NNlAMUKlqRBiisqU.roa (raw, json)
Hash identifier: DcYbr34CHxYiCSEQQZVC/VO0J10urQLvYjUGlhCLz6M=
Subject key identifier: AA:AB:9E:5D:0B:D3:DE:AE:4D:36:50:0C:50:A9:6A:44:18:A2:B2:A5
Certificate issuer: /CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Certificate serial: 45D2
Authority key identifier: 85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/qqueXQvT3q5NNlAMUKlqRBiisqU.roa
Signing time: Tue 05 Apr 2022 09:57:04 +0000
ROA not before: Tue 05 Apr 2022 09:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200023
IP address blocks: 194.176.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17874 (0x45d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084
Validity
Not Before: Apr 5 09:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aaab9e5d0bd3deae4d36500c50a96a4418a2b2a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:75:9c:55:b0:53:bd:4d:45:85:17:51:b3:c9:
bb:73:da:e7:68:26:f0:3d:5a:ce:ef:d9:1c:a0:41:
29:22:d0:d2:ef:8f:f8:3c:fd:a5:9f:fe:6e:58:e8:
9f:c0:3b:16:fb:97:37:f0:6c:a0:3a:cc:f4:74:23:
c0:27:4d:05:4d:73:cf:68:6b:69:e1:80:2b:39:78:
63:e0:bc:b6:5b:88:4b:e0:25:15:1e:d5:a4:99:39:
f1:a2:99:1a:f0:93:de:9a:f2:af:62:be:6d:3c:0c:
59:c7:24:2d:09:ae:74:e0:09:b6:a9:5a:a7:29:7b:
ca:94:ae:c5:4a:cb:ae:32:c8:10:5b:b4:eb:8c:1b:
9c:1b:60:26:81:6c:22:94:3e:77:9c:0f:a8:30:08:
36:65:fb:19:3c:e0:7a:1d:d6:b1:d3:c3:66:8f:d1:
1a:fc:8a:92:7e:de:18:53:41:8e:6e:9f:65:91:f4:
f6:da:94:81:4b:75:7d:e3:42:a6:b7:6a:bf:3a:f3:
98:c3:27:7d:11:f9:59:5b:8b:bc:82:62:b7:99:1e:
18:de:95:c4:4b:4a:6a:e6:26:d6:62:60:43:d1:6d:
2b:f9:66:9f:7c:3e:c9:d1:79:7c:c8:6e:a9:3f:0c:
4a:42:af:db:66:e3:27:1f:b2:50:7f:d6:b7:a9:42:
16:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:AB:9E:5D:0B:D3:DE:AE:4D:36:50:0C:50:A9:6A:44:18:A2:B2:A5
X509v3 Authority Key Identifier:
keyid:85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/qqueXQvT3q5NNlAMUKlqRBiisqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.176.127.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:16:67:bb:ce:1c:26:3c:d4:06:fa:d5:30:41:81:5d:81:05:
0e:ea:fd:c1:a5:27:48:ef:bd:bb:ac:f0:f7:92:05:d0:e0:da:
66:38:2d:2d:57:16:25:a8:a5:3a:e5:77:25:e5:db:d4:90:cd:
4f:13:72:ac:a1:dc:5c:72:74:23:ef:54:37:f0:22:52:34:7f:
e4:cb:bf:3a:b4:b7:b5:09:48:7a:fa:5f:00:c8:8d:a9:3c:7a:
3d:fe:bf:26:7f:cc:60:67:90:58:f2:fe:51:37:85:e3:82:8c:
94:bf:a0:df:75:ea:b1:e7:12:72:ae:1f:85:ac:89:69:b0:e2:
98:8b:1d:53:78:0c:e0:cc:9c:5c:f5:5a:ed:1b:2d:82:79:69:
e3:97:36:7f:9a:47:00:83:43:d3:09:3b:25:0c:7f:0d:83:69:
c1:db:f5:9c:03:21:04:3e:31:8c:90:c4:72:5c:d4:63:fc:20:
f3:4c:ea:83:50:69:63:1d:4e:03:e0:78:81:55:6d:f7:42:e7:
74:cb:1f:9c:fc:91:16:95:63:45:72:ca:89:39:13:3e:c6:fa:
08:a0:3c:95:ce:c0:7d:4b:03:d4:93:1c:2b:8e:f6:1c:eb:f6:
9b:85:df:c4:b7:09:1c:cb:b2:09:99:19:4e:8d:25:98:93:d9:
9d:92:25:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:31 2024 by rpki-client on console-fra.rpki-client.org