Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/qTuXuVSmNg7zt6tSlk6H_3MK_GE.roa
File: qTuXuVSmNg7zt6tSlk6H_3MK_GE.roa (raw, json)
Hash identifier: HKMepBlkzrops74Ynl+MIytn6fbYyUQNFXGwuc+owck=
Subject key identifier: A9:3B:97:B9:54:A6:36:0E:F3:B7:AB:52:96:4E:87:FF:73:0A:FC:61
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 0183BD3D69A2D1F74F431CB408975F812A6F
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/qTuXuVSmNg7zt6tSlk6H_3MK_GE.roa
Signing time: Sun 09 Oct 2022 14:54:22 +0000
ROA not before: Sun 09 Oct 2022 14:54:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212815
IP address blocks: 194.180.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:bd:3d:69:a2:d1:f7:4f:43:1c:b4:08:97:5f:81:2a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Oct 9 14:54:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a93b97b954a6360ef3b7ab52964e87ff730afc61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6c:2c:06:04:4d:d1:ef:53:63:dd:e6:b8:19:
6e:92:45:39:c9:d1:cf:87:05:67:0c:ef:20:54:31:
e1:56:2a:90:e7:ce:33:5d:6b:fa:03:06:fe:27:96:
3b:67:04:82:ce:3e:d0:5d:51:29:9b:44:fe:5d:c7:
8d:1d:a5:e8:28:57:13:cb:63:d3:18:92:f8:57:66:
a1:1f:c8:d0:81:16:96:35:8b:fc:5d:ab:fd:2d:ee:
ae:05:4a:52:f7:25:39:d6:6a:51:7b:66:ef:d3:2a:
e8:c1:07:0c:13:8d:55:c8:ff:ba:6b:66:64:32:40:
25:59:a9:db:38:7f:61:72:3d:af:41:52:77:de:ce:
4a:35:a5:9a:bb:b7:d7:cf:ce:e1:6d:9c:cf:7e:c4:
dd:57:08:03:8c:70:54:ff:41:7a:e0:fa:21:79:f7:
3a:5d:ca:3a:4d:4e:1e:78:1b:a0:fd:0e:e3:1d:4c:
1f:1f:aa:aa:cf:ca:3e:94:e6:30:03:97:b2:f9:3c:
9a:23:a2:2a:3f:52:44:0c:08:69:47:9f:f0:d7:93:
66:8a:6d:00:65:bb:d0:e6:5b:64:4b:11:71:26:98:
ea:b7:b0:ea:cd:73:35:78:bd:46:07:7f:8f:41:ed:
77:03:a7:a9:30:c4:e0:a5:ef:0b:23:87:8e:07:31:
ab:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:3B:97:B9:54:A6:36:0E:F3:B7:AB:52:96:4E:87:FF:73:0A:FC:61
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/qTuXuVSmNg7zt6tSlk6H_3MK_GE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.225.0/24
Signature Algorithm: sha256WithRSAEncryption
62:f5:e7:aa:0f:b1:57:cd:97:54:a9:a1:de:9b:9a:e7:4c:42:
28:3e:7c:a5:ba:c8:72:e3:d7:af:09:c5:fa:1f:92:4f:e1:05:
b8:21:1e:32:d2:b5:07:ab:a1:b7:8a:3c:4a:71:63:3a:d5:4b:
8a:31:34:a7:52:88:5a:9a:ca:b8:0c:4d:59:38:a9:a0:01:c3:
b0:7a:a8:3e:5a:aa:7d:70:11:ca:fe:0b:9a:12:b2:ca:f0:a4:
99:89:d5:a7:ca:51:7f:b7:72:90:37:05:7b:95:61:27:e7:1c:
d1:bd:16:f9:bd:97:45:24:c6:a9:ba:18:1b:36:4b:5c:95:09:
51:13:fb:b0:1e:c6:4d:67:71:aa:38:ae:39:3a:2d:f8:72:d8:
5b:6e:0c:14:ba:0e:74:fd:b4:9f:5d:89:b7:b2:8b:4f:91:e3:
76:1e:ce:2e:31:d7:ca:40:c5:bd:f1:39:12:65:53:d4:f7:c3:
ca:99:55:d3:e5:08:f6:0f:ba:d5:56:2f:79:dc:49:06:cc:20:
b6:81:c9:21:ac:3d:f7:72:5d:d8:b9:29:f3:22:8c:24:c6:21:
7f:58:8d:3c:84:df:33:da:22:2a:d4:b1:bf:b7:f0:bd:ca:b3:
61:98:6c:f1:ae:49:d2:c8:d2:62:b7:fa:c3:68:e2:87:75:e3:
1b:7e:d5:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org