Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/5a3bda-c688-4a42-946f-963993ce5181/1/sqnUMqz4CXBGnEhqy3neOplh5Rc.roa
File: sqnUMqz4CXBGnEhqy3neOplh5Rc.roa (raw, json)
Hash identifier: eDl3vjCkMb6rSMYwrpTr6rdXjVnKbdoAGuLCdZp9Cd0=
Subject key identifier: B2:A9:D4:32:AC:F8:09:70:46:9C:48:6A:CB:79:DE:3A:99:61:E5:17
Certificate issuer: /CN=036aac34c66fda64b67eb96b02d819789febe861
Certificate serial: 06451527
Authority key identifier: 03:6A:AC:34:C6:6F:DA:64:B6:7E:B9:6B:02:D8:19:78:9F:EB:E8:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2qsNMZv2mS2frlrAtgZeJ_r6GE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/5a3bda-c688-4a42-946f-963993ce5181/1/sqnUMqz4CXBGnEhqy3neOplh5Rc.roa
Signing time: Sat 01 Jan 2022 10:54:39 +0000
ROA not before: Sat 01 Jan 2022 10:54:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41847
IP address blocks: 193.34.170.0/23 maxlen: 24
2001:67c:2f1c::/48 maxlen: 120
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105190695 (0x6451527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=036aac34c66fda64b67eb96b02d819789febe861
Validity
Not Before: Jan 1 10:54:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2a9d432acf80970469c486acb79de3a9961e517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:15:a9:15:41:ab:60:90:58:a5:b0:9b:dd:c0:
fd:b6:a3:a8:82:25:24:a2:cd:5e:e3:10:63:f4:2c:
a0:17:de:b4:4d:20:b1:b7:3b:c1:b7:85:e4:00:e6:
a7:a3:c8:32:0b:29:4e:a8:f3:0e:e3:13:8b:5e:49:
16:d1:c2:f7:dc:20:a8:8d:f8:59:45:52:d8:fe:5b:
3f:d6:84:32:63:ec:7c:da:80:05:a6:37:7b:40:b2:
d5:eb:9a:83:15:72:04:3b:6f:f6:ed:49:be:5f:d1:
ae:51:15:0b:a1:d4:ec:3d:dd:e1:16:e1:66:f6:b7:
8b:eb:78:ee:f3:86:4c:87:b5:60:fa:40:3a:4c:63:
d8:94:27:c5:3a:45:f1:c3:5c:ed:be:1b:b1:ba:4c:
7d:5e:65:f2:f5:70:19:2c:87:14:1a:bb:38:f8:98:
48:7e:e2:12:02:3a:dd:6c:02:83:2e:4f:46:1b:e9:
63:50:70:2d:c4:b0:33:06:42:eb:9c:63:fd:77:01:
f4:50:ae:f7:0c:2d:a3:8d:be:dd:98:d9:0d:c3:7d:
00:bb:d2:39:3b:0e:b5:16:fa:a5:26:5b:94:00:15:
3a:08:73:be:11:82:da:88:9b:2d:29:97:2d:42:f9:
8a:ff:a5:b5:c0:d7:f6:90:3f:99:08:ef:21:f4:9f:
53:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A9:D4:32:AC:F8:09:70:46:9C:48:6A:CB:79:DE:3A:99:61:E5:17
X509v3 Authority Key Identifier:
keyid:03:6A:AC:34:C6:6F:DA:64:B6:7E:B9:6B:02:D8:19:78:9F:EB:E8:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2qsNMZv2mS2frlrAtgZeJ_r6GE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/5a3bda-c688-4a42-946f-963993ce5181/1/sqnUMqz4CXBGnEhqy3neOplh5Rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/5a3bda-c688-4a42-946f-963993ce5181/1/A2qsNMZv2mS2frlrAtgZeJ_r6GE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.170.0/23
IPv6:
2001:67c:2f1c::/48
Signature Algorithm: sha256WithRSAEncryption
1e:f3:6a:d5:08:af:5b:b6:1f:f4:12:0e:06:a7:42:f0:5e:8d:
1e:ab:e6:73:21:6f:b2:04:01:ae:fc:7a:d7:6d:39:2a:57:9a:
6d:6c:56:7a:70:27:46:d9:40:7f:b4:86:c9:38:aa:45:e3:1e:
1a:9f:90:9d:ab:df:f0:1f:bc:7c:09:a9:15:c6:4c:db:88:03:
63:bd:af:7b:ee:7c:f0:39:cc:cb:93:94:df:1e:d4:52:6e:58:
5d:5f:27:15:e5:79:e7:3f:4e:78:32:07:0f:b8:84:0a:d5:b3:
a9:21:61:65:9c:05:ec:94:5d:f5:67:f4:eb:65:6a:63:ed:56:
3e:91:9b:df:11:26:dd:a6:6b:0b:b3:25:36:96:8f:df:16:7d:
59:9f:ed:6b:43:aa:60:1a:ca:f8:2a:d9:3b:bc:3b:16:2f:ee:
17:03:08:f8:77:f4:9d:9f:e6:6e:b4:31:72:08:87:24:77:9e:
a2:b0:79:fc:c4:86:15:a1:37:d6:02:77:d2:2e:6a:0a:50:5a:
61:ac:51:c0:4d:d0:9a:84:b2:af:47:53:1d:b5:22:9d:60:1d:
ec:dd:cc:ad:37:85:89:4c:b0:c6:71:70:c5:ab:b0:9e:43:8d:
71:59:f6:62:4f:39:17:37:bd:be:25:87:15:35:1b:61:67:52:
60:66:78:72
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBkUVJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MzZhYWMzNGM2NmZkYTY0YjY3ZWI5NmIwMmQ4MTk3ODlmZWJlODYxMB4XDTIyMDEw
MTEwNTQzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjJhOWQ0MzJhY2Y4
MDk3MDQ2OWM0ODZhY2I3OWRlM2E5OTYxZTUxNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMwVqRVBq2CQWKWwm93A/bajqIIlJKLNXuMQY/QsoBfetE0g
sbc7wbeF5ADmp6PIMgspTqjzDuMTi15JFtHC99wgqI34WUVS2P5bP9aEMmPsfNqA
BaY3e0Cy1euagxVyBDtv9u1Jvl/RrlEVC6HU7D3d4RbhZva3i+t47vOGTIe1YPpA
Okxj2JQnxTpF8cNc7b4bsbpMfV5l8vVwGSyHFBq7OPiYSH7iEgI63WwCgy5PRhvp
Y1BwLcSwMwZC65xj/XcB9FCu9wwto42+3ZjZDcN9ALvSOTsOtRb6pSZblAAVOghz
vhGC2oibLSmXLUL5iv+ltcDX9pA/mQjvIfSfUxcCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSyqdQyrPgJcEacSGrLed46mWHlFzAfBgNVHSMEGDAWgBQDaqw0xm/aZLZ+
uWsC2Bl4n+voYTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0EycXNOTVp2Mm1TMmZybHJBdGdaZUpfcjZHRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjQvNWEzYmRhLWM2ODgtNGE0Mi05NDZmLTk2Mzk5M2NlNTE4MS8x
L3NxblVNcXo0Q1hCR25FaHF5M25lT3BsaDVSYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjQv
NWEzYmRhLWM2ODgtNGE0Mi05NDZmLTk2Mzk5M2NlNTE4MS8xL0EycXNOTVp2Mm1T
MmZybHJBdGdaZUpfcjZHRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAcEiqjAPBAIAAjAJAwcAIAEGfC8c
MA0GCSqGSIb3DQEBCwUAA4IBAQAe82rVCK9bth/0Eg4Gp0LwXo0eq+ZzIW+yBAGu
/HrXbTkqV5ptbFZ6cCdG2UB/tIbJOKpF4x4an5Cdq9/wH7x8CakVxkzbiANjva97
7nzwOczLk5TfHtRSblhdXycV5XnnP054MgcPuIQK1bOpIWFlnAXslF31Z/TrZWpj
7VY+kZvfESbdpmsLsyU2lo/fFn1Zn+1rQ6pgGsr4Ktk7vDsWL+4XAwj4d/Sdn+Zu
tDFyCIckd56isHn8xIYVoTfWAnfSLmoKUFphrFHATdCahLKvR1MdtSKdYB3s3cyt
N4WJTLDGcXDFq7CeQ41xWfZiTzkXN72+JYcVNRthZ1JgZnhy
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:25 2023 by rpki-client on console-fra.rpki-client.org