Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b025bc-bc73-4d3c-a430-00394b610a34/1/qxVXadoGz9i7qDz_aVNYwVkutXU.roa
File: qxVXadoGz9i7qDz_aVNYwVkutXU.roa (raw, json)
Hash identifier: mvcRTSJ7wTMN4GK3EZH9mEwzOqOVSoJXsDqxJ9cvEIs=
Subject key identifier: AB:15:57:69:DA:06:CF:D8:BB:A8:3C:FF:69:53:58:C1:59:2E:B5:75
Certificate issuer: /CN=4940cf778dd9817657cd8d4feedd423d46d1a965
Certificate serial: 0121BA58
Authority key identifier: 49:40:CF:77:8D:D9:81:76:57:CD:8D:4F:EE:DD:42:3D:46:D1:A9:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SUDPd43ZgXZXzY1P7t1CPUbRqWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b025bc-bc73-4d3c-a430-00394b610a34/1/qxVXadoGz9i7qDz_aVNYwVkutXU.roa
Signing time: Sat 01 Jan 2022 11:59:20 +0000
ROA not before: Sat 01 Jan 2022 11:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50182
IP address blocks: 194.34.98.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18987608 (0x121ba58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4940cf778dd9817657cd8d4feedd423d46d1a965
Validity
Not Before: Jan 1 11:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab155769da06cfd8bba83cff695358c1592eb575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:33:71:c6:57:c0:e7:d2:4a:36:24:ca:81:31:
47:54:61:98:e0:71:84:78:3b:e5:ad:60:ee:79:89:
54:93:2c:79:34:53:29:00:21:8c:b6:61:3e:3f:fe:
60:66:2b:33:0e:64:b2:fb:fb:96:2b:27:0c:0b:5d:
05:00:0d:db:ae:6c:8a:ae:e6:0c:20:0e:09:08:3b:
1b:88:be:45:2e:a1:ac:f6:59:e9:63:bc:48:7c:e3:
dc:d3:3b:3a:7e:98:04:28:77:8b:a4:4e:ad:d7:db:
86:ba:99:ce:cd:c4:27:14:4e:d9:31:ef:77:ea:ac:
cf:7a:33:1f:de:26:f0:5e:38:72:72:bf:5a:f3:eb:
43:9c:c0:36:ad:42:a8:38:03:8f:15:af:a2:4f:b6:
5e:e8:09:2e:a9:db:59:74:93:b6:dd:50:97:c6:9e:
ed:a8:1e:83:36:4d:74:76:5e:4c:19:6c:de:88:89:
0a:92:41:67:62:19:e6:55:bf:51:67:1c:2a:5a:6f:
59:e7:e4:42:a2:c0:cd:4a:1f:ac:d6:5e:50:1d:c7:
ab:ec:fc:ac:90:6f:ac:06:1c:90:69:1a:09:2f:79:
4c:09:f2:56:62:90:53:2e:7e:a8:00:7d:ae:29:18:
36:5b:b5:e2:15:89:48:85:bf:99:0b:e3:b6:46:ea:
f6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:15:57:69:DA:06:CF:D8:BB:A8:3C:FF:69:53:58:C1:59:2E:B5:75
X509v3 Authority Key Identifier:
keyid:49:40:CF:77:8D:D9:81:76:57:CD:8D:4F:EE:DD:42:3D:46:D1:A9:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SUDPd43ZgXZXzY1P7t1CPUbRqWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b025bc-bc73-4d3c-a430-00394b610a34/1/qxVXadoGz9i7qDz_aVNYwVkutXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b025bc-bc73-4d3c-a430-00394b610a34/1/SUDPd43ZgXZXzY1P7t1CPUbRqWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.98.0/23
Signature Algorithm: sha256WithRSAEncryption
57:29:10:a6:7c:53:5e:4a:3b:84:2c:de:0f:87:bd:30:e5:cd:
8e:63:fe:82:45:ef:d8:bb:95:49:70:c1:18:46:9d:45:85:16:
28:c1:ed:54:4b:0d:3f:46:44:cb:6e:90:b2:6c:57:2e:21:13:
c4:1d:8e:79:ba:86:72:bb:c1:09:fe:0f:0c:05:20:db:e2:ba:
87:8f:52:7f:b6:7a:11:e0:95:0f:ea:35:3a:f1:be:61:4a:82:
01:d6:4b:4f:4c:37:e5:a6:70:f8:1a:c0:1a:db:f0:18:c1:ff:
82:0c:2f:1d:e2:30:3a:85:42:2c:cf:f6:bb:dc:92:34:12:1a:
93:f0:e9:fc:4a:b6:71:23:c7:59:01:f8:1c:00:84:bf:e5:79:
20:5c:5d:e4:af:70:fa:d7:fe:2b:32:99:62:ce:3f:c2:65:c0:
04:20:6a:2a:d0:36:96:e3:a7:35:54:68:8b:77:3c:5b:0e:fe:
e0:a5:26:5a:14:d9:09:5a:23:5d:a2:0d:33:28:db:91:73:b8:
df:aa:85:6d:c5:36:df:52:73:f5:98:b7:c9:7d:5c:f5:ec:d5:
fb:f9:50:67:43:ff:1b:ee:6f:56:01:99:28:f2:87:3c:21:66:
6a:d1:90:59:1a:40:f6:61:5a:64:69:75:e3:35:40:2d:bd:0c:
b6:83:dd:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:44 2023 by rpki-client on console-fra.rpki-client.org