Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/QpiS_qCnumRkscDTUMMcna5NaE0.roa
File: QpiS_qCnumRkscDTUMMcna5NaE0.roa (raw, json)
Hash identifier: 8fkuWUj21PMD7ovuBQEwHesO2JYBDJ7Fn44oeba3Agc=
Subject key identifier: 42:98:92:FE:A0:A7:BA:64:64:B1:C0:D3:50:C3:1C:9D:AE:4D:68:4D
Certificate issuer: /CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Certificate serial: 3280BC96
Authority key identifier: 3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/QpiS_qCnumRkscDTUMMcna5NaE0.roa
Signing time: Sat 01 Jan 2022 13:55:56 +0000
ROA not before: Sat 01 Jan 2022 13:55:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 194.246.8.0/23 maxlen: 23
194.246.14.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 847297686 (0x3280bc96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Validity
Not Before: Jan 1 13:55:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=429892fea0a7ba6464b1c0d350c31c9dae4d684d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:24:28:d2:96:ba:60:b4:3a:95:15:62:fd:a9:
89:d2:e4:b3:ee:96:30:f6:00:33:7f:97:07:40:8e:
08:52:cc:98:c4:28:79:27:66:08:7f:22:f5:d8:f7:
83:4c:27:23:a3:db:7c:b4:e3:d1:5f:b9:f6:9d:68:
04:96:8f:05:7f:53:0f:37:d8:3a:a7:c6:58:58:b6:
b5:83:a0:8e:f5:52:b4:79:21:06:ae:44:c8:fd:45:
a9:35:5c:d6:83:51:5e:57:c2:52:87:15:ff:43:17:
4c:fd:0a:1e:ce:21:80:cb:1c:b1:84:3e:e2:4c:fd:
cb:9d:4c:12:1c:e8:63:74:eb:d2:56:08:cc:74:f5:
7c:13:d7:76:70:3c:f1:7d:0c:3a:dc:c3:b9:fb:8f:
00:b5:d2:9c:e4:29:e7:5e:98:de:10:2d:4c:da:74:
a0:56:de:fe:3b:e3:24:6d:13:41:82:ae:3d:21:b6:
a8:b4:4c:0f:6c:b6:9b:49:40:98:79:37:b3:1e:52:
e0:b5:65:ce:37:02:bf:b4:86:88:04:89:68:f6:bf:
fb:f2:11:cd:d5:ee:41:d1:26:bc:cb:34:b7:96:66:
c7:7e:47:65:66:ec:63:1a:b8:1e:f0:ba:79:37:26:
90:a5:e3:77:a3:c8:ac:76:00:81:87:92:09:ff:95:
c0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:98:92:FE:A0:A7:BA:64:64:B1:C0:D3:50:C3:1C:9D:AE:4D:68:4D
X509v3 Authority Key Identifier:
keyid:3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/QpiS_qCnumRkscDTUMMcna5NaE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.8.0/23
194.246.14.0/23
Signature Algorithm: sha256WithRSAEncryption
af:72:e2:36:d7:19:f7:46:c4:10:4f:00:ab:d6:2d:01:5f:53:
e0:65:a5:23:be:dd:4f:d5:bf:be:3b:34:c4:16:b8:f6:f9:4e:
2b:02:ee:dc:30:15:0b:f9:fa:1f:6f:72:b8:6c:63:cc:d6:24:
0a:dd:e9:7e:dd:55:ee:f8:d5:6f:af:31:2e:4f:88:53:d1:61:
4c:97:24:32:40:d2:d9:94:04:59:99:fc:7f:a8:50:1b:28:93:
4c:a1:7a:63:d4:d5:b5:63:53:dc:73:e9:e3:ce:9a:1d:f6:06:
e1:9d:ec:1d:21:21:6a:2b:6a:9f:15:98:98:ab:8a:2c:68:60:
ae:1f:a1:a5:e0:7c:c3:30:e0:9c:e3:a2:c5:a9:a7:a8:b2:bf:
58:a5:7e:a4:79:f2:a1:f1:b5:51:04:93:3a:fe:03:0e:2e:d0:
ed:44:f7:e5:66:30:64:69:4c:af:a7:17:95:25:64:cf:a0:af:
50:a7:d9:ca:6b:79:7c:c3:b7:b7:16:1b:b4:cb:8f:49:9f:7b:
b0:26:2e:d0:05:df:4d:73:cf:bd:68:d1:24:a1:09:a0:9c:22:
9d:eb:4b:b5:48:74:84:69:df:03:d3:e4:cb:72:a3:af:6d:dc:
e1:14:e0:e0:90:f3:f7:a3:0d:47:8b:5c:ef:7e:24:f9:64:2c:
3d:af:d7:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:28 2023 by rpki-client on console.sobornost.net