Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/QjZYtpwAKR_MBCyMYZcawOsLVfA.roa
File: QjZYtpwAKR_MBCyMYZcawOsLVfA.roa (raw, json)
Hash identifier: rXYLp38JDm5iQdgspEeF4H0AJayzmZC+PtoAJmQcz0I=
Subject key identifier: 42:36:58:B6:9C:00:29:1F:CC:04:2C:8C:61:97:1A:C0:EB:0B:55:F0
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 35A15857
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/QjZYtpwAKR_MBCyMYZcawOsLVfA.roa
Signing time: Sat 01 Jan 2022 08:54:54 +0000
ROA not before: Sat 01 Jan 2022 08:54:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44380
IP address blocks: 195.93.206.0/23 maxlen: 23
195.191.146.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 899766359 (0x35a15857)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:54:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=423658b69c00291fcc042c8c61971ac0eb0b55f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a2:39:8f:e4:c0:18:0c:13:22:5e:d0:d6:32:
54:82:94:13:ff:4a:e6:43:7a:f5:9b:5c:dc:1a:09:
5a:9c:05:b7:50:fd:0a:7a:a7:72:da:83:6c:4d:15:
84:9c:b6:be:e8:c9:fe:41:f0:19:89:20:6b:44:bf:
9c:d3:e5:48:27:30:4a:dc:f7:74:c8:42:37:66:7d:
34:ba:ff:d3:3a:b0:40:e1:a1:54:81:ac:0f:35:88:
4e:d0:ed:23:b3:c7:8a:cd:e8:66:ac:02:e1:61:7e:
94:bd:20:11:b4:03:0d:cb:28:94:7e:07:4a:95:e5:
9a:b5:73:29:f4:b3:32:61:e3:46:1a:30:84:82:a8:
46:89:28:b2:43:6f:75:c5:e8:cd:16:cd:21:04:f1:
a5:d3:60:ea:50:3c:19:2b:31:3a:57:10:42:8c:82:
3f:57:ef:2a:a1:9d:4b:88:d0:28:b4:6c:78:8f:3e:
dd:cf:85:ee:dc:18:23:1f:14:70:bb:0b:cd:e1:c7:
3d:ea:2f:3d:a1:fe:f5:e9:92:40:5b:8d:0d:07:39:
1e:e9:b7:a7:e4:a3:59:e8:c5:5d:68:dc:50:59:08:
c4:06:a6:e5:c5:a5:ca:4f:fb:b3:ed:a3:7c:82:5d:
72:4c:b5:27:6a:8d:25:d7:b4:1c:ac:42:16:04:88:
0b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:36:58:B6:9C:00:29:1F:CC:04:2C:8C:61:97:1A:C0:EB:0B:55:F0
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/QjZYtpwAKR_MBCyMYZcawOsLVfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.206.0/23
195.191.146.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:12:72:9e:58:b6:0c:4f:ff:9a:4a:c3:8e:2e:a5:cd:36:e4:
b1:da:96:30:6d:55:d2:c0:d4:bb:66:c1:14:51:d3:e7:97:4e:
1e:22:87:15:e1:f0:77:90:fe:bd:1f:10:b5:39:e4:e3:63:73:
98:73:eb:f6:50:68:0c:37:24:7d:fe:11:6e:f1:30:89:69:cd:
32:fd:d4:8e:8b:b9:51:42:36:7d:e0:68:a2:56:fe:97:f6:20:
a5:af:52:46:64:0d:19:a1:5a:16:ca:44:bd:4f:60:65:a2:bc:
bd:54:46:63:26:6a:02:f4:f1:d5:74:da:46:db:6e:50:00:1f:
f4:1e:1d:56:3e:76:b8:bb:38:54:59:f2:00:8e:61:8b:b6:03:
08:9f:e5:fc:80:da:9e:71:d8:c6:4f:ed:d5:10:ba:08:c7:f5:
40:44:a0:91:2b:3d:2c:f2:0b:df:18:73:41:c0:16:4b:f0:c3:
06:48:b2:01:04:b3:11:e0:0f:70:8d:08:e5:f8:d6:cc:e6:47:
e0:65:04:4b:30:da:be:e2:30:f3:a9:0a:c1:50:9b:bc:54:9f:
a8:5a:48:54:fb:ea:8a:0c:65:3b:17:25:28:01:62:d3:3c:ba:
99:0f:8f:83:b2:37:eb:58:4f:0b:d0:db:e3:7d:d5:9c:c1:3e:
59:4f:9c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:48 2023 by rpki-client on console.sobornost.net