Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e0e433-9b36-47a6-93a2-041fd4c6ffd4/1/qcsIZ7XehWd_CrPWS3Ri1p9aJHQ.roa
File: qcsIZ7XehWd_CrPWS3Ri1p9aJHQ.roa (raw, json)
Hash identifier: rOKFyJzbpjjBFHXJybwjwDt75E8LIdhIxcmR5P+wcfk=
Subject key identifier: A9:CB:08:67:B5:DE:85:67:7F:0A:B3:D6:4B:74:62:D6:9F:5A:24:74
Certificate issuer: /CN=73e373fee780eeab2a90422d0ad514e084a8d611
Certificate serial: 025FFACF
Authority key identifier: 73:E3:73:FE:E7:80:EE:AB:2A:90:42:2D:0A:D5:14:E0:84:A8:D6:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c-Nz_ueA7qsqkEItCtUU4ISo1hE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e0e433-9b36-47a6-93a2-041fd4c6ffd4/1/qcsIZ7XehWd_CrPWS3Ri1p9aJHQ.roa
Signing time: Tue 15 Mar 2022 12:52:16 +0000
ROA not before: Tue 15 Mar 2022 12:52:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34442
IP address blocks: 46.232.192.0/21 maxlen: 24
195.8.116.0/24 maxlen: 24
80.77.240.0/20 maxlen: 24
77.246.16.0/20 maxlen: 24
2a00:1990::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39844559 (0x25ffacf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73e373fee780eeab2a90422d0ad514e084a8d611
Validity
Not Before: Mar 15 12:52:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9cb0867b5de85677f0ab3d64b7462d69f5a2474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4e:6f:c0:c9:cd:77:e8:d4:28:b8:5a:58:fe:
7b:f3:3b:85:0e:55:f1:9c:1a:60:9f:72:a8:e2:f7:
27:24:a9:67:45:7e:9e:8b:3d:5f:fe:7d:c5:a8:b7:
c8:8c:aa:91:20:e1:43:3b:33:99:b2:5e:15:07:3a:
e5:f5:9f:e4:7d:c5:8d:94:81:46:23:69:53:27:2e:
8a:e0:50:b9:32:9b:b8:18:cc:d9:25:c9:89:0f:04:
17:04:fb:59:3c:e9:75:69:97:83:37:d5:ae:d2:a0:
da:68:4a:c2:a4:cd:b7:ec:f5:b5:72:e7:ba:2d:a1:
ff:6e:f1:6a:8f:ee:0b:95:b5:00:cd:7e:5f:03:96:
04:c8:3d:be:08:9f:00:e1:1d:80:54:1b:e0:b1:25:
01:1c:d6:d6:5c:68:02:eb:dd:f7:ae:13:d5:cc:6b:
65:5a:83:03:29:fb:a5:dd:3d:b3:ba:df:6e:9b:3d:
6c:a5:dc:7a:e4:16:f2:3f:92:b2:c2:e5:4b:b0:17:
11:16:24:4c:92:7a:db:38:1a:a9:4f:10:44:98:bb:
aa:15:78:88:82:cb:1c:2a:ff:1f:f8:1b:e7:73:42:
83:f7:56:04:6c:79:e8:48:4b:f4:55:40:f6:be:e2:
2a:97:29:0d:65:b0:e1:7f:10:02:2c:60:b0:61:81:
6a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:CB:08:67:B5:DE:85:67:7F:0A:B3:D6:4B:74:62:D6:9F:5A:24:74
X509v3 Authority Key Identifier:
keyid:73:E3:73:FE:E7:80:EE:AB:2A:90:42:2D:0A:D5:14:E0:84:A8:D6:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c-Nz_ueA7qsqkEItCtUU4ISo1hE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e0e433-9b36-47a6-93a2-041fd4c6ffd4/1/qcsIZ7XehWd_CrPWS3Ri1p9aJHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e0e433-9b36-47a6-93a2-041fd4c6ffd4/1/c-Nz_ueA7qsqkEItCtUU4ISo1hE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.232.192.0/21
77.246.16.0/20
80.77.240.0/20
195.8.116.0/24
IPv6:
2a00:1990::/32
Signature Algorithm: sha256WithRSAEncryption
7e:85:71:53:57:9c:f7:56:9e:b4:fe:f7:97:84:05:93:47:ee:
47:a6:65:91:c1:86:8c:d1:c6:df:6b:04:b3:ff:0a:c9:fb:cb:
4f:ca:74:92:cd:05:ec:25:e6:08:bb:26:b5:ce:91:1e:41:5d:
b7:f1:5a:0e:bd:dc:6d:79:77:d2:13:67:df:e6:c5:7c:71:7a:
52:e9:28:31:2b:a3:1d:34:ed:45:ce:0f:17:bf:ac:04:58:78:
75:80:e3:33:08:55:4c:50:95:9a:22:23:b4:2b:b0:66:d4:69:
8d:1b:f4:bb:db:a4:63:ac:fe:61:2b:fb:51:a3:fd:a7:fa:81:
b4:d5:89:6f:4f:f8:1c:c9:82:ae:0b:b7:b1:0d:93:16:cd:3a:
41:83:e0:d4:9a:9e:84:6d:b5:04:d2:71:16:61:51:f3:a9:d0:
b4:9e:6f:e4:61:cf:87:ef:23:06:26:99:9f:c4:70:6d:76:d0:
ea:de:8b:2a:5c:0e:76:8f:bb:cd:1f:8a:d7:9d:cb:64:21:64:
db:63:ef:2e:f7:a9:f8:64:76:a9:e9:93:36:89:90:3c:1b:08:
be:c0:93:54:9e:be:9d:b5:c7:d1:bd:e6:2d:ff:69:de:52:4d:
49:46:2c:2b:b6:08:6f:0f:47:38:d0:bf:d2:e9:e5:05:66:f6:
80:f1:41:83
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgIEAl/6zzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
M2UzNzNmZWU3ODBlZWFiMmE5MDQyMmQwYWQ1MTRlMDg0YThkNjExMB4XDTIyMDMx
NTEyNTIxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTljYjA4NjdiNWRl
ODU2NzdmMGFiM2Q2NGI3NDYyZDY5ZjVhMjQ3NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANFOb8DJzXfo1Ci4Wlj+e/M7hQ5V8ZwaYJ9yqOL3JySpZ0V+
nos9X/59xai3yIyqkSDhQzszmbJeFQc65fWf5H3FjZSBRiNpUycuiuBQuTKbuBjM
2SXJiQ8EFwT7WTzpdWmXgzfVrtKg2mhKwqTNt+z1tXLnui2h/27xao/uC5W1AM1+
XwOWBMg9vgifAOEdgFQb4LElARzW1lxoAuvd964T1cxrZVqDAyn7pd09s7rfbps9
bKXceuQW8j+SssLlS7AXERYkTJJ62zgaqU8QRJi7qhV4iILLHCr/H/gb53NCg/dW
BGx56EhL9FVA9r7iKpcpDWWw4X8QAixgsGGBaoUCAwEAAaOCAiowggImMB0GA1Ud
DgQWBBSpywhntd6FZ38Ks9ZLdGLWn1okdDAfBgNVHSMEGDAWgBRz43P+54DuqyqQ
Qi0K1RTghKjWETAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2MtTnpfdWVBN3FzcWtFSXRDdFVVNElTbzFoRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTYvZTBlNDMzLTliMzYtNDdhNi05M2EyLTA0MWZkNGM2ZmZkNC8x
L3Fjc0laN1hlaFdkX0NyUFdTM1JpMXA5YUpIUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTYv
ZTBlNDMzLTliMzYtNDdhNi05M2EyLTA0MWZkNGM2ZmZkNC8xL2MtTnpfdWVBN3Fz
cWtFSXRDdFVVNElTbzFoRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBA
BggrBgEFBQcBBwEB/wQxMC8wHgQCAAEwGAMEAy7owAMEBE32EAMEBFBN8AMEAMMI
dDANBAIAAjAHAwUAKgAZkDANBgkqhkiG9w0BAQsFAAOCAQEAfoVxU1ec91aetP73
l4QFk0fuR6ZlkcGGjNHG32sEs/8KyfvLT8p0ks0F7CXmCLsmtc6RHkFdt/FaDr3c
bXl30hNn3+bFfHF6UukoMSujHTTtRc4PF7+sBFh4dYDjMwhVTFCVmiIjtCuwZtRp
jRv0u9ukY6z+YSv7UaP9p/qBtNWJb0/4HMmCrgu3sQ2TFs06QYPg1JqehG21BNJx
FmFR86nQtJ5v5GHPh+8jBiaZn8RwbXbQ6t6LKlwOdo+7zR+K153LZCFk22PvLvep
+GR2qemTNomQPBsIvsCTVJ6+nbXH0b3mLf9p3lJNSUYsK7YIbw9HONC/0unlBWb2
gPFBgw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:12 2023 by rpki-client on console.sobornost.net