Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/7d314e-42cd-42ce-985e-954f26913f43/1/qEQLKWG_oDlz2EamYspWqP41tg8.roa
File: qEQLKWG_oDlz2EamYspWqP41tg8.roa (raw, json)
Hash identifier: gTbHpu/CW7xt022D5UC0BozOtDMceYe4MfmE3vkZrgk=
Subject key identifier: A8:44:0B:29:61:BF:A0:39:73:D8:46:A6:62:CA:56:A8:FE:35:B6:0F
Certificate issuer: /CN=ab9cfd157441f69428dd1f6361ca4f4ae42cb38a
Certificate serial: 0F47FFA7
Authority key identifier: AB:9C:FD:15:74:41:F6:94:28:DD:1F:63:61:CA:4F:4A:E4:2C:B3:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q5z9FXRB9pQo3R9jYcpPSuQss4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/7d314e-42cd-42ce-985e-954f26913f43/1/qEQLKWG_oDlz2EamYspWqP41tg8.roa
Signing time: Sat 01 Jan 2022 10:05:09 +0000
ROA not before: Sat 01 Jan 2022 10:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6799
IP address blocks: 194.125.252.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 256376743 (0xf47ffa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9cfd157441f69428dd1f6361ca4f4ae42cb38a
Validity
Not Before: Jan 1 10:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8440b2961bfa03973d846a662ca56a8fe35b60f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d8:3a:34:0f:3d:55:a9:8b:54:0d:b7:06:b6:
87:4b:e3:fe:96:59:21:ad:0c:de:6c:79:80:4f:07:
8f:c4:4d:36:10:3d:ad:a9:b6:d7:18:83:d9:e2:20:
06:29:85:00:b6:3e:d6:61:26:f0:62:b5:1a:fd:9f:
44:fd:4b:9b:9c:0b:b3:4c:78:7c:ab:bf:7c:2a:60:
64:c1:ae:8c:ec:af:26:8b:19:c3:bf:98:b8:77:7c:
6f:b6:99:dc:29:fa:cd:13:57:8a:f1:0e:37:71:0d:
b2:9a:64:db:79:76:24:9d:3a:8b:a0:19:f4:37:9c:
bc:df:ab:0f:53:52:bf:6c:bf:dd:90:df:4c:40:50:
ce:8e:ba:2e:cb:5a:bc:9f:51:4c:00:db:63:7b:e3:
ef:f8:4d:b7:8e:93:8d:66:81:0a:3f:c5:58:a6:08:
a3:31:36:3f:9c:5f:45:ed:21:40:43:9e:10:08:19:
19:ea:25:16:ce:12:72:41:92:fa:e6:43:b9:e6:ee:
cf:f9:b7:4e:65:fc:7e:59:3f:34:58:1a:15:a7:02:
ac:5d:b9:8e:1a:59:09:6c:24:c5:a8:f8:ce:50:5e:
99:69:be:f7:5c:14:ae:92:f8:51:75:ef:0d:1f:3e:
86:2c:1b:3d:00:b5:66:ac:fa:e5:53:ed:4c:00:17:
15:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:44:0B:29:61:BF:A0:39:73:D8:46:A6:62:CA:56:A8:FE:35:B6:0F
X509v3 Authority Key Identifier:
keyid:AB:9C:FD:15:74:41:F6:94:28:DD:1F:63:61:CA:4F:4A:E4:2C:B3:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q5z9FXRB9pQo3R9jYcpPSuQss4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7d314e-42cd-42ce-985e-954f26913f43/1/qEQLKWG_oDlz2EamYspWqP41tg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7d314e-42cd-42ce-985e-954f26913f43/1/q5z9FXRB9pQo3R9jYcpPSuQss4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.125.252.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:70:2e:fb:31:cb:7e:9a:16:be:c9:22:8d:73:14:ec:3c:42:
70:70:3b:61:99:37:1c:5a:5a:39:92:f7:13:e9:1c:9e:af:ce:
4d:9b:13:a8:89:a7:c4:b4:f5:a4:e4:81:22:b3:c0:7d:82:f4:
51:c1:47:4a:dd:3a:66:33:ed:cd:da:d6:b0:f7:e0:f2:86:b5:
99:fd:98:cc:f3:f7:d6:0e:57:fc:7c:9a:a5:5f:73:04:93:47:
35:5f:cf:1a:56:da:ed:ca:ae:8b:d5:b8:5a:e1:e6:73:5f:a9:
24:1a:0d:09:09:d9:c0:93:ca:bc:7c:d2:bb:2f:b6:6c:82:c6:
7f:a1:27:da:f1:83:3a:8e:e3:a2:a3:f6:77:f0:3c:91:12:70:
33:39:19:19:dd:51:4e:5f:9e:ea:dc:0d:4b:b1:a7:7d:c2:b8:
11:02:2c:e9:f1:1f:95:3d:e9:04:74:cc:81:7e:81:ef:4c:a8:
ef:e5:c0:4f:00:4f:56:2a:68:d7:1e:77:cc:2b:30:59:07:cf:
ad:1b:d9:48:c9:18:40:fc:ae:e6:e8:bc:84:ec:9c:5c:b5:a2:
49:6d:85:ee:08:95:82:56:2c:54:5d:ab:fd:cc:92:13:12:97:
86:6a:2f:a3:f8:81:46:8b:34:be:7f:01:c5:b7:50:6b:2e:71:
b2:a7:bb:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net