Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/55a277-036e-4737-9af1-d3bec06ac8e1/1/Q9H-fBRFpxoT3vBOkMF1ft9BSc4.roa
File: Q9H-fBRFpxoT3vBOkMF1ft9BSc4.roa (raw, json)
Hash identifier: QAvYedp6Z+QQTZxzpP4SoIqzmjfwlhAp1sWfKzfyvYg=
Subject key identifier: 43:D1:FE:7C:14:45:A7:1A:13:DE:F0:4E:90:C1:75:7E:DF:41:49:CE
Certificate issuer: /CN=b9eaa99b1b55b4e50b5d9eccdeecdf3892473539
Certificate serial: 144F001F
Authority key identifier: B9:EA:A9:9B:1B:55:B4:E5:0B:5D:9E:CC:DE:EC:DF:38:92:47:35:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ueqpmxtVtOULXZ7M3uzfOJJHNTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/55a277-036e-4737-9af1-d3bec06ac8e1/1/Q9H-fBRFpxoT3vBOkMF1ft9BSc4.roa
Signing time: Sat 01 Jan 2022 02:00:33 +0000
ROA not before: Sat 01 Jan 2022 02:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31337
IP address blocks: 193.178.60.0/22 maxlen: 22
2001:67c:1898::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 340721695 (0x144f001f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9eaa99b1b55b4e50b5d9eccdeecdf3892473539
Validity
Not Before: Jan 1 02:00:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43d1fe7c1445a71a13def04e90c1757edf4149ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e1:0e:46:ef:65:29:80:74:6f:92:10:08:71:
84:63:d0:9a:99:ef:7c:f5:07:74:78:dc:d2:f3:06:
38:fd:b4:2e:c3:7f:d9:b9:39:58:df:22:fe:7a:86:
fb:a7:0e:1b:32:5c:48:4f:4c:4d:43:bf:b7:a7:70:
51:0a:cc:1f:99:ed:70:a2:71:d9:de:68:a2:0e:fa:
6f:8c:0c:ca:a5:bf:d4:3a:c2:46:36:30:cf:9d:50:
a1:c0:aa:48:fd:39:88:63:c8:9e:48:71:32:57:65:
39:62:40:88:e6:55:35:ea:ef:9b:aa:06:0f:ce:1b:
7e:58:b5:92:ec:ba:2e:c4:ce:2e:40:09:f9:43:17:
91:2d:82:02:9b:9e:c0:5a:c5:46:40:5a:ed:a3:f0:
82:8f:1c:f6:dc:5c:fc:d2:5b:79:b9:51:38:28:6d:
69:9e:0a:20:93:24:81:07:86:ca:4d:66:47:32:1d:
bc:b5:c6:4d:8c:8e:7e:59:0b:6d:f4:f5:e7:7a:cf:
15:ac:40:70:58:da:a7:3f:34:9a:5d:1c:93:e4:1c:
96:ad:aa:5e:06:74:59:4e:8f:5a:56:bd:b3:f0:57:
72:b0:41:ed:c0:4c:fd:ce:e5:c2:58:8e:29:0b:a7:
08:39:8b:9b:8f:fb:5d:07:e7:c4:be:0d:9f:e4:c8:
b6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:D1:FE:7C:14:45:A7:1A:13:DE:F0:4E:90:C1:75:7E:DF:41:49:CE
X509v3 Authority Key Identifier:
keyid:B9:EA:A9:9B:1B:55:B4:E5:0B:5D:9E:CC:DE:EC:DF:38:92:47:35:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ueqpmxtVtOULXZ7M3uzfOJJHNTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/55a277-036e-4737-9af1-d3bec06ac8e1/1/Q9H-fBRFpxoT3vBOkMF1ft9BSc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/55a277-036e-4737-9af1-d3bec06ac8e1/1/ueqpmxtVtOULXZ7M3uzfOJJHNTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.60.0/22
IPv6:
2001:67c:1898::/48
Signature Algorithm: sha256WithRSAEncryption
88:ab:fe:1b:ec:ea:ee:8e:94:72:ef:9a:b8:84:5c:eb:91:76:
96:27:15:c2:66:c7:b0:6b:b2:6c:1f:28:33:6b:f2:f2:fa:6b:
6d:bb:52:98:36:be:3a:a0:92:41:ae:21:6f:18:f0:bd:2c:6c:
32:0a:cf:f3:f9:1e:9b:99:7a:6b:e6:28:96:34:46:ae:55:b5:
7c:5d:52:ab:1b:37:01:5a:f7:2e:f2:36:8e:96:a6:5f:b8:ed:
b4:62:3a:03:b8:db:04:95:99:e8:59:eb:33:af:b2:a4:c1:bb:
ac:58:bb:dc:fb:12:02:2c:fe:46:be:f1:d3:8a:e3:33:c0:e5:
c3:e9:a7:6a:db:0d:10:c8:b9:ec:03:36:25:81:a9:2f:cf:87:
e4:c5:70:67:c7:d0:4c:e8:26:9b:71:18:89:7f:43:9d:11:1f:
b1:26:02:cd:85:2d:c1:cd:29:b5:43:a3:41:05:d7:f3:61:fa:
ff:4f:67:2e:11:c5:8a:33:7a:38:06:7f:0c:20:ae:f9:d1:0e:
cf:65:d3:54:25:0f:83:4a:3a:1d:17:69:57:c5:d8:dd:ff:76:
29:22:f4:63:aa:b2:24:52:28:64:ff:9b:85:ae:ee:5e:7f:9b:
42:a8:c8:07:36:eb:fe:87:d1:20:1e:73:98:e2:8b:51:5d:7f:
30:4c:85:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:36 2023 by rpki-client on console.sobornost.net