Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/QiUU_h3scLNsutPemnuhwW7L76E.roa
File: QiUU_h3scLNsutPemnuhwW7L76E.roa (raw, json)
Hash identifier: esktwBDvxSB2pxzvcBu8FjioJJ79/OUuhLgho5rGtQ4=
Subject key identifier: 42:25:14:FE:1D:EC:70:B3:6C:BA:D3:DE:9A:7B:A1:C1:6E:CB:EF:A1
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 018571278A09D5A5FD5FF42DB3150DC7462E
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/QiUU_h3scLNsutPemnuhwW7L76E.roa
Signing time: Mon 02 Jan 2023 06:24:54 +0000
ROA not before: Mon 02 Jan 2023 06:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44380
IP address blocks: 195.93.206.0/23 maxlen: 23
195.191.146.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:8a:09:d5:a5:fd:5f:f4:2d:b3:15:0d:c7:46:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 2 06:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=422514fe1dec70b36cbad3de9a7ba1c16ecbefa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:97:09:a4:80:50:dd:63:2c:d6:63:0d:c4:f6:
4d:77:c2:22:e3:32:64:00:48:47:2a:5c:7d:0f:fb:
ea:3c:87:f5:eb:82:96:c9:87:64:d4:91:78:5b:41:
90:18:81:28:a7:9f:97:4e:96:cf:e2:88:13:84:c6:
fa:14:32:ca:ae:8b:e2:3d:72:e7:4a:5d:17:58:cc:
7c:8f:33:e2:54:b3:93:08:dd:61:33:af:88:5a:db:
03:95:c1:3c:73:cd:51:f0:5c:c9:87:31:9c:a4:d5:
19:df:8e:50:d6:37:ab:f0:b5:34:33:54:1d:f0:ee:
98:86:bc:aa:bd:cf:e1:56:db:a9:a0:27:00:ff:c5:
1c:6a:1b:af:d5:d6:15:17:11:a9:5e:99:d1:7d:08:
32:2d:ff:f8:57:7f:02:9a:e1:ac:34:d8:b9:fa:d2:
2f:a7:ea:1d:e7:47:79:76:4d:58:15:9e:ff:b8:06:
aa:f0:38:3f:9b:03:49:e2:78:d0:61:86:22:0c:8d:
c1:85:7b:d6:65:99:6f:d1:1a:e9:8d:13:29:3b:2d:
c6:99:3d:de:f9:8c:45:e9:73:c3:fe:8b:a0:82:b8:
d7:d7:a7:25:7e:0b:e8:b6:58:83:28:9b:3e:67:cc:
86:c0:48:95:14:6c:13:f9:8d:e5:67:25:1a:a3:9a:
c9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:25:14:FE:1D:EC:70:B3:6C:BA:D3:DE:9A:7B:A1:C1:6E:CB:EF:A1
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/QiUU_h3scLNsutPemnuhwW7L76E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.206.0/23
195.191.146.0/23
Signature Algorithm: sha256WithRSAEncryption
25:f7:23:a1:21:42:52:fc:ff:49:1f:ef:d1:9a:4a:2a:8d:39:
08:6d:69:54:7e:d1:c2:61:e0:c7:5c:51:34:9c:68:38:3c:6a:
11:25:5d:ce:b0:56:c5:15:5e:c0:fd:6d:31:42:dc:da:b7:56:
c0:fd:ef:8a:05:35:30:ba:33:bf:66:5f:71:54:2c:26:35:95:
8b:65:61:04:d8:32:d9:9b:16:7b:0d:34:b4:e1:41:25:60:cc:
55:12:40:f0:d1:24:aa:93:02:8b:2f:5b:f7:92:39:42:56:ba:
6a:b0:e7:66:d6:79:2b:00:7d:7d:23:1d:f1:5a:47:7d:f2:02:
96:af:94:36:f1:d3:19:e2:c3:23:f1:be:12:4b:46:e7:e5:7f:
cf:fc:6b:90:54:47:08:f9:0c:50:0c:36:06:48:14:42:27:cb:
41:6d:3d:d9:75:a0:57:f7:46:cf:17:5d:c4:c5:20:b4:a7:e1:
3a:24:eb:68:68:bf:26:b7:90:a6:49:0c:d0:d0:7f:d2:cc:04:
bc:c1:19:23:2c:c2:19:6d:5b:13:3f:78:90:18:71:fd:01:39:
ca:f8:f7:29:32:d0:fc:e3:a4:07:81:d1:b5:c8:b8:9f:3e:c0:
2e:d5:c3:2e:c9:f6:12:7a:16:ad:c3:7d:b0:83:2a:90:05:0a:
d0:73:77:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:22:52 2025 by rpki-client