Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/QS4VAlGcGmye3l22IfHz5bDEedI.roa
File: QS4VAlGcGmye3l22IfHz5bDEedI.roa (raw, json)
Hash identifier: S0EjuNkvEM5zx4zRgj1V5UOTY8kWI8HUIlwaQrgvXMo=
Subject key identifier: 41:2E:15:02:51:9C:1A:6C:9E:DE:5D:B6:21:F1:F3:E5:B0:C4:79:D2
Certificate issuer: /CN=2f814adc1d5209e098f078adbc856bad83b749c2
Certificate serial: 018573682D7E788AA23AD699A8368FA10224
Authority key identifier: 2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/QS4VAlGcGmye3l22IfHz5bDEedI.roa
Signing time: Mon 02 Jan 2023 16:54:45 +0000
ROA not before: Mon 02 Jan 2023 16:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205550
IP address blocks: 82.99.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:2d:7e:78:8a:a2:3a:d6:99:a8:36:8f:a1:02:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f814adc1d5209e098f078adbc856bad83b749c2
Validity
Not Before: Jan 2 16:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=412e1502519c1a6c9ede5db621f1f3e5b0c479d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:83:d1:86:40:5f:a2:14:42:d5:d6:ef:f6:12:
2a:fb:fd:20:73:10:36:79:48:4b:11:73:b5:ee:3e:
59:3d:dd:d6:a8:60:94:e8:f2:dc:ed:2c:88:c9:d6:
a4:c8:e7:d8:38:25:37:29:51:40:0f:75:7d:08:fb:
c1:92:af:ab:6a:63:90:2a:eb:c1:65:3c:ed:14:6b:
a7:18:0a:38:27:c8:34:b1:59:c9:94:32:99:02:fe:
e7:c3:36:f8:b3:1a:3c:11:d8:f8:4b:67:39:48:7a:
3d:ff:11:6d:be:6c:8e:6f:90:83:e6:5b:9e:dd:56:
8b:fe:10:cd:b8:20:38:e1:1a:74:e8:9c:90:e1:34:
b4:6a:39:10:dd:ae:a5:17:ad:24:60:3c:be:00:58:
cc:eb:72:8e:0b:93:a2:4f:74:e0:6e:4b:47:79:c8:
1c:a3:93:7b:b5:f0:c3:02:a4:16:b9:22:04:2e:17:
a1:e7:40:3c:d3:be:4e:a2:1e:0a:65:7b:f1:dd:e2:
fb:24:16:5a:2f:02:7c:fc:aa:d4:02:22:fc:aa:5c:
af:44:c3:e4:ed:46:b1:d3:6b:a8:77:19:46:08:32:
07:a1:06:82:29:c1:99:f1:f5:40:a4:1d:33:47:8b:
02:3d:74:8b:9a:6d:ec:3f:f3:13:7f:28:38:04:84:
bf:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2E:15:02:51:9C:1A:6C:9E:DE:5D:B6:21:F1:F3:E5:B0:C4:79:D2
X509v3 Authority Key Identifier:
keyid:2F:81:4A:DC:1D:52:09:E0:98:F0:78:AD:BC:85:6B:AD:83:B7:49:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L4FK3B1SCeCY8HitvIVrrYO3ScI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/QS4VAlGcGmye3l22IfHz5bDEedI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/13e12a-2bac-4752-997d-df86b6dd997c/1/L4FK3B1SCeCY8HitvIVrrYO3ScI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.99.224.0/24
Signature Algorithm: sha256WithRSAEncryption
60:07:5c:f8:b5:1f:86:77:37:57:a5:65:59:4f:ee:e9:39:46:
45:ae:02:44:01:00:12:0d:59:71:32:0d:89:a3:39:b0:fc:a2:
9c:ba:f4:64:91:a5:48:83:5c:bc:6e:e8:15:c5:39:ac:1d:21:
97:54:dc:4d:dc:f9:75:2b:54:1a:8d:bc:6e:a5:7c:33:87:f8:
f0:00:48:88:8d:4f:9c:2f:5c:ed:24:20:e9:8a:51:63:b9:e7:
56:eb:51:b1:95:76:3d:48:8c:fd:cf:ae:0f:d4:2d:5e:e6:06:
a7:f7:6a:04:e1:1b:e5:63:fc:ca:99:70:5c:60:3a:c9:a3:22:
b9:dc:36:1d:51:0a:0c:8d:65:d7:3b:61:31:20:9b:5f:d2:be:
cf:ff:89:c3:c7:bf:67:ba:b3:39:27:cc:08:1f:bf:a9:79:5b:
3e:1c:b3:c0:3b:2e:34:bd:1d:b6:00:a9:6e:57:78:53:0b:49:
0b:b4:57:39:0b:65:c5:79:1c:0e:5c:a1:4d:63:a9:20:29:69:
f6:21:80:6d:df:79:f8:8e:f8:d4:e2:c4:23:81:c2:80:cf:cc:
32:56:13:31:40:1d:36:29:6b:1f:47:07:9b:3f:bb:b0:37:0f:
09:00:fe:1e:7b:f2:31:28:29:45:dc:db:37:cf:b7:3f:4e:28:
85:3b:00:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:04:58 2025 by rpki-client