Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/QQpvvFuEyLsCYysOz84trd3H5Jo.roa
File: QQpvvFuEyLsCYysOz84trd3H5Jo.roa (raw, json)
Hash identifier: v2LkBpZ9EaJD+zF7PuP8GYZC1IqQAIVnYrYfR5h5sj0=
Subject key identifier: 41:0A:6F:BC:5B:84:C8:BB:02:63:2B:0E:CF:CE:2D:AD:DD:C7:E4:9A
Certificate issuer: /CN=465c62c6bcd4cfb8933bcb6a61cf7b3dad2fb118
Certificate serial: 0122FC
Authority key identifier: 46:5C:62:C6:BC:D4:CF:B8:93:3B:CB:6A:61:CF:7B:3D:AD:2F:B1:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RlxixrzUz7iTO8tqYc97Pa0vsRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/QQpvvFuEyLsCYysOz84trd3H5Jo.roa
Signing time: Thu 21 Apr 2022 15:26:20 +0000
ROA not before: Thu 21 Apr 2022 15:26:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16303
IP address blocks: 77.95.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74492 (0x122fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465c62c6bcd4cfb8933bcb6a61cf7b3dad2fb118
Validity
Not Before: Apr 21 15:26:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=410a6fbc5b84c8bb02632b0ecfce2dadddc7e49a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:f0:ef:ec:c7:46:a2:de:86:16:11:92:ce:
e0:45:44:88:7d:1f:e1:85:73:f8:47:a8:03:97:83:
86:5b:64:91:07:8a:d0:f6:96:0c:92:97:dd:bd:be:
1d:17:e1:fb:05:7b:76:db:9f:0d:b4:7f:de:85:25:
63:b6:75:08:21:1d:c9:77:7b:e3:bc:1f:92:26:92:
ef:68:fd:c6:73:c1:b6:4b:b7:c8:71:28:44:81:2d:
4c:43:cc:12:e5:1a:56:14:20:3c:73:a7:a4:26:69:
a0:e2:49:b0:0f:4c:37:5b:38:37:8c:1c:c3:93:ae:
31:c4:bd:49:f2:26:d3:71:ab:2f:7c:2c:42:83:3e:
3a:27:d4:f1:d3:5b:56:fe:90:1b:8c:b9:e4:e6:98:
ee:e6:19:59:6e:7c:82:d0:c6:40:0e:05:2f:9f:a4:
ec:0f:7d:c8:10:3d:a2:29:51:95:27:5b:13:71:c5:
ea:ac:cb:0e:10:5a:98:64:fa:ec:ec:5a:07:36:38:
c6:a4:5a:40:d0:b2:7c:63:b0:6b:57:24:55:49:08:
4f:15:d0:ea:23:ba:6f:fc:52:e9:55:14:34:ab:ca:
4c:47:83:ab:f6:63:d4:57:f2:66:57:7b:c0:58:2f:
a6:0b:5c:46:74:4d:91:d9:09:d7:94:2c:2c:aa:08:
ec:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:0A:6F:BC:5B:84:C8:BB:02:63:2B:0E:CF:CE:2D:AD:DD:C7:E4:9A
X509v3 Authority Key Identifier:
keyid:46:5C:62:C6:BC:D4:CF:B8:93:3B:CB:6A:61:CF:7B:3D:AD:2F:B1:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RlxixrzUz7iTO8tqYc97Pa0vsRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/QQpvvFuEyLsCYysOz84trd3H5Jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/49a221-67f5-4edd-b00d-4d2c4c5ad14e/1/RlxixrzUz7iTO8tqYc97Pa0vsRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.95.114.0/24
Signature Algorithm: sha256WithRSAEncryption
37:b4:68:17:53:28:59:0d:00:37:aa:80:83:b6:6b:42:20:15:
d1:3f:a4:a5:50:28:fc:f2:7f:0f:05:5f:5d:4f:3c:d3:45:43:
58:7b:b1:26:b0:97:94:c6:07:1f:d0:db:96:e3:98:b8:06:04:
7a:dd:33:57:dc:78:41:cd:2c:5b:b3:78:c7:2a:4c:7b:87:46:
91:a7:1e:28:76:8b:13:05:99:29:e9:c7:6b:d5:3e:ce:98:4b:
fe:f7:4a:32:77:6a:16:66:71:8b:78:e6:af:fb:39:c9:69:68:
98:66:eb:55:0a:cb:86:b6:13:3c:35:c5:2d:e5:64:fe:e9:c8:
f8:09:c9:10:31:f8:0d:53:cd:c7:24:e9:ff:e7:6c:01:04:a9:
98:7b:c5:76:df:e3:56:d5:f6:1c:90:10:93:ea:dc:37:2d:f2:
1f:12:39:6f:33:e5:45:59:84:d9:58:ba:d8:f4:1a:ea:6c:38:
11:65:fd:46:27:ad:df:40:d5:69:91:88:86:6f:9b:0e:dd:99:
3b:16:21:41:46:3f:ab:19:07:8b:1e:12:37:d3:bd:f9:f7:c8:
ff:fd:39:a1:1b:d3:4a:44:c6:39:cf:ca:9f:4b:e8:7a:fe:11:
6c:7a:d0:ca:e8:a9:2f:fd:14:d1:79:b5:cc:71:11:fd:d1:23:
0f:4a:46:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:48 2025 by rpki-client