Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/ZQeo-4gox_XQHJlRolE26kVmRHM.roa
File: ZQeo-4gox_XQHJlRolE26kVmRHM.roa (raw, json)
Hash identifier: slHMrNPXecznLkH+l9kfwjZiJeESSWoIfCzAn0fhcqI=
Subject key identifier: 65:07:A8:FB:88:28:C7:F5:D0:1C:99:51:A2:51:36:EA:45:66:44:73
Certificate issuer: /CN=5f92bff7a89a8590e6abbaec0282b0f24e0afeb2
Certificate serial: 050EF7F0
Authority key identifier: 5F:92:BF:F7:A8:9A:85:90:E6:AB:BA:EC:02:82:B0:F2:4E:0A:FE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5K_96iahZDmq7rsAoKw8k4K_rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/ZQeo-4gox_XQHJlRolE26kVmRHM.roa
Signing time: Sat 01 Jan 2022 12:56:35 +0000
ROA not before: Sat 01 Jan 2022 12:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41075
IP address blocks: 91.236.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84867056 (0x50ef7f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f92bff7a89a8590e6abbaec0282b0f24e0afeb2
Validity
Not Before: Jan 1 12:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6507a8fb8828c7f5d01c9951a25136ea45664473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1b:bd:35:80:a0:fe:44:0f:b0:e7:f8:27:8d:
2b:c3:4c:d1:b5:64:c7:38:16:d1:76:5e:08:6d:d7:
06:23:64:cc:14:81:b5:91:28:38:1d:d2:c6:41:18:
ca:71:73:cf:e7:ea:bb:a6:24:68:d8:9f:36:d0:64:
e3:37:90:6a:0f:e5:f6:b9:d5:f9:28:2f:4e:29:0a:
da:6d:d8:8d:b6:56:26:46:6e:0c:0e:c5:ed:3f:96:
6c:34:bf:42:01:aa:60:79:fb:39:2f:e4:7e:b0:5c:
b4:e6:73:b8:b1:a8:5e:97:a5:55:75:c2:af:a5:d7:
13:a3:6c:15:a5:81:b6:ee:43:82:0c:4f:8a:84:f5:
c2:47:d2:b7:74:bb:32:7f:bc:87:5c:a7:66:6a:3f:
b6:5b:5b:86:fd:10:c0:7b:c0:15:8f:13:20:bd:ab:
59:eb:52:bf:ff:9e:d3:f1:8b:c0:3d:03:e0:a0:81:
79:be:7e:46:99:a1:7e:0e:53:83:54:8d:fa:f4:0c:
8a:be:a7:02:df:9c:fd:80:de:fe:66:49:e3:a3:2c:
83:c1:33:77:27:96:b1:cd:17:22:32:dc:bb:39:e5:
9f:d0:7d:bd:f1:e8:ea:b6:39:27:0b:ed:f2:c5:94:
a0:49:e2:c7:00:82:63:45:f9:92:19:37:a5:1d:90:
40:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:07:A8:FB:88:28:C7:F5:D0:1C:99:51:A2:51:36:EA:45:66:44:73
X509v3 Authority Key Identifier:
keyid:5F:92:BF:F7:A8:9A:85:90:E6:AB:BA:EC:02:82:B0:F2:4E:0A:FE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5K_96iahZDmq7rsAoKw8k4K_rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/ZQeo-4gox_XQHJlRolE26kVmRHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/X5K_96iahZDmq7rsAoKw8k4K_rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.182.0/24
Signature Algorithm: sha256WithRSAEncryption
59:19:e0:cd:b7:1b:8e:e8:47:85:10:fd:df:cb:e2:87:28:c3:
7f:8e:63:6a:7d:ff:14:e5:c9:a0:97:17:bd:c7:f0:6e:1d:55:
9d:41:eb:93:39:83:12:76:ed:c8:e9:2d:77:fe:23:fb:b2:9d:
e9:39:b6:2d:2d:44:a5:3a:09:9a:94:b6:cf:c9:97:6d:f1:a6:
cf:44:c3:c0:05:62:65:c6:a8:9d:d9:80:08:fa:1d:0d:d8:03:
ff:f7:c8:01:27:35:90:3a:84:fd:82:d0:32:9e:5b:bc:97:6b:
23:eb:39:89:f6:9d:e1:03:26:22:21:eb:8b:33:d5:5d:49:7f:
ce:b8:79:ea:53:b2:19:9f:53:d7:42:9b:62:ca:8f:17:92:fd:
ed:bf:4d:52:2b:7a:4a:8b:64:31:2e:97:5d:f7:90:6c:d9:8f:
2c:bb:af:4b:25:ee:56:2b:99:c5:02:b7:96:99:ca:1c:79:42:
0d:67:7b:41:ea:b3:ea:9a:77:66:e2:ee:1f:30:80:9f:ae:f7:
f2:2e:2c:2f:79:54:33:fa:4e:9e:41:c5:cd:14:87:6b:22:17:
e5:ca:29:8a:fd:7f:e2:15:77:da:53:d0:44:9c:0e:14:ab:78:
04:a2:41:a8:42:e0:9f:f2:dd:51:ee:48:e2:88:79:29:18:f3:
8a:0c:1c:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:09:38 2025 by rpki-client