Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/QOeNob9_EL-DLXRScOMcJYw3D6U.roa
File: QOeNob9_EL-DLXRScOMcJYw3D6U.roa (raw, json)
Hash identifier: 1IfTR6UTBpPg6E4sX3Ydsw/IZ2K3VsfI4noVa3cyfpk=
Subject key identifier: 40:E7:8D:A1:BF:7F:10:BF:83:2D:74:52:70:E3:1C:25:8C:37:0F:A5
Certificate issuer: /CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Certificate serial: 01CEF5E3
Authority key identifier: C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/QOeNob9_EL-DLXRScOMcJYw3D6U.roa
Signing time: Thu 16 Jun 2022 06:42:44 +0000
ROA not before: Thu 16 Jun 2022 06:42:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206618
IP address blocks: 194.114.80.0/23 maxlen: 23
194.114.85.0/24 maxlen: 24
193.23.96.0/24 maxlen: 24
194.114.96.0/24 maxlen: 24
194.114.96.0/23 maxlen: 23
194.114.96.0/22 maxlen: 22
194.114.94.0/23 maxlen: 23
194.114.98.0/23 maxlen: 23
194.114.97.0/24 maxlen: 24
194.114.100.0/22 maxlen: 22
194.114.104.0/21 maxlen: 21
194.114.104.0/24 maxlen: 24
143.163.67.0/24 maxlen: 24
194.114.112.0/22 maxlen: 22
143.163.66.0/24 maxlen: 24
143.163.66.0/23 maxlen: 23
194.114.116.0/22 maxlen: 22
194.114.125.0/24 maxlen: 24
194.114.126.0/24 maxlen: 24
194.114.32.0/23 maxlen: 23
194.114.40.0/23 maxlen: 23
143.163.1.0/24 maxlen: 24
194.114.44.0/22 maxlen: 22
194.114.48.0/21 maxlen: 21
143.163.8.0/24 maxlen: 24
143.163.12.0/22 maxlen: 22
194.114.56.0/22 maxlen: 22
143.163.16.0/23 maxlen: 23
194.114.61.0/24 maxlen: 24
194.114.64.0/23 maxlen: 23
143.163.21.0/24 maxlen: 24
194.114.62.0/23 maxlen: 23
194.114.62.0/24 maxlen: 24
143.163.22.0/24 maxlen: 24
194.114.63.0/24 maxlen: 24
194.114.66.0/23 maxlen: 23
194.114.70.0/23 maxlen: 23
194.114.74.0/24 maxlen: 24
194.114.78.0/23 maxlen: 23
194.114.77.0/24 maxlen: 24
2a01:4dc0::/42 maxlen: 42
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30340579 (0x1cef5e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7f04b78b2eedf998edd5cc1e88671c8d10f1865
Validity
Not Before: Jun 16 06:42:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40e78da1bf7f10bf832d745270e31c258c370fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3c:cf:bb:1c:10:c0:a7:db:2a:f1:9d:50:09:
dc:fc:9a:81:01:d5:9b:42:e4:b4:47:6e:e5:a6:19:
bf:99:a4:d2:04:c7:2f:ce:c6:96:09:f2:5c:4b:c2:
bf:db:6f:6e:25:56:22:3d:e7:71:2c:9e:9f:a1:3a:
cf:e4:f1:77:8e:46:fa:b8:23:5e:53:20:ab:06:c2:
b8:c5:f7:c1:84:e3:9c:29:e6:80:f2:16:8c:ae:7c:
d6:51:ae:26:8f:ee:d4:a0:89:fe:3c:2a:73:4f:06:
87:2b:10:7c:5d:04:97:a2:6c:d4:11:03:d1:76:af:
7f:42:f1:ec:8f:db:00:b6:e5:82:8f:8a:75:b7:c0:
db:41:a8:d3:36:5b:a6:99:d4:78:78:1c:b6:d7:a7:
d8:3a:10:49:45:70:27:b9:85:d6:16:33:48:15:16:
b6:e0:c9:ba:11:dd:98:03:a6:20:ee:91:ef:f5:86:
60:49:a6:e6:68:65:33:45:ea:33:59:12:2e:f8:31:
ec:26:e5:6f:6b:b3:50:c2:54:a5:88:c9:12:b7:2a:
54:58:55:6f:24:87:f8:53:26:95:dd:bd:4a:7b:e4:
88:7d:86:11:ad:91:6f:06:12:fa:a1:40:2a:1a:39:
85:a0:db:b1:c4:ee:36:9d:ee:99:47:5a:f4:e6:42:
dd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E7:8D:A1:BF:7F:10:BF:83:2D:74:52:70:E3:1C:25:8C:37:0F:A5
X509v3 Authority Key Identifier:
keyid:C7:F0:4B:78:B2:EE:DF:99:8E:DD:5C:C1:E8:86:71:C8:D1:0F:18:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x_BLeLLu35mO3VzB6IZxyNEPGGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/QOeNob9_EL-DLXRScOMcJYw3D6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/473924-6f99-473d-a077-f437839095d1/1/x_BLeLLu35mO3VzB6IZxyNEPGGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.163.1.0/24
143.163.8.0/24
143.163.12.0-143.163.17.255
143.163.21.0-143.163.22.255
143.163.66.0/23
193.23.96.0/24
194.114.32.0/23
194.114.40.0/23
194.114.44.0-194.114.59.255
194.114.61.0-194.114.67.255
194.114.70.0/23
194.114.74.0/24
194.114.77.0-194.114.81.255
194.114.85.0/24
194.114.94.0-194.114.119.255
194.114.125.0-194.114.126.255
IPv6:
2a01:4dc0::/42
Signature Algorithm: sha256WithRSAEncryption
07:f9:d4:ac:32:c9:84:4f:32:44:6b:16:2e:1a:ff:40:cd:10:
a2:a9:20:ab:66:c9:0d:ce:8e:c2:28:96:fa:c9:d4:05:37:da:
df:1c:65:4c:ce:c1:95:32:7c:10:45:f7:8f:e7:37:de:40:74:
5f:d2:cc:8d:21:f2:89:68:4f:be:bc:00:ba:0a:76:17:4f:1d:
34:71:2a:4a:8f:bf:a8:1b:57:05:aa:1e:32:4f:59:58:12:cb:
42:1d:af:15:e9:3f:33:06:e4:73:78:49:4f:36:e7:a0:37:52:
a8:ba:83:ae:67:33:cc:b7:45:e5:c9:e1:71:7c:1f:af:61:61:
9e:d1:8e:6f:bd:40:bf:b8:e6:94:23:0a:22:50:29:96:4e:9f:
63:39:2b:cd:73:fd:f8:b6:e9:39:f2:43:ae:05:3d:ca:69:5e:
ab:5e:76:a3:e7:7e:d9:1c:f5:38:21:28:23:b2:20:7d:10:93:
a1:f5:b4:67:04:de:4f:4e:f2:b5:7d:d8:5d:24:7e:b0:cd:67:
3b:51:77:a5:72:2c:c5:ba:ea:19:d7:9a:4b:63:1d:9b:95:88:
7b:80:7f:9b:3f:65:e8:de:d8:1b:fc:c4:68:ac:a0:c8:84:ee:
ad:ae:5b:ec:34:f2:88:2f:3b:99:d1:ee:af:93:a3:a8:16:05:
f0:ff:71:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:52:46 2025 by rpki-client