Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d76585-95fc-4803-ba6e-75c0d78eb07d/1/cvqbgmME42l2TxlcTyjjhIseuvs.roa
File: cvqbgmME42l2TxlcTyjjhIseuvs.roa (raw, json)
Hash identifier: k3g07cpq27ffGahUS8bRhh9eVLbHoB4drByClyBNRv4=
Subject key identifier: 72:FA:9B:82:63:04:E3:69:76:4F:19:5C:4F:28:E3:84:8B:1E:BA:FB
Certificate issuer: /CN=13a8bfb3f54754bd329180e593750265ef7e3999
Certificate serial: 015FDC5E
Authority key identifier: 13:A8:BF:B3:F5:47:54:BD:32:91:80:E5:93:75:02:65:EF:7E:39:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E6i_s_VHVL0ykYDlk3UCZe9-OZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d76585-95fc-4803-ba6e-75c0d78eb07d/1/cvqbgmME42l2TxlcTyjjhIseuvs.roa
Signing time: Sat 01 Jan 2022 14:06:53 +0000
ROA not before: Sat 01 Jan 2022 14:06:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61271
IP address blocks: 46.18.109.0/24 maxlen: 24
2a11:8d00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23059550 (0x15fdc5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13a8bfb3f54754bd329180e593750265ef7e3999
Validity
Not Before: Jan 1 14:06:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72fa9b826304e369764f195c4f28e3848b1ebafb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2f:68:08:84:06:ed:7a:c0:ed:0c:df:18:84:
12:aa:fa:22:dd:ae:6b:f5:50:49:8d:01:fa:9b:26:
02:cc:53:63:27:db:c7:30:00:90:6c:fe:b3:5b:c2:
c9:28:0f:da:38:8a:3e:75:7a:a4:fe:4b:a4:37:35:
8d:e1:cd:bf:8d:a4:78:b3:a1:e2:59:5e:76:93:18:
7c:81:84:e8:9c:48:58:16:6a:a8:45:2d:6b:a2:0b:
93:47:ba:21:5e:1d:19:b4:38:c0:ec:0f:a9:4a:f0:
24:41:a3:ef:fb:f0:0d:23:b3:47:78:59:53:9f:03:
d7:cf:6e:a7:db:e5:ee:92:aa:dd:1e:4b:45:78:0c:
66:02:d8:5e:c8:8f:00:34:d6:9d:9e:2a:20:37:61:
3c:20:6f:4e:72:46:5c:99:63:a4:45:ba:20:7b:2d:
53:c3:c0:e9:7f:f0:91:08:7b:93:d9:4f:be:3c:f4:
88:fb:15:28:6b:9e:7c:95:26:6e:37:7d:33:bc:72:
48:01:b7:ab:46:ad:9e:3e:cf:79:41:42:53:cb:52:
04:83:bb:08:f3:7f:99:94:36:45:da:83:99:b4:41:
00:4b:78:1d:cd:2f:23:1f:d4:78:af:00:e9:d4:b7:
c6:d6:e8:e0:c1:2c:ef:18:0a:e9:de:83:16:5a:d3:
e9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:FA:9B:82:63:04:E3:69:76:4F:19:5C:4F:28:E3:84:8B:1E:BA:FB
X509v3 Authority Key Identifier:
keyid:13:A8:BF:B3:F5:47:54:BD:32:91:80:E5:93:75:02:65:EF:7E:39:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E6i_s_VHVL0ykYDlk3UCZe9-OZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d76585-95fc-4803-ba6e-75c0d78eb07d/1/cvqbgmME42l2TxlcTyjjhIseuvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d76585-95fc-4803-ba6e-75c0d78eb07d/1/E6i_s_VHVL0ykYDlk3UCZe9-OZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.109.0/24
IPv6:
2a11:8d00::/29
Signature Algorithm: sha256WithRSAEncryption
2a:85:c9:82:cf:9e:ab:0f:19:70:e1:9d:a3:57:5a:83:72:88:
ce:7f:45:1d:33:88:af:ec:c7:c6:35:33:a3:71:2f:c5:52:e5:
bf:52:80:0c:49:eb:76:e1:b8:56:4a:97:cf:2a:88:37:73:67:
d2:61:f1:81:cd:57:6c:dc:98:07:30:33:f5:91:f8:c0:fd:67:
dd:a6:a8:13:3a:c1:c6:e8:56:9e:0c:43:b0:9c:e9:2c:49:43:
e8:10:87:53:bf:a7:ea:48:7a:c0:e3:a1:74:27:18:78:e0:5f:
77:55:d8:31:ec:c0:c5:a5:78:6f:63:7a:cc:96:23:c2:63:90:
79:de:4d:06:a9:eb:14:64:a3:86:1c:62:98:35:77:81:c9:94:
1f:1e:30:55:d9:81:57:0c:5b:be:1f:5a:4a:42:40:3c:57:5a:
ae:24:3b:b5:ee:99:1b:de:87:1a:2a:b6:5f:28:3b:a9:19:af:
56:5f:68:af:45:b3:49:6a:b5:70:d2:5b:b4:ab:98:37:29:04:
f7:49:e4:33:89:f4:6e:06:4c:66:12:c3:89:55:bd:33:bd:a0:
bc:dc:70:5e:41:c3:cb:6f:83:9a:85:3b:3f:bc:5f:93:84:1f:
8c:e3:88:f3:9a:b0:4d:b8:77:59:53:69:92:12:1c:e8:be:98:
1a:fa:6c:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:20:10 2025 by rpki-client