Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/6123c4-2bc5-4df9-ad13-e1d99b8706e4/1/QfYuhuwUnoHT9P1qfwtaRSuw99E.roa
File: QfYuhuwUnoHT9P1qfwtaRSuw99E.roa (raw, json)
Hash identifier: RSHA7SHZr5JDjhyIn2nr8X+FO4NAwxMIARPOAi4Ahe4=
Subject key identifier: 41:F6:2E:86:EC:14:9E:81:D3:F4:FD:6A:7F:0B:5A:45:2B:B0:F7:D1
Certificate issuer: /CN=1008ba5429a709bc58ecdbae3f17e1bc9d3a4d5c
Certificate serial: 10B54D45
Authority key identifier: 10:08:BA:54:29:A7:09:BC:58:EC:DB:AE:3F:17:E1:BC:9D:3A:4D:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EAi6VCmnCbxY7NuuPxfhvJ06TVw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/6123c4-2bc5-4df9-ad13-e1d99b8706e4/1/QfYuhuwUnoHT9P1qfwtaRSuw99E.roa
Signing time: Sat 01 Jan 2022 09:58:49 +0000
ROA not before: Sat 01 Jan 2022 09:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47688
IP address blocks: 185.142.226.0/23 maxlen: 24
2a07:3146::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280317253 (0x10b54d45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1008ba5429a709bc58ecdbae3f17e1bc9d3a4d5c
Validity
Not Before: Jan 1 09:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41f62e86ec149e81d3f4fd6a7f0b5a452bb0f7d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:73:47:b8:ff:3e:5e:9b:1c:54:45:a0:d1:32:
69:56:a2:c0:d0:0b:ac:ab:38:64:b0:93:a5:54:4a:
6a:c2:bd:d1:23:0a:37:5a:d7:6e:c0:e5:f6:58:f2:
6d:dc:f0:71:48:3b:63:3b:8c:d0:35:3a:a9:bc:80:
92:82:01:5b:6a:24:6d:56:b1:11:1d:19:38:44:60:
8a:fa:59:8c:12:2a:7f:b0:3a:7d:a8:8c:db:88:31:
aa:96:19:09:dd:ed:45:8e:25:40:ec:d5:75:c4:0c:
65:cf:76:71:f4:98:bf:60:f1:bb:f2:e0:b8:6f:6f:
4e:01:da:25:d5:63:5f:32:9b:ca:74:59:78:9d:d9:
b0:2e:e5:ce:b2:ea:fa:af:8a:eb:14:e8:57:e2:59:
19:8c:7c:24:83:74:f8:4d:62:41:d7:73:0a:59:c9:
92:40:16:2a:33:05:26:6a:3d:72:ce:fe:7f:8f:97:
32:48:1b:93:a4:0b:5f:a2:51:32:14:82:06:61:72:
98:c4:23:e6:d3:44:60:82:60:ea:7c:ee:fe:8d:59:
1e:1d:8e:0f:dc:83:d6:2b:ed:dd:98:66:6c:a1:c7:
96:58:7e:4f:93:12:b3:61:14:52:50:d5:d8:93:e4:
8a:94:e7:7d:12:ee:d3:70:7b:e8:46:0a:1e:fb:1f:
82:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F6:2E:86:EC:14:9E:81:D3:F4:FD:6A:7F:0B:5A:45:2B:B0:F7:D1
X509v3 Authority Key Identifier:
keyid:10:08:BA:54:29:A7:09:BC:58:EC:DB:AE:3F:17:E1:BC:9D:3A:4D:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EAi6VCmnCbxY7NuuPxfhvJ06TVw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6123c4-2bc5-4df9-ad13-e1d99b8706e4/1/QfYuhuwUnoHT9P1qfwtaRSuw99E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6123c4-2bc5-4df9-ad13-e1d99b8706e4/1/EAi6VCmnCbxY7NuuPxfhvJ06TVw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.142.226.0/23
IPv6:
2a07:3146::/32
Signature Algorithm: sha256WithRSAEncryption
6c:7b:8a:47:0c:73:6b:d3:73:5d:72:db:27:e8:73:2f:1d:b5:
05:5d:99:cf:15:1a:a4:ea:e4:f0:1a:75:1b:6b:39:bc:f8:43:
f7:36:ba:39:0a:8e:94:bc:d9:bd:19:0b:56:59:05:3a:64:cf:
b3:de:1f:35:1e:3a:eb:35:df:25:e8:6f:fc:ef:86:67:f7:66:
20:ca:1b:b0:c1:8e:00:70:0d:76:97:33:54:37:51:0d:7d:13:
8b:3c:0f:d2:57:3e:37:2f:6a:ab:88:c0:e1:fc:71:3b:02:13:
28:33:99:09:a8:b2:18:68:de:da:ce:d7:5a:49:fe:70:53:13:
65:c1:1b:4d:e2:96:0c:34:63:f5:8c:4e:9f:5f:9e:a5:f4:03:
4d:76:64:82:8f:28:e0:94:76:d0:ec:30:dc:83:0b:be:5e:5d:
54:df:47:5b:34:f2:6c:bb:af:db:4e:03:ca:c3:e0:45:a6:6b:
1e:90:a1:3a:dd:20:d2:53:69:43:47:55:ef:58:c3:e9:a2:1c:
16:19:72:7f:89:3b:80:e0:57:f2:56:df:23:17:bb:5c:0d:d1:
d8:69:b0:b8:7c:c3:34:9a:25:42:53:d0:12:6b:0e:e0:e5:16:
7f:85:0a:06:b8:34:11:07:d9:3d:02:f5:09:87:7d:fd:03:37:
76:2f:dd:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:58 2025 by rpki-client