Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/QRbpD5BW8cs49Op_BBgUHI6qaOI.roa
File: QRbpD5BW8cs49Op_BBgUHI6qaOI.roa (raw, json)
Hash identifier: lqsTuykT0XMEoNozEjV/xk053hGo99VgGMN5GkQh/DQ=
Subject key identifier: 41:16:E9:0F:90:56:F1:CB:38:F4:EA:7F:04:18:14:1C:8E:AA:68:E2
Certificate issuer: /CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Certificate serial: 018AD602E0F6017FD42C1B225C3A0C2153DB
Authority key identifier: F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/QRbpD5BW8cs49Op_BBgUHI6qaOI.roa
Signing time: Wed 27 Sep 2023 09:40:27 +0000
ROA not before: Wed 27 Sep 2023 09:40:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56902
IP address blocks: 45.159.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d6:02:e0:f6:01:7f:d4:2c:1b:22:5c:3a:0c:21:53:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8555a7883f92b9f9ba422a96b4e397bf5fb8fc7
Validity
Not Before: Sep 27 09:40:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4116e90f9056f1cb38f4ea7f0418141c8eaa68e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:6f:d4:8f:0b:48:e7:71:1d:ee:45:b8:b3:ca:
9a:42:27:e7:6a:c1:f0:db:ba:65:65:26:a1:f1:79:
1b:86:3f:08:dc:0f:c2:d8:f4:83:a9:1c:40:1f:ba:
14:2b:30:42:3f:16:23:8f:c8:7d:f5:aa:f4:bf:f8:
68:70:0a:22:6d:64:43:ab:53:04:f7:48:62:cb:9f:
6a:c1:cf:06:96:38:f3:69:6f:89:b3:14:42:f2:05:
91:6f:a5:d6:47:e8:95:d7:c5:48:b3:13:9a:84:cc:
d3:1e:33:81:b7:3a:8c:8c:77:18:12:39:6c:1a:f0:
50:b7:d3:94:76:3f:78:d0:42:5b:57:30:99:81:ee:
a2:ed:ff:4b:70:05:b7:fa:8e:dd:35:4c:cf:9b:87:
30:5e:64:0f:3e:38:76:53:1a:7b:d3:d1:2a:3f:67:
00:4e:9d:a8:40:5a:0c:80:74:c7:39:16:bd:af:1e:
26:35:20:ab:20:b8:b3:86:72:a9:35:86:7f:ff:96:
23:9f:91:27:50:3f:61:4d:7f:81:f0:e9:72:87:5b:
42:c3:8f:0c:79:50:48:2b:24:39:85:dd:37:c1:5c:
b0:c6:1e:bf:ad:bf:c4:b7:f5:84:77:5e:a5:fd:5a:
78:9e:00:c2:62:42:8e:97:a1:73:91:40:0b:96:09:
6f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:16:E9:0F:90:56:F1:CB:38:F4:EA:7F:04:18:14:1C:8E:AA:68:E2
X509v3 Authority Key Identifier:
keyid:F8:55:5A:78:83:F9:2B:9F:9B:A4:22:A9:6B:4E:39:7B:F5:FB:8F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-FVaeIP5K5-bpCKpa045e_X7j8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/QRbpD5BW8cs49Op_BBgUHI6qaOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/82445f-d1d7-46b0-af4f-766c06e5f075/1/1-FVaeIP5K5-bpCKpa045e_X7j8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.187.0/24
Signature Algorithm: sha256WithRSAEncryption
05:84:8e:bc:48:d0:6b:5b:57:d6:40:ec:d9:b8:be:07:71:ce:
29:5f:f1:96:d0:bf:b8:93:0c:d6:1a:a9:a8:f5:61:8a:32:81:
79:c2:67:98:a7:a1:39:30:b8:a8:da:33:00:46:b2:de:a5:aa:
6d:ad:65:86:85:2b:8e:15:45:10:ff:bb:b4:3a:75:ee:50:6a:
3e:50:03:c7:6a:16:d7:26:5c:16:94:df:85:23:df:04:44:47:
d1:89:b9:ae:e8:9e:77:9f:7e:72:49:67:ff:1a:d5:b5:8f:e7:
05:80:84:17:a5:bb:06:ac:a8:31:9c:a8:48:c9:2f:b7:35:a5:
3e:5c:23:26:91:7f:e5:f6:ec:84:a5:da:95:5d:f1:b6:bb:b1:
84:0c:28:df:ef:3c:1c:b7:f7:c3:5a:bc:fe:71:74:1c:be:29:
0c:ce:fc:96:10:f5:1f:40:8c:83:30:4d:a4:e3:d8:cb:bc:1d:
1b:14:56:dd:bc:7d:f9:02:93:76:e6:3f:38:10:f9:9e:5b:21:
14:22:3b:04:e8:14:e7:b9:d0:e7:13:7e:76:12:a6:9e:fe:43:
10:af:73:b3:a3:ac:9d:5c:4f:b0:c0:9f:9b:cd:92:19:4c:52:
ee:61:31:9e:85:80:ce:38:47:92:db:21:de:f1:99:83:ca:1e:
be:2c:8d:fa
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYrWAuD2AX/ULBsiXDoMIVPbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4NTU1YTc4ODNmOTJiOWY5YmE0MjJhOTZiNGUzOTdiZjVm
YjhmYzcwHhcNMjMwOTI3MDk0MDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTE2ZTkwZjkwNTZmMWNiMzhmNGVhN2YwNDE4MTQxYzhlYWE2OGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi2/UjwtI53Ed7kW4s8qaQifnasHw
27plZSah8Xkbhj8I3A/C2PSDqRxAH7oUKzBCPxYjj8h99ar0v/hocAoibWRDq1ME
90hiy59qwc8GljjzaW+JsxRC8gWRb6XWR+iV18VIsxOahMzTHjOBtzqMjHcYEjls
GvBQt9OUdj940EJbVzCZge6i7f9LcAW3+o7dNUzPm4cwXmQPPjh2Uxp709EqP2cA
Tp2oQFoMgHTHORa9rx4mNSCrILizhnKpNYZ//5Yjn5EnUD9hTX+B8Olyh1tCw48M
eVBIKyQ5hd03wVywxh6/rb/Et/WEd16l/Vp4ngDCYkKOl6FzkUALlglvwQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFEEW6Q+QVvHLOPTqfwQYFByOqmjiMB8GA1UdIwQY
MBaAFPhVWniD+Sufm6QiqWtOOXv1+4/HMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1GVmFlSVA1SzUtYnBDS3BhMDQ1ZV9YN2o4Yy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2IvODI0NDVmLWQxZDctNDZiMC1hZjRm
LTc2NmMwNmU1ZjA3NS8xL1FSYnBENUJXOGNzNDlPcF9CQmdVSEk2cWFPSS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvM2IvODI0NDVmLWQxZDctNDZiMC1hZjRmLTc2NmMwNmU1ZjA3
NS8xLzEtRlZhZUlQNUs1LWJwQ0twYTA0NWVfWDdqOGMuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtn7sw
DQYJKoZIhvcNAQELBQADggEBAAWEjrxI0GtbV9ZA7Nm4vgdxzilf8ZbQv7iTDNYa
qaj1YYoygXnCZ5inoTkwuKjaMwBGst6lqm2tZYaFK44VRRD/u7Q6de5Qaj5QA8dq
FtcmXBaU34Uj3wRER9GJua7onneffnJJZ/8a1bWP5wWAhBeluwasqDGcqEjJL7c1
pT5cIyaRf+X27ISl2pVd8ba7sYQMKN/vPBy398NavP5xdBy+KQzO/JYQ9R9AjIMw
TaTj2Mu8HRsUVt28ffkCk3bmPzgQ+Z5bIRQiOwToFOe50OcTfnYSpp7+QxCvc7Oj
rJ1cT7DAn5vNkhlMUu5hMZ6FgM44R5LbId7xmYPKHr4sjfo=
-----END CERTIFICATE-----
Generated at Tue Apr 15 08:00:52 2025 by rpki-client