Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/qTluJLzMVKZvhNze_7QL2LWJi80.roa
File: qTluJLzMVKZvhNze_7QL2LWJi80.roa (raw, json)
Hash identifier: QdGaXie/+3hxL+MFFCn25PkytTPBzdz8vTAhl/Dq02E=
Subject key identifier: A9:39:6E:24:BC:CC:54:A6:6F:84:DC:DE:FF:B4:0B:D8:B5:89:8B:CD
Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Certificate serial: 018571F0F199AD85BC444C37619EF910456D
Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/qTluJLzMVKZvhNze_7QL2LWJi80.roa
Signing time: Mon 02 Jan 2023 10:04:53 +0000
ROA not before: Mon 02 Jan 2023 10:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 185.150.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f0:f1:99:ad:85:bc:44:4c:37:61:9e:f9:10:45:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e
Validity
Not Before: Jan 2 10:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9396e24bccc54a66f84dcdeffb40bd8b5898bcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:75:f2:61:2d:80:1e:0e:28:b6:9b:fb:3f:f2:
38:46:3f:bb:a6:6f:3d:5b:18:4b:43:ec:ba:02:ee:
41:d0:06:1b:62:b8:a9:65:d8:ec:3f:d2:48:35:34:
6b:13:53:2d:32:e9:ee:30:03:9c:36:81:9e:0f:90:
38:0a:16:6f:58:25:44:00:af:0f:5c:93:ac:cf:e7:
e5:41:0b:86:f7:0f:e3:cd:57:9c:5e:78:a6:13:ad:
cd:83:09:46:0b:91:1b:55:84:a9:4e:3b:e8:d6:de:
45:42:55:32:aa:83:7c:fe:21:34:8f:67:e0:96:f2:
9d:a4:3d:b7:37:ca:7a:77:05:a8:39:d6:ef:e4:2b:
f0:0d:df:73:89:3b:c3:9b:94:0d:91:76:c9:f8:03:
fb:b0:48:ce:f8:6a:8d:d1:0a:3b:6f:5b:02:be:3a:
7d:98:67:e0:1c:eb:57:fc:fe:7e:ce:c1:2a:8a:6e:
57:68:1f:42:7c:b7:e7:6d:ed:f7:0e:8c:74:7c:c2:
a7:c2:9e:bd:18:bc:a3:11:fb:f7:1d:29:00:76:b3:
dc:32:b6:34:51:21:7b:e1:95:d7:aa:1c:12:27:d3:
c9:72:53:4f:2b:12:af:bc:3a:e7:1c:3c:ce:67:17:
2c:ab:ab:80:db:c8:63:5c:56:a0:9f:c4:d7:8e:b8:
ae:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:39:6E:24:BC:CC:54:A6:6F:84:DC:DE:FF:B4:0B:D8:B5:89:8B:CD
X509v3 Authority Key Identifier:
keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/qTluJLzMVKZvhNze_7QL2LWJi80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.204.0/24
Signature Algorithm: sha256WithRSAEncryption
82:1a:14:ef:59:e7:35:e8:0f:ba:58:e1:0c:af:a5:6b:a3:95:
ba:6e:87:78:ab:b0:90:49:5c:22:24:4e:66:2c:f1:8b:cf:52:
80:8e:d7:cb:67:76:17:df:0e:88:a5:be:43:8c:99:30:a5:dd:
2b:6a:ee:37:cd:94:1d:ca:66:e3:49:a0:de:85:ea:12:7f:55:
e8:20:4e:31:a0:77:9f:b6:ee:26:3c:bc:09:38:1b:a2:31:2c:
84:84:c8:ad:98:57:57:bd:ae:3a:c2:b3:48:80:65:9b:1c:98:
79:31:a8:ad:3d:f1:11:21:d6:5e:85:4e:59:ea:7b:65:13:0a:
5b:5c:0d:8d:94:f3:26:e0:3f:cb:9e:2a:3d:23:6b:c6:30:31:
4b:1c:72:29:55:e9:06:11:30:32:0c:5d:05:af:be:6b:4a:1b:
1d:12:24:e5:4e:c0:3a:9f:3d:76:cc:80:d9:72:33:0d:a2:ba:
ec:41:c0:53:d4:a8:86:0b:19:4d:0c:d8:a7:64:9d:69:1c:ec:
b9:f5:ae:fd:d1:88:3f:3d:db:e0:09:d9:46:53:ec:31:c4:5c:
0b:9f:66:1a:e2:4a:d7:f9:82:1a:79:4b:c7:f4:7b:41:b3:4f:
83:4b:5f:16:94:20:38:d3:f5:b0:77:3f:92:ac:aa:e5:4f:86:
d2:14:60:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:50 2025 by rpki-client