Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/qb1a0nEjPCx_6TK6H40mG7sZKQg.roa
File: qb1a0nEjPCx_6TK6H40mG7sZKQg.roa (raw, json)
Hash identifier: YWl6wtpZQfP8Er8hU8edfSyHAosI+Eptc+u6ZhCMSCY=
Subject key identifier: A9:BD:5A:D2:71:23:3C:2C:7F:E9:32:BA:1F:8D:26:1B:BB:19:29:08
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 14F7B85E
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/qb1a0nEjPCx_6TK6H40mG7sZKQg.roa
Signing time: Sat 01 Jan 2022 13:06:27 +0000
ROA not before: Sat 01 Jan 2022 13:06:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199231
IP address blocks: 213.135.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351778910 (0x14f7b85e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 13:06:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9bd5ad271233c2c7fe932ba1f8d261bbb192908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:92:e8:fb:64:a8:69:ce:30:fc:2c:e0:cf:d2:
dd:94:97:cd:e5:14:8e:15:ee:92:4d:c8:aa:b2:30:
4e:93:5c:ab:15:7d:9e:26:8a:60:3f:2b:20:ff:74:
1a:93:46:3b:24:42:79:3e:1d:60:30:cc:f7:95:fb:
a0:76:43:7c:f2:d9:53:90:ef:1a:69:7a:df:83:7c:
14:38:e3:e8:2d:b8:38:ae:61:5d:7a:68:60:25:3e:
b9:5b:94:3b:3c:dd:ee:0a:1e:d3:f9:3d:4b:1e:8b:
ac:dd:8e:9d:ff:00:cd:34:8d:05:78:57:d3:5d:12:
22:0e:26:33:cb:65:58:71:95:68:26:2d:f4:da:2e:
ab:23:e0:23:72:8c:f4:06:16:99:75:ff:2a:1c:ab:
5b:2e:03:61:27:a6:28:4a:1d:2a:77:6e:d0:96:ac:
8a:2d:e3:24:10:6f:a4:6d:8f:28:58:52:8b:19:3e:
70:e6:00:92:58:81:d4:59:f3:aa:18:72:ac:2d:7d:
48:4e:c6:c9:44:6e:25:6a:38:ed:6f:3f:5c:56:a7:
de:b3:a1:88:51:b5:53:f7:34:8a:15:ff:fe:f5:a3:
6a:c1:f5:ba:d5:74:9a:2a:bd:6f:fd:a3:cc:80:d2:
fd:57:5b:c8:39:92:26:e9:60:42:af:43:37:50:aa:
b0:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:BD:5A:D2:71:23:3C:2C:7F:E9:32:BA:1F:8D:26:1B:BB:19:29:08
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/qb1a0nEjPCx_6TK6H40mG7sZKQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.135.92.0/24
Signature Algorithm: sha256WithRSAEncryption
81:a3:d7:36:79:7b:bc:32:84:86:13:b6:e1:c4:d8:d8:59:25:
aa:f3:84:b0:88:20:7b:3e:36:76:2f:aa:67:73:75:37:1a:6c:
aa:81:65:75:75:df:ea:2d:8a:d3:4c:0b:37:55:0d:85:14:94:
4e:d2:73:e4:b0:8a:9d:1c:db:21:ba:d7:e1:6a:9c:b7:cf:5a:
ac:82:eb:56:91:05:b5:72:e0:ee:e0:e2:0f:f9:d7:94:ea:fb:
53:72:c0:56:1d:b7:8a:6e:ae:27:b9:2c:d4:77:f2:eb:e5:d7:
10:24:79:dc:66:09:41:62:41:2e:ab:02:a4:c7:44:20:b7:7c:
bd:0b:c2:e5:ea:00:41:96:9e:a9:c3:4d:c4:9e:df:fe:6a:51:
be:40:d7:81:86:b6:fa:a6:26:d9:e7:72:fc:17:22:fa:2d:a1:
6e:ae:99:43:3f:e1:c7:ee:78:e5:5f:16:f4:65:7c:9b:65:c1:
67:c2:1d:ee:25:f4:20:f5:fb:c8:41:6b:03:c6:b4:2d:f6:e0:
91:b9:54:a1:d3:d2:eb:c9:07:3e:1b:af:1c:ec:08:8e:c7:8a:
3d:07:cb:aa:d4:e6:d3:b2:7a:5f:8a:4b:77:25:7f:89:d9:c1:
1d:33:f4:d4:2e:33:cf:f0:56:2b:0a:4c:e4:51:6c:a7:8b:5e:
5c:b3:16:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:28 2025 by rpki-client