Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/e57fb1-2d5a-4661-801d-0eb8f37a0179/1/erqVCwuS0kqE1Fb4IqulGuXy7xA.roa
File: erqVCwuS0kqE1Fb4IqulGuXy7xA.roa (raw, json)
Hash identifier: 26Tl/8m4DDM/X9+QUmVdMsN5lGzw2OF1J2+mg261TAc=
Subject key identifier: 7A:BA:95:0B:0B:92:D2:4A:84:D4:56:F8:22:AB:A5:1A:E5:F2:EF:10
Certificate issuer: /CN=aa7a7da1e223b1830a0b91b5d61c83ad260c111b
Certificate serial: 02BF5248
Authority key identifier: AA:7A:7D:A1:E2:23:B1:83:0A:0B:91:B5:D6:1C:83:AD:26:0C:11:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnp9oeIjsYMKC5G11hyDrSYMERs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/e57fb1-2d5a-4661-801d-0eb8f37a0179/1/erqVCwuS0kqE1Fb4IqulGuXy7xA.roa
Signing time: Sat 01 Jan 2022 04:01:29 +0000
ROA not before: Sat 01 Jan 2022 04:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41485
IP address blocks: 193.227.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46092872 (0x2bf5248)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa7a7da1e223b1830a0b91b5d61c83ad260c111b
Validity
Not Before: Jan 1 04:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7aba950b0b92d24a84d456f822aba51ae5f2ef10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:70:cd:f9:f2:db:b7:66:66:2c:7c:2c:ca:04:
1d:02:d7:60:e5:f0:83:f9:b2:2a:cf:f5:d9:68:a5:
37:fd:12:b3:63:57:21:c6:6d:fc:50:77:e6:7d:ef:
b6:45:dd:61:ba:d4:06:de:de:13:75:57:1e:9e:4a:
87:ab:ae:dc:a3:f8:06:68:38:36:67:71:10:6a:48:
c1:b9:c4:ac:8d:41:50:4f:aa:97:65:95:7e:ef:29:
9b:0b:df:dc:b4:5f:c2:35:ff:5a:f6:e0:c2:17:eb:
01:62:d8:be:e0:d3:f7:9b:25:b9:5e:9d:96:50:7d:
41:e4:9e:4c:26:b2:b5:74:a7:2b:6f:af:c9:4f:1e:
0a:c5:ad:3d:58:fe:03:1c:fd:54:cd:4b:cd:9a:dc:
26:b5:91:2a:f8:8c:2d:eb:c5:ca:94:26:5d:6f:38:
c0:74:54:87:f9:ed:45:0d:85:83:fa:71:34:e5:d7:
ef:54:2e:38:e5:b8:ba:61:65:c0:3c:2b:1f:e2:17:
12:92:47:3d:a3:de:e2:5e:e7:e0:b3:1e:62:60:2d:
e0:3f:9e:82:91:12:2c:30:98:75:3d:37:64:5f:4e:
ba:45:07:52:cd:87:1b:c5:58:28:f8:1a:8c:7d:09:
41:52:b8:4b:4e:f4:19:b5:c6:ee:cb:1a:36:28:1b:
e6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BA:95:0B:0B:92:D2:4A:84:D4:56:F8:22:AB:A5:1A:E5:F2:EF:10
X509v3 Authority Key Identifier:
keyid:AA:7A:7D:A1:E2:23:B1:83:0A:0B:91:B5:D6:1C:83:AD:26:0C:11:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnp9oeIjsYMKC5G11hyDrSYMERs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/e57fb1-2d5a-4661-801d-0eb8f37a0179/1/erqVCwuS0kqE1Fb4IqulGuXy7xA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/e57fb1-2d5a-4661-801d-0eb8f37a0179/1/qnp9oeIjsYMKC5G11hyDrSYMERs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.227.96.0/24
Signature Algorithm: sha256WithRSAEncryption
99:82:f8:e3:e2:49:34:53:85:7a:ee:3e:11:61:2d:e1:90:90:
de:02:19:e6:01:aa:95:2d:e3:a6:df:65:ed:8f:79:b8:46:58:
cd:cb:6d:95:0d:6f:5f:15:80:15:e9:a6:f3:49:9a:0e:a9:42:
40:57:82:d9:6c:e2:c3:c1:fb:5d:70:8c:53:79:1f:fe:62:9b:
33:9f:40:09:49:07:fa:40:01:e8:d6:53:3b:3f:d1:96:87:1d:
57:aa:9b:f5:6b:ec:b8:86:39:2b:1d:70:42:e5:77:8d:41:27:
7e:41:c5:74:75:f7:bd:f7:cc:e9:e3:b7:a2:e6:b9:bf:3b:0a:
44:38:d4:db:49:70:0a:a5:c2:04:c0:22:a6:44:3f:d3:15:52:
28:ee:14:bd:76:1c:67:cf:2f:0f:bc:f9:4b:f6:2c:51:65:29:
1c:90:b2:12:f3:88:39:f4:0b:6d:3f:ee:93:af:2c:84:6f:04:
ae:c3:ff:1a:ce:48:2b:4a:35:42:a6:6f:21:0c:fd:c2:53:e0:
b2:ad:01:a4:9d:60:99:61:56:c7:a5:d0:19:d8:2e:6f:99:2e:
a1:ff:24:53:ac:20:f5:24:05:80:7e:75:e6:03:bc:93:27:7e:
26:d8:f8:86:35:43:2e:b5:27:3d:4e:a9:25:64:50:a0:34:27:
66:e8:74:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:31:31 2025 by rpki-client