Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/QMvKwdhWLMdivwdmL2GoW0RcG8Q.roa
File: QMvKwdhWLMdivwdmL2GoW0RcG8Q.roa (raw, json)
Hash identifier: vQYO6//H9aUdocDlamXatphS39qcBpTrzNgRNMfB+Jo=
Subject key identifier: 40:CB:CA:C1:D8:56:2C:C7:62:BF:07:66:2F:61:A8:5B:44:5C:1B:C4
Certificate issuer: /CN=07d44a52778aa65f736e72436003f6654f268318
Certificate serial: 0EEDCF48
Authority key identifier: 07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/QMvKwdhWLMdivwdmL2GoW0RcG8Q.roa
Signing time: Sat 01 Jan 2022 14:06:32 +0000
ROA not before: Sat 01 Jan 2022 14:06:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20523
IP address blocks: 193.224.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250466120 (0xeedcf48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d44a52778aa65f736e72436003f6654f268318
Validity
Not Before: Jan 1 14:06:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40cbcac1d8562cc762bf07662f61a85b445c1bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:58:21:a2:60:0c:a6:b8:65:46:6f:43:d9:c7:
f6:f5:ea:28:78:5b:ae:f7:52:32:31:34:86:32:7d:
0b:ea:b2:8b:0a:9e:88:ba:aa:ae:a1:bf:d9:51:d9:
4a:0f:b4:7f:6d:44:17:e3:4c:ad:05:7a:77:15:4a:
27:71:19:95:28:dd:4c:8c:6c:07:39:a0:13:b8:56:
ff:b0:40:2b:53:e4:50:3d:41:95:10:1a:ad:45:ce:
28:d1:35:4f:4c:c1:bc:54:56:7d:fc:62:58:a3:14:
10:18:f2:3a:8d:40:92:3e:1f:dc:f2:dd:15:c8:ab:
9b:35:6d:5b:72:b6:f6:fd:39:0b:eb:d7:51:35:d9:
04:a1:ba:1a:22:1b:91:45:9d:03:10:9d:3e:04:fa:
15:e9:7c:58:67:b0:00:d9:9b:d7:3a:06:25:6b:f4:
a5:53:da:3a:25:0e:5d:90:2b:4a:e4:2e:f7:54:c3:
41:df:e2:fc:57:b8:2a:e5:87:c0:84:a1:55:80:dd:
30:12:da:fc:1c:9f:b8:ae:ad:b1:ae:9f:0b:9c:97:
1c:83:6a:03:57:60:b0:18:8f:d0:c9:9a:13:f0:26:
53:d2:b9:52:08:4b:bd:b1:ff:c7:cd:7c:b5:03:1a:
6a:f4:c6:a5:f6:d4:d0:db:83:a5:3c:d9:d3:2b:17:
ef:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:CB:CA:C1:D8:56:2C:C7:62:BF:07:66:2F:61:A8:5B:44:5C:1B:C4
X509v3 Authority Key Identifier:
keyid:07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/QMvKwdhWLMdivwdmL2GoW0RcG8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/B9RKUneKpl9zbnJDYAP2ZU8mgxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.224.239.0/24
Signature Algorithm: sha256WithRSAEncryption
49:5f:00:2e:f4:23:db:38:ba:c6:7d:d6:58:69:be:62:2b:9f:
1c:61:63:5d:e1:7a:1e:89:ee:a2:cb:ba:de:a8:74:fe:19:b1:
26:07:b9:8e:c2:20:27:62:b0:f6:b9:7f:9e:54:dc:63:8b:b6:
e4:b4:b1:84:0d:9a:e4:b2:24:20:fb:44:3d:27:49:25:bb:83:
68:e1:78:a9:5d:f8:de:ca:5c:c7:91:ba:38:2a:07:27:e4:43:
51:67:04:f6:f2:e7:c6:b0:84:60:34:d3:55:bd:bf:81:50:1e:
8a:c6:46:45:6c:59:a4:1a:12:d7:69:3a:57:d6:bb:04:f1:c3:
34:ca:e4:2c:f4:7a:df:ab:23:51:12:99:86:e0:16:ae:e4:31:
f9:4f:f7:89:09:61:59:86:56:85:02:65:5b:d0:15:72:70:22:
2d:75:dc:33:0f:63:a1:9f:d8:92:2b:a4:de:42:f5:0a:71:97:
77:c1:29:61:a1:6e:f9:5d:c6:6a:9e:62:7d:0b:f2:1f:48:c4:
26:64:aa:5a:70:89:b7:12:c9:7f:c2:ba:f7:36:4c:f9:60:f3:
f5:82:ba:a9:ed:84:17:83:5d:4c:9d:b5:a3:7f:13:23:b7:a3:
dd:d9:16:48:16:af:5b:53:9f:2d:ed:af:fc:9b:71:ee:3e:0b:
f1:9e:39:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:23:17 2025 by rpki-client