Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/bq7URM2qnxPPng12ECBlco8buC4.roa
File: bq7URM2qnxPPng12ECBlco8buC4.roa (raw, json)
Hash identifier: 3kS/biYpGbKKu1cVrpyn4NIwOJl0aNx145bF7a6wW9g=
Subject key identifier: 6E:AE:D4:44:CD:AA:9F:13:CF:9E:0D:76:10:20:65:72:8F:1B:B8:2E
Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Certificate serial: 04010E63
Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/bq7URM2qnxPPng12ECBlco8buC4.roa
Signing time: Sat 01 Jan 2022 01:52:29 +0000
ROA not before: Sat 01 Jan 2022 01:52:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48698
IP address blocks: 94.155.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67178083 (0x4010e63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Validity
Not Before: Jan 1 01:52:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6eaed444cdaa9f13cf9e0d76102065728f1bb82e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bd:ae:53:1f:0e:40:0d:42:51:92:a8:8e:47:
a3:c1:10:59:5b:26:9a:13:f8:46:f0:17:e6:31:3d:
b8:01:6a:78:f1:99:a0:bc:0d:aa:a8:4b:e1:3b:33:
d9:ec:c9:ea:43:f5:b5:51:ae:7b:c1:e3:69:a4:1a:
85:b1:fe:07:44:47:b3:ff:c3:92:f6:e8:04:3d:46:
f6:8b:ee:53:00:0c:98:88:3e:82:c6:c6:86:11:1e:
03:26:d7:c6:7a:a5:49:80:aa:0f:11:93:cc:85:cb:
92:48:62:46:e8:43:05:5b:8a:ab:c9:c7:e5:56:23:
89:c1:5d:bd:2e:ef:51:ae:09:ea:d5:91:5d:4f:a8:
48:b4:7e:23:67:45:fc:c2:80:46:df:f4:ed:92:b7:
9e:bb:37:ee:2e:f9:23:63:0b:6b:58:f7:65:8c:da:
2b:0b:74:60:bf:d1:25:1d:0f:05:bb:4d:8d:e6:d3:
b9:bb:b3:30:90:ab:3c:69:c8:d0:b4:23:f3:73:8e:
b4:d1:c9:51:92:ca:5d:e1:20:98:9b:96:20:73:15:
67:40:13:1c:a1:73:6a:fc:ac:8a:94:f7:49:f9:be:
1b:76:af:55:84:76:74:66:91:12:d7:6c:b0:a8:f5:
05:f2:49:ba:8c:64:c8:88:d9:b9:b7:2a:c7:39:ce:
31:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:AE:D4:44:CD:AA:9F:13:CF:9E:0D:76:10:20:65:72:8F:1B:B8:2E
X509v3 Authority Key Identifier:
keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/bq7URM2qnxPPng12ECBlco8buC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.155.53.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:02:28:8e:33:6b:0f:f2:19:d9:19:e1:76:e2:80:63:ec:9b:
91:9a:1a:ae:83:7f:cb:01:18:72:dc:84:56:13:37:78:cc:14:
eb:53:bc:ff:19:06:26:c3:6f:b7:01:d6:fb:90:23:45:8f:a4:
87:cb:94:88:e6:79:d6:73:b1:fb:eb:ed:fd:c7:3c:dd:e6:ad:
94:bf:e2:1f:78:dc:90:38:66:53:f1:c2:b4:fd:41:2d:8b:ed:
df:c4:fb:6a:9f:28:16:fe:64:b8:e7:6b:dd:50:c3:22:c5:dc:
71:31:f7:f6:d8:1e:0c:58:48:ce:53:66:f6:44:a0:85:5f:fe:
24:ba:76:d2:97:d2:37:7f:df:4e:78:57:30:a3:85:4d:03:ed:
2d:28:db:67:0e:b4:1d:dd:06:09:25:a5:f0:da:d5:9a:d4:05:
67:31:9b:0d:61:a6:cd:79:62:84:5c:b0:57:f3:b2:41:10:5e:
77:1c:ee:1f:02:4e:c1:4d:20:a7:ba:c8:37:b1:fb:42:1b:aa:
41:f2:31:a0:78:85:8c:56:fa:90:30:ac:7a:31:3c:02:fb:59:
8d:d0:a7:5a:40:51:91:a6:40:6a:df:18:d2:2e:2c:b5:14:53:
24:d9:96:8f:7e:10:07:33:ba:21:d1:a0:9e:b7:35:6b:6f:1f:
0c:26:ce:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:05 2025 by rpki-client