Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/QO08XF20P6SuBcJlyW3ORPB09h8.roa
File: QO08XF20P6SuBcJlyW3ORPB09h8.roa (raw, json)
Hash identifier: ekDX0DOkR1x9Wpd7Dgad0Gv+3IjzL4GiKUjKkVMwdrk=
Subject key identifier: 40:ED:3C:5C:5D:B4:3F:A4:AE:05:C2:65:C9:6D:CE:44:F0:74:F6:1F
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 5AC0
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/QO08XF20P6SuBcJlyW3ORPB09h8.roa
Signing time: Mon 25 Apr 2022 14:52:53 +0000
ROA not before: Mon 25 Apr 2022 14:52:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 193.0.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23232 (0x5ac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Apr 25 14:52:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=40ed3c5c5db43fa4ae05c265c96dce44f074f61f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:36:1f:33:d9:1b:f6:f9:1a:da:d0:97:34:09:
82:1c:50:ea:3c:c5:a2:31:66:fb:8d:d4:57:bb:5f:
4f:e4:20:70:c9:e4:2c:46:f1:18:e0:e2:f8:4e:2e:
2b:1b:bc:19:81:dd:48:8a:dc:aa:42:a3:88:dd:a2:
73:72:db:77:05:ff:62:f8:8b:42:4b:25:47:dc:03:
0f:61:43:73:65:cb:2c:b3:bf:15:b9:bc:be:bd:4d:
2b:8d:d0:c9:cf:c7:25:82:f0:48:ec:66:a8:5a:28:
4d:ae:70:48:cf:78:1a:5c:8e:5c:0a:25:18:48:b3:
47:0c:5e:8b:d0:e2:09:b3:3d:7a:45:b2:7f:9f:5b:
1e:89:b6:fe:f2:55:59:f9:19:93:fd:18:34:53:6c:
7b:2b:d9:59:b0:8c:0e:69:56:eb:ae:57:8c:f9:f1:
7c:26:d3:69:63:8c:9e:53:2a:c7:f3:fb:42:6b:3d:
30:40:13:34:9a:6f:77:69:79:4d:e9:fd:99:d4:c2:
5b:61:5e:dd:75:e0:48:ca:ce:61:f4:30:74:a5:9e:
61:1f:87:7a:42:f9:ef:51:4d:05:3a:da:ee:eb:ba:
fd:cb:72:eb:f0:5e:0b:6b:57:df:e2:7e:a6:7f:e5:
fb:43:07:ce:7c:51:10:d6:83:76:80:18:f3:99:46:
87:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:ED:3C:5C:5D:B4:3F:A4:AE:05:C2:65:C9:6D:CE:44:F0:74:F6:1F
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/QO08XF20P6SuBcJlyW3ORPB09h8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.159.0/24
Signature Algorithm: sha256WithRSAEncryption
38:5c:78:54:eb:aa:b8:fe:a4:9d:59:83:a3:be:2f:81:4b:11:
dd:47:e6:8b:67:29:35:34:d7:62:1a:b5:40:f0:4f:b1:c5:5f:
60:64:fb:88:01:1f:31:15:fb:f2:e7:b7:97:bc:5f:fa:41:08:
b9:07:93:bb:b3:ca:dc:28:5e:bd:56:22:23:26:d4:20:4f:1b:
ce:b4:9d:d7:a9:00:65:3f:53:ba:95:da:ea:33:f3:42:38:6f:
eb:cf:8a:cb:59:a0:23:17:8b:05:a9:e3:24:9e:38:48:0b:37:
a3:2d:48:94:87:1c:d7:96:70:17:07:02:37:70:66:fe:82:8c:
b1:34:12:41:2f:c7:7f:a4:86:72:c3:66:f0:e9:d0:36:50:65:
94:9d:5b:91:8b:fc:76:4d:b2:f8:28:8a:51:f2:cc:8e:30:81:
51:15:74:81:2c:33:2d:e9:59:cb:9f:21:34:87:9c:0f:4d:3d:
bb:1d:a2:ae:cb:36:7d:4b:00:c4:34:8b:31:c4:e5:57:d8:e8:
ff:28:6e:30:98:10:2b:d6:d9:d0:14:78:fc:f0:22:61:14:91:
87:fd:fb:02:d4:6e:f9:78:d2:bc:99:a1:40:04:c7:be:e8:11:
3d:47:1e:47:61:fd:95:e9:e6:07:be:65:ae:02:50:a9:f4:39:
62:75:c2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:49:41 2025 by rpki-client