Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/fb8145-f6d8-42c3-a97d-80d35e9d39ea/1/qlzIo7ksO5Q_F47lEOhUuogor78.roa
File: qlzIo7ksO5Q_F47lEOhUuogor78.roa (raw, json)
Hash identifier: 927Tb5jJAy6u0RD2Ckt3/fBT3dynvkDBTL4dc2lKmCM=
Subject key identifier: AA:5C:C8:A3:B9:2C:3B:94:3F:17:8E:E5:10:E8:54:BA:88:28:AF:BF
Certificate issuer: /CN=2d55c4dd7f212fc4896bd0c971860c05b30eeb8d
Certificate serial: 01A68F40
Authority key identifier: 2D:55:C4:DD:7F:21:2F:C4:89:6B:D0:C9:71:86:0C:05:B3:0E:EB:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LVXE3X8hL8SJa9DJcYYMBbMO640.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/fb8145-f6d8-42c3-a97d-80d35e9d39ea/1/qlzIo7ksO5Q_F47lEOhUuogor78.roa
Signing time: Sat 01 Jan 2022 09:01:37 +0000
ROA not before: Sat 01 Jan 2022 09:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211127
IP address blocks: 45.142.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27692864 (0x1a68f40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d55c4dd7f212fc4896bd0c971860c05b30eeb8d
Validity
Not Before: Jan 1 09:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aa5cc8a3b92c3b943f178ee510e854ba8828afbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d5:92:86:cf:cc:86:c7:4f:14:89:2e:8a:1c:
40:d2:75:22:c2:81:31:09:22:8e:2d:06:c3:1e:bb:
ae:b9:06:2e:91:41:73:27:bf:7d:24:81:52:5c:69:
03:fb:a2:68:4e:16:65:cd:e5:62:9c:fc:90:c0:32:
2d:79:e8:db:e6:ac:37:8a:10:1f:31:c6:34:99:08:
cc:ec:f7:01:f4:2e:04:4b:05:4e:5f:ed:d8:f3:c5:
a7:01:63:c4:69:2f:ad:91:ec:2d:ef:76:1a:27:df:
b9:38:40:78:c1:df:2a:3b:a4:c1:95:a6:b1:22:fe:
3d:60:9e:8c:1a:6f:8a:e6:d7:1a:8d:66:82:96:f1:
05:29:06:b5:2c:1c:5f:b8:f1:98:dc:e6:c4:7e:fa:
f3:60:93:df:e4:ba:e8:37:e9:09:ce:66:fa:15:96:
f0:30:2e:c4:aa:22:f5:a1:e5:59:94:9c:9c:84:ee:
d0:a4:fc:df:5e:5c:48:7e:d5:ff:be:45:df:5d:85:
27:1c:83:9e:ec:70:fc:3c:23:9e:67:00:5b:a8:be:
8c:31:4b:57:2d:5c:68:77:45:2e:23:92:19:ab:a5:
ed:8a:7f:00:54:24:2e:52:ee:87:bd:1e:62:55:b4:
6c:ef:52:02:73:d5:4c:c5:61:95:d5:7f:1c:7d:50:
c5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:5C:C8:A3:B9:2C:3B:94:3F:17:8E:E5:10:E8:54:BA:88:28:AF:BF
X509v3 Authority Key Identifier:
keyid:2D:55:C4:DD:7F:21:2F:C4:89:6B:D0:C9:71:86:0C:05:B3:0E:EB:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LVXE3X8hL8SJa9DJcYYMBbMO640.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/fb8145-f6d8-42c3-a97d-80d35e9d39ea/1/qlzIo7ksO5Q_F47lEOhUuogor78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/fb8145-f6d8-42c3-a97d-80d35e9d39ea/1/LVXE3X8hL8SJa9DJcYYMBbMO640.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.13.0/24
Signature Algorithm: sha256WithRSAEncryption
26:19:d9:f0:6d:5d:b5:9f:2c:ee:56:02:cf:c8:ae:f4:94:e8:
64:a5:d7:8d:04:5a:90:ea:8f:7c:7f:35:05:40:d9:d8:b6:1a:
4d:aa:e5:b6:24:28:9d:bb:03:8c:18:bb:d5:1e:9d:00:74:b6:
4a:0e:e7:20:b1:c5:ba:ba:fb:de:bd:e2:b0:f7:3c:ee:ea:58:
34:95:cd:98:b5:74:08:fa:72:ac:5a:27:1b:6f:2f:a1:e9:66:
40:24:d4:bc:cc:73:b4:61:bc:07:ba:64:72:55:89:59:71:00:
bd:32:ee:24:74:74:6c:c3:00:d1:5d:08:4c:56:a4:f8:6c:92:
8d:6b:af:f7:33:a6:1d:a2:a4:d9:e5:ac:0b:7b:e1:0e:b7:c0:
62:b6:5f:c2:36:b3:6e:50:37:45:d4:48:3f:51:e0:d5:8c:c4:
5c:26:ba:6a:a9:35:ff:9b:6d:f1:86:ce:02:f8:a1:32:60:ab:
0a:92:2f:0e:0c:b5:21:28:c7:16:bc:ad:30:f0:04:f6:e9:0f:
f6:9b:f7:12:41:0a:8b:d0:d1:41:a2:de:26:e4:80:22:ce:c8:
53:ea:61:76:92:de:de:33:eb:11:32:1a:96:50:26:48:25:cf:
a8:f5:19:68:a0:8b:d0:22:6a:44:b8:75:e4:2a:86:48:23:84:
39:e1:20:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:26 2025 by rpki-client