Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/q1t7NNHn4R9_ZoXAbDrNvRRLZJ4.roa
File: q1t7NNHn4R9_ZoXAbDrNvRRLZJ4.roa (raw, json)
Hash identifier: pK6GIQALihjxW6HEdqPIbE3wTJZZ7kLxqLCh/mEAd9w=
Subject key identifier: AB:5B:7B:34:D1:E7:E1:1F:7F:66:85:C0:6C:3A:CD:BD:14:4B:64:9E
Certificate issuer: /CN=13932782ee7758990404fa1ccfb09ec23a86123f
Certificate serial: 01845D9657F3986276C2A1DC2ED0BC431169
Authority key identifier: 13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/q1t7NNHn4R9_ZoXAbDrNvRRLZJ4.roa
Signing time: Wed 09 Nov 2022 18:10:44 +0000
ROA not before: Wed 09 Nov 2022 18:10:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25098
IP address blocks: 85.116.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5d:96:57:f3:98:62:76:c2:a1:dc:2e:d0:bc:43:11:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13932782ee7758990404fa1ccfb09ec23a86123f
Validity
Not Before: Nov 9 18:10:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab5b7b34d1e7e11f7f6685c06c3acdbd144b649e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4b:07:42:69:27:fa:09:f8:d3:1a:5b:78:b3:
d3:fb:9a:6a:5b:a3:6f:50:b2:83:cd:47:b6:66:88:
7d:b7:80:c2:2d:7c:e5:01:5a:22:d2:f6:fc:2c:5e:
9e:d6:f1:f8:20:d4:8b:78:25:15:99:58:d6:b0:07:
e0:4f:88:e0:7e:7c:22:91:dd:6b:03:ef:1c:b0:6a:
0b:04:54:da:e2:9e:e5:4d:76:ca:c2:d2:47:fe:6e:
53:57:50:92:c0:89:8a:29:eb:fe:dd:c1:9a:6b:ae:
2d:4a:67:66:c4:7d:a1:bb:8e:e6:34:78:12:1e:31:
46:49:5d:07:3c:ef:e5:8b:49:a4:66:a0:36:63:1a:
b5:70:62:1e:6f:4c:03:08:40:64:0b:35:e6:d4:01:
b2:2a:6b:3a:a7:af:dc:f1:ad:dd:bc:28:31:61:34:
eb:c9:b1:1c:ba:bf:55:32:c1:5c:fc:88:9f:4f:64:
3a:80:84:67:a8:63:65:ed:b2:ce:78:3c:fb:16:af:
0d:6d:07:30:3f:a9:ac:04:19:32:1d:2e:8c:f0:69:
3e:25:3d:54:ce:e5:8d:c7:7c:58:96:6d:2b:47:dd:
5a:2a:05:5d:de:0c:19:eb:76:41:5f:4a:3c:e1:6b:
15:bd:93:42:b9:0b:54:69:a8:ee:37:79:c0:f8:2a:
1b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5B:7B:34:D1:E7:E1:1F:7F:66:85:C0:6C:3A:CD:BD:14:4B:64:9E
X509v3 Authority Key Identifier:
keyid:13:93:27:82:EE:77:58:99:04:04:FA:1C:CF:B0:9E:C2:3A:86:12:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5Mngu53WJkEBPocz7CewjqGEj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/q1t7NNHn4R9_ZoXAbDrNvRRLZJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/828652-addf-4fe8-9fe6-4b1f61653f3d/1/E5Mngu53WJkEBPocz7CewjqGEj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.116.8.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:25:ab:e8:da:bd:0d:3e:16:c3:79:cd:8e:df:f8:69:af:e9:
de:02:8b:e6:2e:0e:01:26:f5:ab:6b:1b:26:29:e0:12:09:ff:
12:ac:bb:59:ff:b8:5d:de:19:52:5d:53:54:64:96:bf:fe:47:
ba:39:f9:b3:da:90:81:09:8c:c9:6f:13:1e:7d:0a:02:63:ae:
dd:67:20:b9:f9:3e:d5:6d:35:33:02:30:e6:38:b1:70:8d:23:
5e:77:34:fd:ca:ce:49:15:ab:01:3e:98:70:01:2e:4b:67:05:
ac:50:f0:26:64:cd:36:64:c7:b6:e1:d7:21:53:bd:f8:0a:69:
bb:ea:d2:11:11:f2:7b:7a:83:7f:30:41:0b:18:fb:54:66:15:
68:a5:47:e6:46:5e:7b:e3:ce:32:4b:bb:5d:67:29:93:44:f2:
49:1e:97:a1:f8:3e:87:e6:06:87:3c:e8:e4:4a:73:62:ee:95:
1f:2f:2f:91:f8:b6:e4:69:25:1b:02:bf:36:38:c8:be:16:e5:
de:de:91:a1:e6:92:93:d4:4a:d8:b8:87:14:f8:c6:ab:9d:2a:
b8:8d:aa:e6:9c:c7:de:a5:c9:43:42:c2:4d:c5:9c:6a:c4:dc:
e3:ff:76:ab:51:d3:30:6e:bb:15:81:3a:8d:1d:6f:0a:a7:66:
76:6b:ab:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:06 2025 by rpki-client