Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/3cb9d2-70ff-46d6-9c73-57586156354e/1/QGcS-SGKmuyxCgLbsRoQa4sJ9Z4.roa
File: QGcS-SGKmuyxCgLbsRoQa4sJ9Z4.roa (raw, json)
Hash identifier: /fKxrhjc5iIS6hd6out7naS4CdPnkx1bykJQtfiE9wc=
Subject key identifier: 40:67:12:F9:21:8A:9A:EC:B1:0A:02:DB:B1:1A:10:6B:8B:09:F5:9E
Certificate issuer: /CN=f261df44b346823cce8c6643b5fa6919afb23195
Certificate serial: 01B0E84F
Authority key identifier: F2:61:DF:44:B3:46:82:3C:CE:8C:66:43:B5:FA:69:19:AF:B2:31:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8mHfRLNGgjzOjGZDtfppGa-yMZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/3cb9d2-70ff-46d6-9c73-57586156354e/1/QGcS-SGKmuyxCgLbsRoQa4sJ9Z4.roa
Signing time: Sat 01 Jan 2022 16:06:39 +0000
ROA not before: Sat 01 Jan 2022 16:06:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56376
IP address blocks: 45.143.181.0/24 maxlen: 24
45.143.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28371023 (0x1b0e84f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f261df44b346823cce8c6643b5fa6919afb23195
Validity
Not Before: Jan 1 16:06:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=406712f9218a9aecb10a02dbb11a106b8b09f59e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:55:da:2c:16:dd:d9:e2:33:a1:a0:38:e9:7b:
f4:17:2c:27:a0:d1:5f:ed:7a:b9:78:95:59:5f:54:
0b:31:0a:ab:13:cf:71:4a:88:7b:1a:b6:96:75:89:
20:1e:af:e0:61:83:21:03:3e:f5:ae:80:6c:f8:6e:
01:04:2c:60:c3:d7:09:87:9f:59:f9:8a:19:f5:9a:
da:b5:00:a0:d8:1b:4b:c4:2d:74:51:b2:af:d8:41:
50:a6:0a:fd:01:39:b3:c0:a2:18:25:14:43:e7:20:
f1:ea:8a:0c:e6:d7:93:c7:ce:ad:f2:44:7d:c6:d1:
83:48:a3:c3:3b:a8:13:e4:25:b2:48:c1:73:85:ad:
19:3c:d2:9e:6b:55:97:35:ad:da:3d:b4:4f:a7:6d:
d1:8d:1b:3f:b1:d6:c8:d2:f2:ba:f5:d4:97:64:6c:
62:80:fb:ab:ce:04:22:5a:e2:8a:6d:56:00:59:81:
af:23:51:02:2d:f7:89:ce:4d:c5:56:27:3d:d8:8a:
b3:78:ef:6c:65:46:b1:72:4a:c2:9b:6b:c3:96:0c:
cf:b9:e5:78:a4:7d:01:ec:96:46:d9:03:ae:96:e0:
fa:54:a6:06:ea:24:fc:2e:e0:8d:41:a2:75:07:e6:
fd:23:2a:a5:e3:d1:7f:e2:95:53:e4:89:3d:ff:7a:
41:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:67:12:F9:21:8A:9A:EC:B1:0A:02:DB:B1:1A:10:6B:8B:09:F5:9E
X509v3 Authority Key Identifier:
keyid:F2:61:DF:44:B3:46:82:3C:CE:8C:66:43:B5:FA:69:19:AF:B2:31:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8mHfRLNGgjzOjGZDtfppGa-yMZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/3cb9d2-70ff-46d6-9c73-57586156354e/1/QGcS-SGKmuyxCgLbsRoQa4sJ9Z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/3cb9d2-70ff-46d6-9c73-57586156354e/1/8mHfRLNGgjzOjGZDtfppGa-yMZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.180.0/23
Signature Algorithm: sha256WithRSAEncryption
d9:53:bd:bc:a0:bb:58:14:ce:21:41:f4:ec:aa:5f:99:92:db:
aa:51:49:21:94:f4:ee:91:44:15:75:b5:e4:7d:59:b5:28:a6:
81:90:55:c8:12:54:7f:bc:d0:d3:4b:04:0a:ec:c1:7e:90:68:
2a:02:59:dc:d9:9b:a3:db:a8:96:33:ff:84:25:fb:9b:8a:17:
9d:92:49:e4:d9:ae:26:24:33:76:5e:82:69:42:19:f6:c1:65:
30:20:ce:c0:09:61:59:fd:b6:84:c9:5b:32:35:b9:68:9c:ac:
17:ce:c6:10:f0:da:38:f6:58:5d:42:3e:98:37:93:dd:61:52:
ec:5f:ed:fd:de:2f:50:bc:3f:8d:e4:49:cc:72:ed:2a:f6:36:
fd:69:c6:30:87:45:f8:e9:99:67:f7:f9:a1:d4:08:08:1a:66:
44:1d:a6:47:05:cf:b7:6f:98:c3:98:cb:cc:1a:e9:fb:86:83:
f9:22:61:14:d8:3f:c5:e1:27:50:ee:b1:95:a7:c8:fb:42:9f:
f5:66:9c:e3:9c:2e:e0:de:21:54:d8:ed:7a:75:08:2f:38:61:
f0:39:32:83:fe:bf:ed:b7:78:31:26:51:fc:93:53:c0:a5:93:
23:1b:56:3d:f2:39:84:54:c4:26:26:3e:06:c4:b8:f7:ec:a1:
f0:33:b7:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 00:07:30 2025 by rpki-client