Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/gQx0mx53Ej2qcLAqU0ytbPFFmXc.roa
File: gQx0mx53Ej2qcLAqU0ytbPFFmXc.roa (raw, json)
Hash identifier: 6Nrc1NDy5853haYtixZgi0oowDUNV1xFeiIeLXzCdbg=
Subject key identifier: 81:0C:74:9B:1E:77:12:3D:AA:70:B0:2A:53:4C:AD:6C:F1:45:99:77
Certificate issuer: /CN=aaca4f4a737ec09f335ac40633133328213efc3d
Certificate serial: 139280
Authority key identifier: AA:CA:4F:4A:73:7E:C0:9F:33:5A:C4:06:33:13:33:28:21:3E:FC:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qspPSnN-wJ8zWsQGMxMzKCE-_D0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/gQx0mx53Ej2qcLAqU0ytbPFFmXc.roa
Signing time: Wed 20 Apr 2022 12:11:45 +0000
ROA not before: Wed 20 Apr 2022 12:11:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205876
IP address blocks: 194.5.132.0/24 maxlen: 24
194.5.145.0/24 maxlen: 24
2a12:5040:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1282688 (0x139280)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaca4f4a737ec09f335ac40633133328213efc3d
Validity
Not Before: Apr 20 12:11:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=810c749b1e77123daa70b02a534cad6cf1459977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2f:f2:7f:84:59:4a:c1:51:41:13:ab:80:33:
62:a9:35:0f:f0:57:00:64:cb:5a:9c:f2:34:86:0d:
ad:4a:d5:31:93:81:98:e8:22:4a:f2:ce:6d:2f:97:
cf:60:cf:fd:ab:ca:dd:4f:ef:d6:bb:2b:c7:b0:f1:
ce:57:d0:62:1b:c9:2c:54:48:b5:1f:a4:d9:8f:73:
65:ea:8e:b5:fc:b1:6b:13:40:49:8a:11:ea:1e:89:
bf:c1:53:99:d6:59:3c:04:76:6a:82:10:17:29:2f:
8f:4e:24:8e:d5:5d:56:04:65:5e:f7:ab:b0:90:17:
de:fd:7c:76:a9:8d:ee:ca:a0:d7:32:ac:24:1e:55:
a6:5b:55:18:8c:c3:1f:0d:b5:3e:e9:80:33:bd:05:
21:63:da:a9:92:75:f9:b3:88:fb:18:05:7e:44:e8:
f0:76:00:f6:ff:73:b2:ce:aa:44:e6:e1:3b:7a:96:
6b:4a:00:19:17:24:07:46:b6:f2:72:09:2c:98:27:
4b:9f:d7:f6:26:a5:fd:14:88:b9:b9:f8:60:c3:71:
c3:b6:96:00:36:9b:14:29:f6:f7:23:f8:c4:b0:8f:
89:12:8e:32:07:20:24:22:76:d3:d0:8e:fe:c0:53:
75:33:27:c5:a0:56:24:7c:e6:67:69:ee:8d:f0:a0:
4c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0C:74:9B:1E:77:12:3D:AA:70:B0:2A:53:4C:AD:6C:F1:45:99:77
X509v3 Authority Key Identifier:
keyid:AA:CA:4F:4A:73:7E:C0:9F:33:5A:C4:06:33:13:33:28:21:3E:FC:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qspPSnN-wJ8zWsQGMxMzKCE-_D0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/gQx0mx53Ej2qcLAqU0ytbPFFmXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/qspPSnN-wJ8zWsQGMxMzKCE-_D0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.132.0/24
194.5.145.0/24
IPv6:
2a12:5040:1::/48
Signature Algorithm: sha256WithRSAEncryption
cc:8d:6b:bb:4e:0c:06:b4:4d:9a:7e:22:a9:5f:5a:34:b9:99:
f4:dd:a7:46:0f:8f:7d:9d:75:c0:32:9d:18:e6:dc:dd:b4:36:
0d:88:c2:32:9e:85:41:b9:83:a8:20:ed:b8:bf:79:71:32:a7:
6d:6b:4b:34:d3:c3:ae:33:e4:fb:e6:7b:a1:ac:9a:ae:e6:40:
67:e3:a1:59:e9:8f:e6:df:54:1a:35:fd:a3:35:f0:3b:3f:38:
6b:1a:27:3d:0b:6b:9c:ee:c2:a4:c6:6e:de:66:55:6b:28:77:
e0:4a:61:b6:d0:b3:90:8f:ea:fa:59:c2:f7:c9:c7:28:dc:57:
ef:6a:41:0f:ac:cf:af:84:7e:10:90:28:95:09:b2:58:dc:d6:
66:05:a1:22:d7:a6:30:eb:9d:68:93:ff:24:4d:af:fd:52:eb:
2f:e6:79:1b:32:90:f0:ba:b1:cb:f5:7b:31:c6:ef:21:8a:d5:
ec:11:fe:c7:74:53:02:49:15:58:d4:cb:14:79:40:35:84:8a:
6b:42:5f:45:06:b5:46:c4:0c:d0:b4:78:6e:0f:5a:cf:33:8e:
62:ea:a3:c9:a3:fc:08:1f:25:4e:a4:bb:f0:89:3d:b9:62:ba:
57:88:1e:16:20:af:96:91:15:6e:bc:f3:1c:e6:29:5c:a3:43:
fe:db:1e:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:14:44 2025 by rpki-client