Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/qaMnzgvLda6airGLJiiM1fQ4myY.roa
File: qaMnzgvLda6airGLJiiM1fQ4myY.roa (raw, json)
Hash identifier: l/lzeS3JTGUBwYvz7cBf1wjy0Ft9znLkRGzIj7vuebk=
Subject key identifier: A9:A3:27:CE:0B:CB:75:AE:9A:8A:B1:8B:26:28:8C:D5:F4:38:9B:26
Certificate issuer: /CN=509fe7e8b9de675913121e7ebb4226b62d03b1cb
Certificate serial: A0B57C
Authority key identifier: 50:9F:E7:E8:B9:DE:67:59:13:12:1E:7E:BB:42:26:B6:2D:03:B1:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJ_n6LneZ1kTEh5-u0Imti0Dscs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/qaMnzgvLda6airGLJiiM1fQ4myY.roa
Signing time: Tue 25 Jan 2022 07:14:16 +0000
ROA not before: Tue 25 Jan 2022 07:14:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25413
IP address blocks: 194.156.13.0/24 maxlen: 24
194.156.15.0/24 maxlen: 24
194.156.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10532220 (0xa0b57c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509fe7e8b9de675913121e7ebb4226b62d03b1cb
Validity
Not Before: Jan 25 07:14:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9a327ce0bcb75ae9a8ab18b26288cd5f4389b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3d:c8:77:97:72:e9:40:10:80:73:08:ab:f8:
09:d6:dd:48:08:42:a7:2c:5e:15:d6:d8:c4:32:00:
b1:5a:25:00:8b:97:c2:76:b0:86:21:86:45:34:92:
8f:e6:74:f6:d0:64:bf:16:80:6e:9a:bb:04:5e:e9:
49:f5:e5:c0:82:b1:af:f9:4a:ef:16:09:6c:62:e1:
b8:4f:b2:73:77:97:03:8b:cb:ca:12:f4:a8:07:4b:
3b:4d:72:8d:11:8a:42:30:1f:39:b4:bc:03:3d:38:
43:40:83:15:32:fa:d1:49:48:5f:18:19:d8:08:d7:
3f:e5:38:4a:12:3a:b1:e7:07:60:9f:57:50:cc:ee:
fa:f5:02:bd:67:90:27:e4:1e:6e:40:01:ce:a5:d3:
ba:4e:89:1e:06:89:a5:63:b5:5b:df:3e:66:e0:d5:
a5:c4:c1:49:c3:dd:90:42:46:7a:d6:73:21:e5:9d:
6f:fc:51:14:39:79:6c:2c:c5:f0:49:90:07:c2:1b:
10:39:28:3c:6c:31:2b:28:25:bd:22:1d:86:5b:62:
45:2c:fd:11:1e:12:79:b5:46:aa:7c:a6:71:a4:6f:
84:7e:76:2c:94:40:91:f5:8c:de:b3:1a:48:17:41:
ee:e5:6c:1e:ad:57:47:62:fe:fe:ee:dc:14:f4:30:
93:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A3:27:CE:0B:CB:75:AE:9A:8A:B1:8B:26:28:8C:D5:F4:38:9B:26
X509v3 Authority Key Identifier:
keyid:50:9F:E7:E8:B9:DE:67:59:13:12:1E:7E:BB:42:26:B6:2D:03:B1:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJ_n6LneZ1kTEh5-u0Imti0Dscs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/qaMnzgvLda6airGLJiiM1fQ4myY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/UJ_n6LneZ1kTEh5-u0Imti0Dscs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.12.0/23
194.156.15.0/24
Signature Algorithm: sha256WithRSAEncryption
24:59:a2:fb:e3:38:75:85:ff:b8:0d:49:74:10:fb:4d:75:4f:
be:9d:06:58:a6:e8:a7:de:ab:37:08:ca:fa:51:91:d2:ae:87:
95:8d:ce:69:35:3b:1a:03:0e:c3:9e:b4:73:5f:c7:ca:47:7a:
e3:32:18:b4:de:c3:ca:05:06:9e:33:56:46:b4:56:e5:0c:4b:
7e:af:32:f5:88:6f:7b:38:72:fb:23:f2:83:24:d9:2b:6f:db:
16:eb:a6:97:52:ba:57:9c:f5:d1:a6:57:2a:26:27:f2:6b:a9:
c1:57:61:e8:9e:cd:b2:10:70:1d:2c:22:11:fc:4d:ce:e3:d4:
4e:ec:83:35:31:b8:25:0c:d3:ad:cf:52:a5:fb:64:63:36:db:
d4:6d:58:67:e9:c0:e0:2d:e0:45:a3:8b:f7:97:c2:7a:ce:f7:
b4:96:52:52:4d:de:df:ba:87:ab:14:ed:46:4d:bd:06:e3:eb:
ee:38:e1:0d:09:7e:13:11:d4:3f:04:aa:98:b1:26:60:f1:48:
ea:5b:3b:43:3e:23:7c:ca:a9:26:12:06:d3:f8:91:8f:75:e3:
40:9e:3f:0f:e5:0d:61:b5:ef:39:e5:01:03:22:2a:37:7d:92:
5c:77:c1:96:79:3d:0d:a5:c7:d0:fd:eb:99:53:e3:0d:a5:2f:
f1:09:38:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:23 2025 by rpki-client