Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/Q1HnscwzItUnigHh6qwUsVSz40g.roa
File: Q1HnscwzItUnigHh6qwUsVSz40g.roa (raw, json)
Hash identifier: tGv4Ckwgp5SCEt5KXUMtXLHqcHqKSbFBZwQsckV1WzA=
Subject key identifier: 43:51:E7:B1:CC:33:22:D5:27:8A:01:E1:EA:AC:14:B1:54:B3:E3:48
Certificate issuer: /CN=7c772e1e26e6c23f40ad6668c85fe950da1063fc
Certificate serial: 01856F26C390D14A515E7C6E4C7F9323760E
Authority key identifier: 7C:77:2E:1E:26:E6:C2:3F:40:AD:66:68:C8:5F:E9:50:DA:10:63:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fHcuHibmwj9ArWZoyF_pUNoQY_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/Q1HnscwzItUnigHh6qwUsVSz40g.roa
Signing time: Sun 01 Jan 2023 21:04:49 +0000
ROA not before: Sun 01 Jan 2023 21:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 185.135.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:c3:90:d1:4a:51:5e:7c:6e:4c:7f:93:23:76:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c772e1e26e6c23f40ad6668c85fe950da1063fc
Validity
Not Before: Jan 1 21:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4351e7b1cc3322d5278a01e1eaac14b154b3e348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e7:79:43:09:ca:02:95:28:dd:ba:0e:97:d6:
c2:89:2e:9e:c9:99:82:8c:cf:e0:5d:9b:d6:8e:51:
15:8d:51:62:90:9b:f2:d9:72:1d:1e:81:72:9c:be:
03:21:12:01:62:62:5a:6c:01:cd:4c:6f:88:4e:6f:
da:d9:a7:c6:9d:13:b5:01:f5:bb:25:8a:91:0a:f6:
1c:b6:5f:60:b1:81:43:c0:22:3e:b4:df:2d:f6:1b:
8c:43:83:16:d6:5a:19:69:31:03:34:1e:48:62:4f:
15:47:22:cd:fa:ff:23:9f:97:f6:8f:53:99:e4:d9:
b4:2c:fa:2b:94:d5:cd:89:ee:b4:ea:ef:9e:a7:b1:
16:14:8c:52:fb:97:c9:4e:d4:90:47:bd:28:a6:06:
fb:c5:45:b0:13:18:02:74:78:17:09:5b:ae:f8:88:
a9:1a:4e:26:f8:9a:d1:0f:9a:ad:bf:11:60:29:36:
65:d7:f6:82:40:0d:5c:a5:90:99:4b:da:11:5a:d6:
03:63:eb:28:3d:a6:aa:5a:67:ed:03:d1:14:82:ea:
5c:df:e2:e7:7e:2e:ab:8a:aa:c7:38:b3:6a:6c:bd:
e4:90:f6:8e:3a:fa:e7:a6:f8:7b:b9:98:10:1b:da:
d8:a9:3f:e2:a7:49:e7:ec:5a:36:0c:7a:77:29:39:
85:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:51:E7:B1:CC:33:22:D5:27:8A:01:E1:EA:AC:14:B1:54:B3:E3:48
X509v3 Authority Key Identifier:
keyid:7C:77:2E:1E:26:E6:C2:3F:40:AD:66:68:C8:5F:E9:50:DA:10:63:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fHcuHibmwj9ArWZoyF_pUNoQY_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/Q1HnscwzItUnigHh6qwUsVSz40g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/03731d-4ab0-4981-8a3a-23c47e9535e7/1/fHcuHibmwj9ArWZoyF_pUNoQY_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.188.0/24
Signature Algorithm: sha256WithRSAEncryption
24:ec:e6:63:48:33:c1:36:59:32:d6:a6:dd:73:45:42:7c:eb:
6e:e4:15:52:94:a1:b2:df:dd:82:7c:c9:ff:cd:9a:ca:6a:77:
f8:26:21:bb:c4:f2:85:22:53:12:3a:4c:76:38:ab:a7:15:f7:
b9:22:a9:48:57:5e:d7:26:5c:c2:88:ea:e0:9a:7d:09:e5:b4:
6a:fe:bf:76:1d:4a:1d:8a:3d:fc:e6:1f:b7:2e:ff:b7:36:2d:
1d:cd:89:95:6c:46:22:2b:dc:55:cb:d0:d2:ef:e6:9a:da:96:
14:e1:c8:9a:96:a3:69:54:2c:ec:2e:af:f1:3f:e6:0b:03:8b:
aa:6d:35:bb:d2:4f:35:b4:c0:55:0a:74:20:de:8a:c1:28:0f:
9e:78:63:2f:32:89:9c:95:34:5d:53:e1:33:a4:a0:07:73:06:
8b:79:99:07:c2:ea:dc:90:bf:a2:c8:6e:ee:a1:b9:b0:45:96:
7a:f0:6a:c0:c8:17:c5:0a:17:d5:1c:86:f5:6b:99:95:ca:d6:
e2:6c:44:a3:fa:09:f3:56:1b:5c:01:9e:50:f3:cb:34:cb:00:
52:8d:16:f8:80:9b:c4:6d:74:2e:87:7f:b4:93:c1:0f:5a:a0:
c8:64:e0:54:28:17:20:78:b0:a7:61:28:cc:34:b7:84:97:6f:
dd:79:9d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:38:26 2025 by rpki-client