Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/QX6k1uG1N4wq882W9rPJ-nFHVno.roa
File: QX6k1uG1N4wq882W9rPJ-nFHVno.roa (raw, json)
Hash identifier: rX4+hsuO/3DcSxgIiaj4enk4/It3zngnjl9fTmZJN5g=
Subject key identifier: 41:7E:A4:D6:E1:B5:37:8C:2A:F3:CD:96:F6:B3:C9:FA:71:47:56:7A
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42FFD231
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/QX6k1uG1N4wq882W9rPJ-nFHVno.roa
Signing time: Mon 16 May 2022 08:19:32 +0000
ROA not before: Mon 16 May 2022 08:19:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39758
IP address blocks: 86.104.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1124061745 (0x42ffd231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 16 08:19:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=417ea4d6e1b5378c2af3cd96f6b3c9fa7147567a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:55:f8:ab:be:5e:98:99:a4:5c:f7:5b:28:9a:
b5:15:d5:f5:9e:02:82:d7:51:f7:10:4c:f5:ae:fa:
37:8a:c1:a2:fc:47:63:49:d1:48:f2:ad:19:4f:d7:
8f:e8:6a:94:9b:e4:0a:33:bc:5f:b9:47:12:58:d4:
ff:12:57:5d:7d:bf:ce:a0:76:63:6d:df:8e:e0:18:
cd:c0:c3:f0:ea:ff:1c:a6:74:32:01:ce:91:47:cc:
10:a6:ef:19:cc:13:7e:5c:3e:c5:b5:69:4d:92:cc:
14:ac:42:77:50:06:9d:3c:56:48:be:76:23:4d:17:
bb:fc:99:fb:f0:b2:4b:ed:59:ff:22:fc:a8:6b:d9:
c7:7b:5b:92:dd:01:94:e7:d5:53:81:d5:8b:59:25:
87:2a:28:65:2f:1c:54:56:0d:28:41:3c:03:14:f9:
8f:16:08:be:43:ce:2b:e2:16:4a:e4:42:82:cc:87:
1c:3f:89:a2:97:43:e4:50:3e:e8:74:b7:c9:74:c2:
59:49:8d:20:48:57:1d:4d:c1:e6:46:11:0c:eb:9a:
70:b5:b4:0b:bf:22:6c:f3:0e:c2:63:97:62:10:3f:
e5:b6:99:04:b5:8a:db:a4:e4:37:83:2d:a2:92:22:
4c:a8:28:fd:6a:93:4c:db:60:16:51:2b:57:e4:ff:
cb:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:7E:A4:D6:E1:B5:37:8C:2A:F3:CD:96:F6:B3:C9:FA:71:47:56:7A
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/QX6k1uG1N4wq882W9rPJ-nFHVno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.18.0/24
Signature Algorithm: sha256WithRSAEncryption
39:40:40:e1:51:99:b2:06:f9:01:48:b1:fd:fd:8f:62:a7:da:
f4:4e:87:40:d0:30:f2:a8:3f:40:b2:3b:61:1b:d5:63:49:8d:
fc:6e:85:ed:e8:02:9b:a9:32:a8:73:2c:32:ef:9a:b4:f3:d6:
01:03:93:a2:d7:f7:eb:7b:da:d0:4a:36:a9:41:e2:8a:7a:ab:
2e:38:13:46:cc:9a:8b:45:7f:9b:b2:90:e6:76:0f:0c:e5:cc:
04:2d:cc:e0:9f:4d:a2:81:da:0f:6f:cd:a3:59:72:a1:56:ab:
a5:6c:21:13:f1:86:04:04:29:70:ef:84:f1:a5:33:85:5c:cf:
5d:19:84:83:39:13:a7:a3:5c:f4:16:45:53:d7:aa:26:1e:5e:
4c:79:7d:6e:b9:88:9e:56:1b:90:24:cf:6c:87:e3:90:c7:d5:
45:c5:6b:52:05:91:68:f9:53:64:f8:a2:1e:22:33:f8:62:1a:
67:32:f2:76:be:2c:e9:65:0b:95:f5:40:31:d2:ad:d0:05:ea:
45:83:45:e4:2e:86:6d:ac:5c:5a:46:7a:84:20:e5:29:39:f6:
dd:85:fa:c1:14:9d:7a:11:a0:e0:82:8f:f3:a1:d4:e9:0d:a6:
ac:08:2b:ef:26:c0:ed:fb:7e:49:aa:bc:3d:45:28:22:1e:6f:
c5:21:50:75
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEQv/SMTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
OGU2MjYzNGUxYmQ1MTMzYTlkZTQ1MTJhZTk4Y2FkMWIyMjE5YjU5MB4XDTIyMDUx
NjA4MTkzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDE3ZWE0ZDZlMWI1
Mzc4YzJhZjNjZDk2ZjZiM2M5ZmE3MTQ3NTY3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAINV+Ku+XpiZpFz3WyiatRXV9Z4CgtdR9xBM9a76N4rBovxH
Y0nRSPKtGU/Xj+hqlJvkCjO8X7lHEljU/xJXXX2/zqB2Y23fjuAYzcDD8Or/HKZ0
MgHOkUfMEKbvGcwTflw+xbVpTZLMFKxCd1AGnTxWSL52I00Xu/yZ+/CyS+1Z/yL8
qGvZx3tbkt0BlOfVU4HVi1klhyooZS8cVFYNKEE8AxT5jxYIvkPOK+IWSuRCgsyH
HD+JopdD5FA+6HS3yXTCWUmNIEhXHU3B5kYRDOuacLW0C78ibPMOwmOXYhA/5baZ
BLWK26TkN4MtopIiTKgo/WqTTNtgFlErV+T/yz8CAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBRBfqTW4bU3jCrzzZb2s8n6cUdWejAfBgNVHSMEGDAWgBT45iY04b1RM6ne
RRKumMrRsiGbWTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzc4L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEv
MS9RWDZrMXVHMU40d3E4ODJXOXJQSi1uRkhWbm8ucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4
L2RhMzM5OC02Njk4LTQ1ZjItYmFhZS05MmUyNWZlMTYzMzEvMS8xLU9ZbU5PRzlV
VE9wM2tVU3JwakswYklobTFrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVmgSMA0GCSqGSIb3DQEBCwUA
A4IBAQA5QEDhUZmyBvkBSLH9/Y9ip9r0TodA0DDyqD9AsjthG9VjSY38boXt6AKb
qTKocywy75q089YBA5Oi1/fre9rQSjapQeKKeqsuOBNGzJqLRX+bspDmdg8M5cwE
Lczgn02igdoPb82jWXKhVqulbCET8YYEBClw74TxpTOFXM9dGYSDOROno1z0FkVT
16omHl5MeX1uuYieVhuQJM9sh+OQx9VFxWtSBZFo+VNk+KIeIjP4YhpnMvJ2vizp
ZQuV9UAx0q3QBepFg0XkLoZtrFxaRnqEIOUpOfbdhfrBFJ16EaDggo/zodTpDaas
CCvvJsDt+35Jqrw9RSgiHm/FIVB1
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:48 2025 by rpki-client