Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/5892d1-6f51-4cb3-93e2-0f0494ca6d2c/1/qRkjiDr4HplQnxswdvB47K9Dflo.roa
File: qRkjiDr4HplQnxswdvB47K9Dflo.roa (raw, json)
Hash identifier: SEf34P5w+HWfFHUnMbrsmMGUGyTig5c5hDYfpSwN2X4=
Subject key identifier: A9:19:23:88:3A:F8:1E:99:50:9F:1B:30:76:F0:78:EC:AF:43:7E:5A
Certificate issuer: /CN=94ca595385505455b8cb1d90e946ef7b0b6f5d3f
Certificate serial: 05A2B235
Authority key identifier: 94:CA:59:53:85:50:54:55:B8:CB:1D:90:E9:46:EF:7B:0B:6F:5D:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lMpZU4VQVFW4yx2Q6UbvewtvXT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/5892d1-6f51-4cb3-93e2-0f0494ca6d2c/1/qRkjiDr4HplQnxswdvB47K9Dflo.roa
Signing time: Tue 28 Jun 2022 09:46:02 +0000
ROA not before: Tue 28 Jun 2022 09:46:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212637
IP address blocks: 185.190.90.0/24 maxlen: 24
2a13:500::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94548533 (0x5a2b235)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94ca595385505455b8cb1d90e946ef7b0b6f5d3f
Validity
Not Before: Jun 28 09:46:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a91923883af81e99509f1b3076f078ecaf437e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8e:18:22:b6:4d:37:e4:8c:0f:3f:ed:8d:d3:
70:7d:64:00:6f:db:fe:19:b3:5c:f8:6c:44:e4:44:
e6:9a:28:d5:3a:29:fe:2e:9a:4f:d8:8a:c4:78:59:
4b:94:67:80:b2:5e:04:94:f0:41:6d:ee:56:6f:f7:
46:88:42:bc:f8:97:62:4f:9b:e2:06:a7:64:cb:c2:
7a:82:1d:9b:9f:ac:b1:ac:3d:73:e8:90:d5:a5:ef:
bb:1a:46:1b:a6:c5:66:28:05:a2:63:ed:7f:fb:62:
22:64:74:a3:c4:3e:00:3c:bd:b6:15:fe:96:08:6f:
77:cb:6b:ab:10:ee:b4:b2:a2:0e:79:9c:0d:c8:02:
7e:26:bc:e3:6c:af:d8:4d:c6:e5:8c:74:89:fb:a8:
b9:e1:c8:60:af:f2:38:b1:a8:a3:b1:49:2d:50:75:
57:84:41:c9:0b:c5:43:5c:68:23:ce:16:2f:eb:26:
15:8e:27:dc:c3:dc:e9:d6:2f:f6:b3:7d:d0:7b:72:
d2:63:e0:3a:c2:5b:7c:e1:b3:35:45:49:b8:96:b5:
c2:40:57:53:fa:30:90:e8:ed:23:69:83:5c:54:67:
0a:c9:7c:02:5d:05:4e:ef:bd:72:ca:5a:a3:ab:09:
54:9c:91:5e:95:e1:d2:e3:72:a1:71:9e:f8:3c:91:
80:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:19:23:88:3A:F8:1E:99:50:9F:1B:30:76:F0:78:EC:AF:43:7E:5A
X509v3 Authority Key Identifier:
keyid:94:CA:59:53:85:50:54:55:B8:CB:1D:90:E9:46:EF:7B:0B:6F:5D:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lMpZU4VQVFW4yx2Q6UbvewtvXT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/5892d1-6f51-4cb3-93e2-0f0494ca6d2c/1/qRkjiDr4HplQnxswdvB47K9Dflo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/5892d1-6f51-4cb3-93e2-0f0494ca6d2c/1/lMpZU4VQVFW4yx2Q6UbvewtvXT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.90.0/24
IPv6:
2a13:500::/32
Signature Algorithm: sha256WithRSAEncryption
8c:e9:42:22:f4:ea:5c:48:b0:70:63:cf:54:5e:86:fc:8e:49:
2f:f1:9a:f5:cf:29:0c:77:e2:0e:e4:5e:b2:c6:44:39:24:f4:
37:68:5b:6d:60:f5:20:59:d1:82:d7:80:9b:16:7b:36:a2:29:
89:5c:b7:a8:3b:19:df:47:89:17:75:1d:84:24:09:fd:a7:17:
fc:79:5a:0d:e8:44:81:0d:8b:4a:a7:30:2a:18:8d:2f:17:30:
77:d7:63:1f:68:ac:54:ba:94:c6:bb:99:87:a4:45:72:7d:28:
c6:a9:89:35:75:aa:54:f0:26:b5:00:64:c5:f8:d9:8f:0a:5d:
48:8d:ca:c2:5d:66:4f:d8:84:a8:c7:d3:8e:53:5b:b9:66:91:
18:13:7e:18:4c:e2:a2:f2:a9:0e:fd:df:4a:e8:04:86:4e:72:
3f:24:f3:9d:3f:45:36:ce:3a:b3:76:28:c6:40:08:ce:3a:90:
62:47:09:3e:49:a5:4d:ce:44:d4:ec:88:38:68:24:a9:34:17:
4e:0c:e2:ac:d9:d7:dc:2a:ff:1a:f7:be:00:f5:45:cf:07:3e:
19:28:cc:1a:44:92:31:cc:36:d3:da:04:f5:8b:03:4e:41:24:
b0:37:a6:01:06:34:67:51:dd:3b:6c:5c:c6:3f:f4:bf:10:05:
ca:5a:48:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:12 2025 by rpki-client