Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/4ad364-f991-4585-9047-11adc40e44ce/1/qrXfVw7bq00H3HCWHjcPb4kMEl0.roa
File: qrXfVw7bq00H3HCWHjcPb4kMEl0.roa (raw, json)
Hash identifier: ZPyegkG/HCLCQuYun/52x0tjWJw0f573njTD61R3cXY=
Subject key identifier: AA:B5:DF:57:0E:DB:AB:4D:07:DC:70:96:1E:37:0F:6F:89:0C:12:5D
Certificate issuer: /CN=3edd551d0a636db4b5077c648d9d87bdadaab81e
Certificate serial: 018466F8F6B8865C02FE43ED9EE4A143EB76
Authority key identifier: 3E:DD:55:1D:0A:63:6D:B4:B5:07:7C:64:8D:9D:87:BD:AD:AA:B8:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt1VHQpjbbS1B3xkjZ2Hva2quB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/4ad364-f991-4585-9047-11adc40e44ce/1/qrXfVw7bq00H3HCWHjcPb4kMEl0.roa
Signing time: Fri 11 Nov 2022 13:55:02 +0000
ROA not before: Fri 11 Nov 2022 13:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212445
IP address blocks: 193.162.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:66:f8:f6:b8:86:5c:02:fe:43:ed:9e:e4:a1:43:eb:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3edd551d0a636db4b5077c648d9d87bdadaab81e
Validity
Not Before: Nov 11 13:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aab5df570edbab4d07dc70961e370f6f890c125d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ad:e6:63:5d:86:4a:b8:02:f1:2f:34:b6:7a:
12:9e:d8:e9:a7:3f:4e:e2:8a:96:d2:8d:a7:cb:33:
56:43:e8:60:66:88:1b:b6:26:33:56:a5:6b:a5:bd:
08:a4:79:e4:58:de:f4:d8:a0:5c:67:5a:66:de:cc:
97:64:cb:f4:5f:e7:68:48:8c:81:95:c9:55:71:74:
4b:c1:20:a9:08:31:9f:20:5e:da:3b:6c:2d:f2:bc:
d7:1b:6a:24:b7:3d:49:83:f3:c2:f7:a7:3a:c4:ec:
d5:bb:e4:fd:5a:b0:6d:c7:30:36:00:56:9d:af:10:
a0:20:cd:1c:78:0a:19:f5:67:29:06:da:42:be:fb:
d3:28:14:2b:20:db:6f:61:be:a5:5e:d4:11:82:2a:
cd:f4:17:d8:cd:21:b4:5c:b3:95:ae:83:4a:c4:f8:
11:35:ce:77:2b:e1:21:ad:24:02:32:ed:ac:bb:45:
76:fb:48:0a:5d:ab:ac:db:4a:fc:7b:4c:ef:c9:77:
90:0a:ce:c1:b2:77:4a:76:5f:c0:ff:43:7a:12:d4:
27:cd:f9:10:1d:44:b2:89:a5:15:4d:2e:5d:e6:b5:
35:28:dc:62:44:bc:10:3a:18:98:bf:98:78:1d:74:
8b:59:92:0d:1f:2b:ce:09:41:9c:8d:43:d1:a4:93:
24:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B5:DF:57:0E:DB:AB:4D:07:DC:70:96:1E:37:0F:6F:89:0C:12:5D
X509v3 Authority Key Identifier:
keyid:3E:DD:55:1D:0A:63:6D:B4:B5:07:7C:64:8D:9D:87:BD:AD:AA:B8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt1VHQpjbbS1B3xkjZ2Hva2quB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/4ad364-f991-4585-9047-11adc40e44ce/1/qrXfVw7bq00H3HCWHjcPb4kMEl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/4ad364-f991-4585-9047-11adc40e44ce/1/Pt1VHQpjbbS1B3xkjZ2Hva2quB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.162.31.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d9:2c:10:f5:3b:74:f8:73:c9:cd:3e:34:13:29:88:88:2b:
eb:3b:6e:f4:7f:05:87:5d:7a:6c:ad:f2:c5:32:02:f0:1d:df:
f6:4d:65:c5:eb:92:88:86:aa:53:6c:bd:31:6d:f3:37:f3:2d:
17:09:88:28:ee:16:bb:5f:ed:cb:e9:e8:97:04:20:4e:13:5d:
6c:37:fe:af:a5:68:27:f7:45:ba:5f:86:a5:be:55:85:6e:ba:
40:63:92:f2:02:2c:1e:52:d7:22:fd:5c:93:b8:20:df:c6:00:
23:88:41:11:7f:4a:ff:79:18:14:37:e1:72:1f:18:dc:8f:c7:
34:2a:b8:6f:52:ee:84:e9:4d:e1:8e:93:b1:50:d0:cf:77:92:
43:dc:9c:cb:fc:9e:f6:dc:5b:5e:cd:4b:2a:9b:40:08:06:30:
e8:1c:e1:c5:9f:fd:f2:32:16:b6:ce:ca:37:04:1e:7b:6d:a9:
66:5d:2c:80:93:f0:51:4d:63:b1:6e:ab:95:d3:61:ef:45:6a:
c2:75:16:40:e9:be:59:b0:f5:4e:af:bf:50:b0:be:9a:db:2c:
7f:f1:e9:8c:5a:6e:f7:15:86:a9:ee:31:ff:df:f4:12:61:ae:
ec:83:8e:7c:bb:84:1f:a1:30:f9:fc:60:f9:ea:3f:df:39:d4:
4a:15:8b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 15:35:57 2025 by rpki-client