Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/cUQwFjij6MvwDiMDV6SKI_coqF4.roa
File: cUQwFjij6MvwDiMDV6SKI_coqF4.roa (raw, json)
Hash identifier: WuRucQ95IOuha7kmqaAVa8QoHKNIIPoAT/1cky6e39o=
Subject key identifier: 71:44:30:16:38:A3:E8:CB:F0:0E:23:03:57:A4:8A:23:F7:28:A8:5E
Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial: A4458D
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/cUQwFjij6MvwDiMDV6SKI_coqF4.roa
Signing time: Sat 01 Jan 2022 02:52:59 +0000
ROA not before: Sat 01 Jan 2022 02:52:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210874
IP address blocks: 45.10.100.0/22 maxlen: 22
2a0e:3700::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10765709 (0xa4458d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Validity
Not Before: Jan 1 02:52:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7144301638a3e8cbf00e230357a48a23f728a85e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0f:df:2d:2f:53:59:f6:85:25:36:f9:76:f3:
11:b7:ac:13:ba:9f:69:59:1e:0e:0c:8a:8d:3e:bd:
8b:e5:42:c4:1e:c9:f8:33:02:23:20:79:9c:33:ed:
89:f8:a7:86:4f:a1:76:dc:b3:e5:0e:77:5e:7e:50:
d9:7a:49:28:ab:0c:75:5b:70:76:ed:ba:94:ef:c0:
86:72:73:fb:98:5e:c3:81:21:11:04:23:2a:8a:70:
e4:39:f8:0e:33:34:df:a4:18:0d:93:5b:2f:d6:df:
40:bb:c9:c5:e6:c3:9f:4d:4e:7c:d2:1d:43:31:6b:
4e:fb:6f:63:03:9b:22:c6:69:26:6f:40:7f:bf:af:
1e:a9:dc:da:ef:de:8f:27:31:57:d2:94:a1:c8:26:
46:46:e3:75:f5:7c:af:53:2a:8f:13:34:82:27:af:
b8:0b:dc:79:99:08:ce:38:1d:bc:fe:29:0c:42:31:
4a:f3:05:a0:8d:75:7d:ac:ad:b7:a5:b5:0d:83:43:
53:a4:a8:d9:3f:1f:86:c8:1f:e0:74:93:1c:d8:c1:
0e:89:86:6b:04:c9:ed:c4:79:51:c1:89:4f:64:0f:
5c:a5:72:af:bd:ce:73:9f:a5:52:3d:fd:52:65:92:
21:a8:77:63:14:2a:76:c0:63:66:47:51:db:80:47:
95:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:44:30:16:38:A3:E8:CB:F0:0E:23:03:57:A4:8A:23:F7:28:A8:5E
X509v3 Authority Key Identifier:
keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/cUQwFjij6MvwDiMDV6SKI_coqF4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.100.0/22
IPv6:
2a0e:3700::/29
Signature Algorithm: sha256WithRSAEncryption
4a:15:fa:b6:39:00:6d:7d:b0:d9:de:67:6a:68:80:18:cf:59:
9a:69:38:9e:e0:f3:bb:4f:69:23:23:0b:ed:29:5e:55:44:bc:
13:14:d5:a3:af:12:b5:c2:75:bb:61:48:7e:b1:04:06:dc:2b:
7b:ed:cf:e8:87:cf:0b:9d:ab:49:09:b3:ac:da:3c:5f:b0:f5:
e7:04:03:99:22:0c:4a:b7:fd:01:61:39:f1:63:b6:a4:82:b9:
94:a6:89:c0:6f:67:a3:51:58:5e:2b:57:23:c4:16:22:01:2f:
46:83:ed:c0:7d:e2:ae:44:8c:74:0c:cb:4b:a3:91:c0:bb:52:
42:2e:e8:2c:02:f6:c3:ee:7f:bc:ff:c2:c1:13:38:82:78:9d:
59:fe:ea:35:a2:fe:3f:db:2b:b9:2c:8d:8e:ea:e1:b5:13:9a:
32:a6:7c:df:29:2b:b3:ed:25:70:53:4c:7d:e9:e3:e3:52:ce:
c0:76:ca:ae:ec:69:b5:66:84:51:06:20:e3:57:5d:fb:2c:4e:
d4:57:fd:9b:b2:f7:37:af:e1:98:60:6b:73:7b:75:71:94:7c:
ea:75:29:9a:28:13:54:bc:7a:ff:41:36:36:2b:6a:ff:f8:44:
5f:e7:96:75:0a:85:04:01:6a:c3:c9:59:5f:03:f5:69:2c:72:
ee:73:83:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:30 2025 by rpki-client