Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/q4Q-pUKOeA6ZkqpL9bTV9algvS8.roa
File: q4Q-pUKOeA6ZkqpL9bTV9algvS8.roa (raw, json)
Hash identifier: /l33IwavC0ZKjr8nJRCR4U753xL+RlPotOWy/wQggYI=
Subject key identifier: AB:84:3E:A5:42:8E:78:0E:99:92:AA:4B:F5:B4:D5:F5:A9:60:BD:2F
Certificate issuer: /CN=0007534eb77caa836f8f118630164e0236e5fe86
Certificate serial: 0183754D10A4608665B80B7E87F07501758B
Authority key identifier: 00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/q4Q-pUKOeA6ZkqpL9bTV9algvS8.roa
Signing time: Sun 25 Sep 2022 15:38:48 +0000
ROA not before: Sun 25 Sep 2022 15:38:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197923
IP address blocks: 31.135.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:75:4d:10:a4:60:86:65:b8:0b:7e:87:f0:75:01:75:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0007534eb77caa836f8f118630164e0236e5fe86
Validity
Not Before: Sep 25 15:38:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab843ea5428e780e9992aa4bf5b4d5f5a960bd2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:14:35:a5:f2:50:59:0b:95:c7:99:43:e4:9c:
3e:ae:af:1e:d7:03:82:87:c0:03:ff:dd:3b:a0:4e:
5b:86:b7:ca:12:67:f0:26:2f:f8:84:55:01:37:e2:
9d:1f:c9:b2:b9:08:f5:de:aa:d0:28:9d:3f:ce:d9:
75:23:d4:34:bc:71:c4:36:00:3f:cc:5f:22:70:ad:
3a:11:c9:89:de:86:ba:9f:86:bb:5b:79:08:a6:cc:
6d:1e:00:4a:3c:39:08:3c:78:dd:07:61:5a:7d:16:
08:f6:c3:76:8d:74:35:ca:e7:03:55:e9:36:b7:90:
b0:e0:6c:45:34:ac:0a:72:48:58:8c:be:df:ea:4a:
b3:c0:b7:05:fb:e8:7e:a1:59:0b:45:cd:1c:15:fa:
5b:f5:42:f2:1c:8a:28:a4:82:02:09:1c:70:b8:69:
4f:53:56:1e:e4:4c:fa:90:db:20:d4:71:40:f4:f1:
6f:3d:2a:5a:99:54:03:e2:2d:1e:27:d9:cf:49:a4:
ff:6b:91:e2:91:0f:71:4d:83:15:21:2e:8d:b0:cf:
29:63:5a:c0:41:6c:c0:69:3e:fe:07:09:c3:30:e5:
c4:b6:e6:be:33:db:eb:11:4e:bd:23:13:d7:3c:45:
13:96:9e:8c:39:78:d7:29:37:c9:ba:1e:a5:f8:9f:
a5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:84:3E:A5:42:8E:78:0E:99:92:AA:4B:F5:B4:D5:F5:A9:60:BD:2F
X509v3 Authority Key Identifier:
keyid:00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/q4Q-pUKOeA6ZkqpL9bTV9algvS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.135.178.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:86:32:0c:bb:40:ac:6b:2a:49:57:53:00:71:60:a3:f2:ca:
d6:f2:1d:6b:aa:d4:b2:6a:a7:b7:52:cd:2c:6a:6f:49:33:c5:
ee:c6:00:60:79:c0:55:d8:0e:c2:a2:fe:cf:c6:2e:e6:37:9c:
ce:4a:47:64:ff:0f:1e:f7:88:ac:0d:63:5b:c9:fa:28:45:b0:
81:fc:bc:f2:90:33:07:99:82:67:57:72:b1:d2:69:eb:96:eb:
9c:ae:55:58:75:d2:4b:d8:90:25:22:f2:bb:1e:06:64:59:a2:
b7:30:4a:bd:03:54:00:f8:c4:d8:9d:5d:fa:d3:ff:f7:d4:5e:
cb:7a:87:8b:2c:2f:d0:96:11:63:88:cf:f6:1c:a7:42:a5:22:
5b:27:04:45:e4:b6:a2:ff:41:8b:66:af:e8:53:e9:37:3d:b6:
80:b4:79:51:ae:ed:03:ba:eb:a3:6b:a5:89:91:9b:88:23:25:
47:fd:d1:fe:70:45:e1:9f:95:01:1b:10:82:5b:e6:2e:67:b4:
94:42:bb:42:1e:5b:d8:29:e5:03:37:d1:3a:22:ce:81:71:2a:
d7:5b:87:50:c1:c8:1e:f6:33:45:e5:9c:58:44:b5:0e:2e:9b:
7e:6d:d9:d4:9a:89:a1:f8:7b:07:a0:96:e9:6d:82:3e:9c:4b:
02:62:7e:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:46 2025 by rpki-client