Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/QrtqwK5v_YoKMSeqZ3v1Qc7D9W8.roa
File: QrtqwK5v_YoKMSeqZ3v1Qc7D9W8.roa (raw, json)
Hash identifier: Jvhcee6Od729vxs0Pl7exbkBV9cVKZAErGovSc5jQ28=
Subject key identifier: 42:BB:6A:C0:AE:6F:FD:8A:0A:31:27:AA:67:7B:F5:41:CE:C3:F5:6F
Certificate issuer: /CN=baaad08f36cfbc00053a5ee3d5abb7a3117c3f8a
Certificate serial: D18E
Authority key identifier: BA:AA:D0:8F:36:CF:BC:00:05:3A:5E:E3:D5:AB:B7:A3:11:7C:3F:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqrQjzbPvAAFOl7j1au3oxF8P4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/QrtqwK5v_YoKMSeqZ3v1Qc7D9W8.roa
Signing time: Tue 15 Mar 2022 13:13:50 +0000
ROA not before: Tue 15 Mar 2022 13:13:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 195.78.50.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53646 (0xd18e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaad08f36cfbc00053a5ee3d5abb7a3117c3f8a
Validity
Not Before: Mar 15 13:13:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42bb6ac0ae6ffd8a0a3127aa677bf541cec3f56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d8:13:d7:38:82:26:27:51:fb:a7:3d:41:05:
34:1a:1b:1a:7a:61:81:6b:e7:54:99:3e:7a:f3:70:
80:e4:ce:1f:c4:88:40:1f:f8:3a:12:3f:64:b1:d3:
fa:f6:61:c0:24:22:16:84:7e:fc:7b:59:b8:5c:16:
11:fe:b9:fb:85:da:cd:fd:2c:e7:a2:6d:90:a5:d9:
17:fe:3b:a2:cf:cf:af:cb:ae:01:f6:67:b1:e9:a3:
5f:2c:21:27:8d:44:54:61:e5:7d:fc:00:b5:9d:2e:
aa:e0:40:10:2b:85:09:01:41:8d:aa:85:59:0f:62:
3e:e5:a0:c9:e0:1d:64:d8:9a:7c:c3:fc:b2:50:82:
8f:f4:d8:0a:97:0f:0e:72:81:76:b1:99:0f:69:42:
4a:a7:2e:3d:45:4b:8f:61:04:a4:5b:60:1e:2d:a4:
d1:da:0d:32:be:91:aa:f8:ad:63:bb:2b:38:ee:ef:
52:2d:76:fe:8f:34:23:7c:6b:30:93:58:18:be:c2:
ec:6e:16:1a:97:de:35:6b:73:7b:9d:7a:43:19:ce:
fc:2e:83:05:68:d5:3e:02:97:b2:e4:a5:0b:15:aa:
ae:2c:61:f9:63:7e:03:d0:61:0f:8f:13:5b:f2:9f:
b0:90:6e:fd:b3:1f:12:af:6b:b3:f4:7a:00:ae:df:
91:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:BB:6A:C0:AE:6F:FD:8A:0A:31:27:AA:67:7B:F5:41:CE:C3:F5:6F
X509v3 Authority Key Identifier:
keyid:BA:AA:D0:8F:36:CF:BC:00:05:3A:5E:E3:D5:AB:B7:A3:11:7C:3F:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqrQjzbPvAAFOl7j1au3oxF8P4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/QrtqwK5v_YoKMSeqZ3v1Qc7D9W8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/uqrQjzbPvAAFOl7j1au3oxF8P4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.78.50.0/23
Signature Algorithm: sha256WithRSAEncryption
56:95:7c:35:e0:ce:cf:24:c0:83:f5:de:27:be:96:c3:a8:fd:
03:f4:15:08:d1:11:c6:aa:b0:18:74:2f:2e:31:48:93:18:b0:
36:48:57:9e:e4:c0:cd:e6:e2:cb:ee:82:81:99:d3:41:74:e1:
80:8e:9e:27:a9:12:76:e8:73:fc:b8:cb:97:5c:03:54:46:9a:
70:ef:28:85:8d:9b:13:a4:d8:80:44:2f:51:98:18:ac:f1:83:
0e:48:96:13:5a:0b:bf:31:27:4b:b2:b5:82:7b:7f:ee:b9:7a:
61:7a:bf:80:0c:9f:66:75:ad:ae:f0:f4:01:d2:c7:3f:a8:3a:
61:78:85:bc:12:3a:65:05:b7:48:23:77:78:c3:89:df:b1:18:
3a:c6:62:db:67:8d:e4:9b:98:31:6a:dd:ba:c5:87:c3:40:f7:
fa:d7:10:7b:6e:a0:ce:ef:10:04:07:c5:00:52:c7:6c:f6:00:
3a:0c:bd:e4:fb:a8:c1:88:94:c4:f0:0c:36:6e:41:c9:5e:65:
e5:87:ac:e8:91:64:3f:82:0c:c5:20:00:37:dc:6d:e9:98:36:
81:8f:18:88:ee:9e:c3:f5:b8:c2:a7:47:49:a7:17:12:72:95:
c3:7e:2f:52:27:d0:de:31:1a:41:0d:3b:53:26:cf:e4:78:09:
f2:99:22:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:35 2025 by rpki-client