Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/quQxTKxRv2HufA6A4r9_CDuJtfc.roa
File: quQxTKxRv2HufA6A4r9_CDuJtfc.roa (raw, json)
Hash identifier: rI7/VVodF/Tp4rkGIwPMqE2tdqhzeClr1t20bNCv6q8=
Subject key identifier: AA:E4:31:4C:AC:51:BF:61:EE:7C:0E:80:E2:BF:7F:08:3B:89:B5:F7
Certificate issuer: /CN=c3c0591e2eb49d0559e6fce7ee2aa81f0f59ba6f
Certificate serial: 15CED36E
Authority key identifier: C3:C0:59:1E:2E:B4:9D:05:59:E6:FC:E7:EE:2A:A8:1F:0F:59:BA:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/quQxTKxRv2HufA6A4r9_CDuJtfc.roa
Signing time: Thu 16 Jun 2022 14:24:46 +0000
ROA not before: Thu 16 Jun 2022 14:24:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203523
IP address blocks: 185.122.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 365876078 (0x15ced36e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c0591e2eb49d0559e6fce7ee2aa81f0f59ba6f
Validity
Not Before: Jun 16 14:24:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aae4314cac51bf61ee7c0e80e2bf7f083b89b5f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:54:d2:df:20:cf:7b:1b:cf:a6:f3:52:d1:37:
12:bf:77:a4:b6:4c:82:03:4f:2f:ea:67:cd:9e:1f:
42:68:82:54:b6:66:76:b8:7c:8c:b5:ac:23:eb:43:
14:d0:63:a7:c0:27:5b:85:63:ec:7e:07:37:71:3a:
16:f3:9f:28:f0:09:30:74:7e:19:d4:af:40:52:46:
a0:1a:4d:3f:f1:ff:79:c6:8a:58:1b:96:b7:50:66:
f4:1a:39:4d:84:12:e0:cd:91:57:a0:f4:c3:a6:85:
45:07:b6:9c:15:e0:0e:f3:1a:79:bf:5a:95:b6:b9:
f0:39:44:f4:0a:5c:9c:ce:da:8c:d6:23:c0:1d:af:
07:13:38:ae:2c:06:2e:26:7e:55:23:90:80:9c:be:
b1:22:b0:e2:70:37:2c:fb:7a:30:9b:9a:df:9f:e1:
a6:cc:ca:cd:1b:04:27:34:e5:51:ea:4e:14:22:83:
a5:b2:ef:af:63:9c:e9:c0:9e:11:66:5f:4c:26:58:
db:42:f1:37:92:f4:59:bf:10:a6:a3:03:65:45:cd:
e6:82:4d:c0:dc:c1:b5:27:9a:4c:5e:50:3a:a4:fb:
a1:2a:a3:fd:a8:59:bd:2c:dd:8b:2b:cd:9a:90:aa:
ff:70:d2:50:22:2c:cf:1f:e0:25:0f:ab:16:cd:94:
74:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E4:31:4C:AC:51:BF:61:EE:7C:0E:80:E2:BF:7F:08:3B:89:B5:F7
X509v3 Authority Key Identifier:
keyid:C3:C0:59:1E:2E:B4:9D:05:59:E6:FC:E7:EE:2A:A8:1F:0F:59:BA:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8BZHi60nQVZ5vzn7iqoHw9Zum8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/quQxTKxRv2HufA6A4r9_CDuJtfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/4b8aab-2099-43af-b41d-e3407174663b/1/w8BZHi60nQVZ5vzn7iqoHw9Zum8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.220.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:a3:a7:2f:ec:66:91:c4:9f:e9:c5:f5:f2:5f:e9:48:eb:c8:
0f:1d:30:21:ca:23:60:77:8f:32:13:a3:d9:db:5a:11:a7:67:
28:24:77:d4:45:28:76:61:da:39:18:4d:7d:41:5b:17:ba:04:
3e:c1:12:80:13:c1:8c:06:45:94:66:b4:09:80:09:24:f4:f7:
9e:20:b4:87:43:90:f8:ac:6f:40:0d:22:37:e4:e6:a0:00:cf:
04:89:58:39:0c:1e:f3:15:83:0f:8d:50:36:6e:0a:62:6a:a7:
b3:f2:29:e4:93:a6:0d:2d:68:f8:8e:49:e6:ad:d2:e7:2d:50:
d3:ed:03:5d:67:99:be:29:8e:72:8b:c2:df:b9:f2:e2:b6:47:
cb:fc:5f:98:31:55:06:13:4c:fd:a2:80:2d:e2:ec:df:02:81:
be:68:84:37:61:9e:91:51:63:c6:9c:7f:27:ac:1d:09:54:50:
aa:ca:b4:bf:ac:59:cf:ca:b8:12:7f:c1:62:58:19:13:02:df:
35:08:4d:04:e7:48:9d:8c:c2:7a:b0:34:e0:0e:55:b6:88:ce:
f1:12:c5:69:f5:ac:fa:fe:04:80:cb:fb:fe:be:dc:3c:ff:6a:
16:c6:28:e5:40:8b:fd:f6:24:cc:94:9f:17:01:f8:4c:24:19:
4d:01:04:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 22:19:11 2025 by rpki-client