Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/756aeb-022e-4c98-8ddb-0e068c4970ff/1/QEQRSBLNwddGVDAD_MzdJcJ2gBE.roa
File: QEQRSBLNwddGVDAD_MzdJcJ2gBE.roa (raw, json)
Hash identifier: 3sTUgtkAzRP0hl/0HVF9teVqW8UKMYRgpgCBwbjVnKE=
Subject key identifier: 40:44:11:48:12:CD:C1:D7:46:54:30:03:FC:CC:DD:25:C2:76:80:11
Certificate issuer: /CN=542f094f0427b14f3499f7cdf61d883b0888628a
Certificate serial: 03A37F9D
Authority key identifier: 54:2F:09:4F:04:27:B1:4F:34:99:F7:CD:F6:1D:88:3B:08:88:62:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VC8JTwQnsU80mffN9h2IOwiIYoo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/756aeb-022e-4c98-8ddb-0e068c4970ff/1/QEQRSBLNwddGVDAD_MzdJcJ2gBE.roa
Signing time: Sat 01 Jan 2022 05:00:12 +0000
ROA not before: Sat 01 Jan 2022 05:00:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208963
IP address blocks: 45.13.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61046685 (0x3a37f9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=542f094f0427b14f3499f7cdf61d883b0888628a
Validity
Not Before: Jan 1 05:00:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4044114812cdc1d746543003fcccdd25c2768011
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a2:6d:89:87:51:f6:9b:d6:0c:19:16:50:67:
2d:d6:ac:f6:be:d8:84:48:6a:92:27:be:84:52:fa:
29:e6:62:a7:0a:5d:0f:2f:ad:d2:ff:b7:83:eb:ca:
0c:9c:5b:e9:37:22:c5:88:c3:b3:6c:7e:1a:88:24:
8d:03:5d:5f:54:62:53:d4:9b:33:5f:b9:2e:3d:db:
18:61:a7:6a:05:72:24:b4:ce:2d:b8:d2:64:59:65:
5a:bd:57:29:fb:2c:aa:c0:ba:a0:3e:25:87:18:95:
5a:dd:ec:28:22:82:17:77:ae:ca:ac:5b:e1:21:fe:
2e:47:00:74:1c:eb:0e:20:98:27:a6:9d:10:c8:d2:
91:a0:7d:18:1c:0f:ec:8b:42:bc:1f:63:db:67:de:
9e:f6:57:77:bb:e4:27:d0:fa:38:d9:40:5e:f6:bd:
7c:9a:b4:3d:82:01:28:d0:90:ee:3b:ef:73:f4:a6:
1a:cd:4d:62:e3:9a:88:cb:72:e2:ed:59:6b:02:9f:
8d:48:89:af:08:4e:f0:92:64:38:d0:21:05:3c:a3:
e7:91:aa:c8:df:ca:51:3e:49:13:46:7d:46:e4:13:
0b:17:59:c1:ac:51:35:a0:5b:48:40:85:a2:4a:62:
fd:82:fd:07:5e:ae:63:68:81:ca:ff:75:de:7e:4d:
72:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:44:11:48:12:CD:C1:D7:46:54:30:03:FC:CC:DD:25:C2:76:80:11
X509v3 Authority Key Identifier:
keyid:54:2F:09:4F:04:27:B1:4F:34:99:F7:CD:F6:1D:88:3B:08:88:62:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VC8JTwQnsU80mffN9h2IOwiIYoo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/756aeb-022e-4c98-8ddb-0e068c4970ff/1/QEQRSBLNwddGVDAD_MzdJcJ2gBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/756aeb-022e-4c98-8ddb-0e068c4970ff/1/VC8JTwQnsU80mffN9h2IOwiIYoo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.48.0/22
Signature Algorithm: sha256WithRSAEncryption
c2:74:0e:3d:ab:6b:3d:1b:eb:13:df:32:ce:d2:0d:47:63:46:
aa:04:38:8e:93:71:67:67:f4:d4:5f:52:8f:02:92:e7:08:a2:
d9:35:e1:20:e7:27:b5:2c:33:b1:c4:0c:49:45:3f:4a:78:d8:
64:c9:4d:22:bd:44:fb:92:94:34:cb:83:d7:cf:48:77:be:48:
6a:ba:77:aa:ba:73:f4:ff:b2:fc:21:18:74:20:ab:4a:b5:ab:
df:4e:38:6b:e8:78:fd:d9:b7:ff:2b:50:23:98:89:f3:c9:42:
96:dc:c5:e7:2e:46:1b:63:bb:af:10:1b:4c:f4:30:35:77:d2:
4f:47:79:83:e3:da:0c:96:cf:b9:33:37:ce:eb:44:11:aa:e6:
eb:7a:16:b5:4a:c7:f8:44:9f:f1:b4:8e:24:39:68:15:17:20:
a8:a9:77:01:6b:25:65:e8:58:90:0d:ec:c0:49:0b:75:c8:f8:
87:82:51:5a:5d:5b:cd:78:62:7f:68:07:36:65:af:54:f2:1b:
51:d1:37:04:22:55:31:22:7c:05:ef:c6:12:a1:22:48:c4:bb:
b7:d3:f8:a4:bb:cf:0a:00:e6:af:96:3b:c0:da:3c:a9:af:b4:
4f:bb:37:fb:86:00:79:a2:8b:d5:0d:dd:65:ef:41:63:0e:34:
fd:c6:03:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:57:03 2025 by rpki-client