Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/QxNRSL3Il3yi9HzrhEo2KihEfvQ.roa
File: QxNRSL3Il3yi9HzrhEo2KihEfvQ.roa (raw, json)
Hash identifier: lHr0k7tPoihOfW0uqvz0gnaCtMZ50rnj8LrSHoDTvfY=
Subject key identifier: 43:13:51:48:BD:C8:97:7C:A2:F4:7C:EB:84:4A:36:2A:28:44:7E:F4
Certificate issuer: /CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Certificate serial: 0187EE67AFAAB7C873A38A07296208D1CC5E
Authority key identifier: 3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/QxNRSL3Il3yi9HzrhEo2KihEfvQ.roa
Signing time: Sat 06 May 2023 00:13:05 +0000
ROA not before: Sat 06 May 2023 00:13:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210891
IP address blocks: 83.97.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ee:67:af:aa:b7:c8:73:a3:8a:07:29:62:08:d1:cc:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b63139a1f4f88c30cee221c9146a36db554ff70
Validity
Not Before: May 6 00:13:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43135148bdc8977ca2f47ceb844a362a28447ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:51:d8:b8:86:e6:f0:0b:d4:20:42:35:b4:fe:
3e:97:fd:bf:c1:7c:c5:db:8b:01:04:d2:01:f9:58:
b4:17:05:72:e1:4f:e6:9e:c2:fe:a9:44:18:5e:16:
9f:88:d3:a5:93:eb:e7:63:e5:18:dd:80:4a:6d:a5:
8c:df:d0:f0:f6:0f:31:49:92:f2:c8:06:85:88:a0:
2c:29:13:d3:e7:de:b9:45:92:7c:ef:c4:b6:b1:d6:
2d:6b:85:db:ab:cd:51:25:d6:8c:73:be:16:a0:e0:
1d:43:ba:71:47:ed:34:5b:07:68:0f:3a:8d:f4:1f:
ff:ee:39:55:56:e4:b8:ef:0c:d9:93:aa:2b:e4:45:
5e:ad:23:3d:43:73:03:1e:02:6d:87:01:8b:e5:f6:
b0:c7:15:30:3e:92:6f:9f:96:16:8f:60:cb:b1:ec:
c0:1e:08:f3:fc:ab:a6:74:09:27:87:27:df:9d:a4:
df:fb:e0:79:dd:92:88:6b:3b:c2:47:ee:69:28:fe:
20:2b:16:fa:c5:a2:69:c2:f2:2d:54:04:37:57:76:
09:73:ab:ca:99:79:cd:41:4d:32:20:d4:9b:af:7c:
8a:ea:9c:5a:35:f2:b9:e2:66:a5:f1:e2:5a:4a:60:
98:3b:d6:a3:8d:b4:6e:ba:e7:24:9a:1c:34:05:e5:
72:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:13:51:48:BD:C8:97:7C:A2:F4:7C:EB:84:4A:36:2A:28:44:7E:F4
X509v3 Authority Key Identifier:
keyid:3B:63:13:9A:1F:4F:88:C3:0C:EE:22:1C:91:46:A3:6D:B5:54:FF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2MTmh9PiMMM7iIckUajbbVU_3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/QxNRSL3Il3yi9HzrhEo2KihEfvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0269c5-268c-45e9-8067-0f7a40b5f6f3/1/O2MTmh9PiMMM7iIckUajbbVU_3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.97.75.0/24
Signature Algorithm: sha256WithRSAEncryption
86:66:65:94:dc:e1:de:f6:33:35:6e:11:55:77:64:34:ce:04:
13:7e:a1:2b:fd:67:0c:4b:53:56:18:22:06:6d:7e:fc:35:8f:
8c:f9:0f:6e:3f:45:11:ff:79:e1:fd:66:14:e2:96:a2:12:9d:
24:9b:79:1c:22:c3:c8:a8:3c:54:61:74:39:11:98:df:c8:e6:
34:2d:8c:db:14:2c:64:74:1f:31:61:be:2a:d9:1b:79:6b:49:
67:10:ac:b3:80:e8:91:e8:b8:0a:20:48:8e:f3:53:18:e1:a7:
b3:a9:71:f0:7b:4a:de:ec:92:e3:87:7f:d5:77:f0:d6:df:0c:
be:4a:61:03:ae:d0:dd:f2:73:1e:8b:e2:6d:56:da:b9:92:65:
43:01:19:03:fc:95:02:6c:27:4e:41:60:d2:54:56:b0:1b:25:
93:56:da:44:9a:68:79:4f:44:40:11:bf:e8:47:72:c5:d6:48:
f0:0b:25:d6:94:5d:b7:3a:cd:55:a7:98:04:e2:c1:5e:a3:15:
dc:60:d4:0c:16:a9:12:f6:2c:fb:c1:02:10:37:56:eb:a1:60:
7c:5b:32:7c:dd:ef:dd:47:29:78:29:77:8f:c7:dc:54:97:c1:
2e:c3:57:94:19:82:f7:53:27:db:ef:50:63:c4:05:0d:f6:25:
19:46:cd:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:02 2025 by rpki-client