Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/Q62BXrsVF0F3Sp2n5tjJ4B9FM7U.roa
File: Q62BXrsVF0F3Sp2n5tjJ4B9FM7U.roa (raw, json)
Hash identifier: 70BwWjgsDKECRCylIsubqNCYj1lHmCsf/Zc2Iaerlag=
Subject key identifier: 43:AD:81:5E:BB:15:17:41:77:4A:9D:A7:E6:D8:C9:E0:1F:45:33:B5
Certificate issuer: /CN=7bbd51272064b63b2c663c0296ba11db5ea238c0
Certificate serial: 01856C6F1A8C8CB1371A072BBFD975A7AA28
Authority key identifier: 7B:BD:51:27:20:64:B6:3B:2C:66:3C:02:96:BA:11:DB:5E:A2:38:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e71RJyBktjssZjwClroR216iOMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/Q62BXrsVF0F3Sp2n5tjJ4B9FM7U.roa
Signing time: Sun 01 Jan 2023 08:24:58 +0000
ROA not before: Sun 01 Jan 2023 08:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44090
IP address blocks: 185.129.232.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:1a:8c:8c:b1:37:1a:07:2b:bf:d9:75:a7:aa:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bbd51272064b63b2c663c0296ba11db5ea238c0
Validity
Not Before: Jan 1 08:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43ad815ebb151741774a9da7e6d8c9e01f4533b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b1:ef:cd:5c:d3:0c:20:d5:89:f2:61:8a:71:
6e:5c:cc:b0:57:f7:89:36:f2:2c:80:1c:e5:bb:73:
64:7a:95:bf:7c:d8:71:a5:bb:05:00:fb:3a:de:b2:
b3:03:97:a3:a1:ac:21:8d:fe:06:90:bc:d5:1e:8e:
cc:34:87:3e:8b:74:66:b5:73:e6:02:6c:0d:1a:f4:
de:b3:ec:09:03:1c:51:fa:32:d5:96:88:c0:6d:c8:
00:80:96:00:13:d8:a2:ba:d5:17:67:a2:16:aa:e3:
5b:28:de:56:e8:62:80:83:5c:30:86:57:e3:3e:c3:
e6:26:f0:67:38:4e:4a:86:52:25:00:49:5b:60:be:
03:fd:a8:f0:90:77:90:08:b9:71:b2:83:3d:b0:32:
7e:2c:5e:00:3b:48:b4:a1:f2:2f:f6:2d:20:22:00:
a4:fd:82:bf:16:61:3e:dc:ae:26:16:ed:e3:62:58:
ba:2b:d6:78:57:49:4d:80:15:4b:c2:53:99:0b:ee:
6e:14:b7:d5:28:e3:8d:0a:8d:97:2e:93:38:f6:cd:
5b:9e:df:fb:e5:e7:bc:32:6d:05:8e:cd:32:bd:dd:
1e:98:e3:e4:34:6c:a0:20:b8:7f:d4:76:08:cf:19:
eb:a2:22:42:1e:44:93:f7:7b:15:ff:91:6f:03:6e:
7e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:AD:81:5E:BB:15:17:41:77:4A:9D:A7:E6:D8:C9:E0:1F:45:33:B5
X509v3 Authority Key Identifier:
keyid:7B:BD:51:27:20:64:B6:3B:2C:66:3C:02:96:BA:11:DB:5E:A2:38:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e71RJyBktjssZjwClroR216iOMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/Q62BXrsVF0F3Sp2n5tjJ4B9FM7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b82a06-ab0d-4adf-8a85-97c9aab828f2/1/e71RJyBktjssZjwClroR216iOMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.232.0/21
Signature Algorithm: sha256WithRSAEncryption
ae:72:b3:48:18:1f:26:7a:68:32:58:2f:28:0d:c3:45:e3:55:
25:0f:87:28:2d:a7:95:a2:ca:f4:ce:0f:47:d3:37:e4:be:9f:
a0:49:54:dc:a6:af:e8:c2:2f:6f:9c:32:3c:fb:18:9c:87:bf:
66:a4:ca:51:a3:3e:51:65:29:fb:46:7f:df:60:b4:31:8b:7e:
0a:c6:d8:1a:01:ae:4f:a1:15:70:b0:83:eb:c8:4e:84:4a:73:
de:e9:70:8b:8e:a6:62:e3:f7:c6:76:63:39:03:50:04:58:28:
cd:58:17:5d:fe:5c:41:4e:14:52:59:80:eb:bc:a3:95:4b:2c:
ad:bd:45:5f:d3:98:8b:ff:77:ea:80:db:25:99:39:cb:43:b3:
1c:21:3d:30:40:65:d2:ef:5b:f4:d4:5e:fc:8b:07:8c:57:64:
18:6f:ca:17:8c:0a:8a:b7:f1:b2:d9:40:7f:83:30:c3:79:e5:
7f:25:9e:21:62:61:ce:7c:ff:20:d6:ee:ba:11:e1:35:3a:37:
9f:b3:f0:d9:79:9b:ca:6c:db:ca:5e:69:f6:15:21:08:dd:40:
36:8c:14:ff:1c:dc:26:43:ba:e6:ec:d8:3e:1c:be:7c:73:5e:
e8:b0:fa:21:35:af:0f:8b:06:76:f2:59:af:63:d8:e8:04:ef:
67:75:9c:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:15 2025 by rpki-client