Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/de1db4-ec78-4e41-9570-097c3c1c2540/1/SIR_BQRTonQtsv01EBgB7qzMTvg.roa
File: SIR_BQRTonQtsv01EBgB7qzMTvg.roa (raw, json)
Hash identifier: CTGoNb8pysnEQ6f+DzZnaqfzqokZYhbXYRX7J+0eCAk=
Subject key identifier: 48:84:7F:05:04:53:A2:74:2D:B2:FD:35:10:18:01:EE:AC:CC:4E:F8
Certificate issuer: /CN=2ac64dc21cb5fd4d0bcb02cc2b43fd751fd91e1e
Certificate serial: 074DC8BF
Authority key identifier: 2A:C6:4D:C2:1C:B5:FD:4D:0B:CB:02:CC:2B:43:FD:75:1F:D9:1E:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsZNwhy1_U0LywLMK0P9dR_ZHh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/de1db4-ec78-4e41-9570-097c3c1c2540/1/SIR_BQRTonQtsv01EBgB7qzMTvg.roa
Signing time: Wed 16 Feb 2022 07:42:29 +0000
ROA not before: Wed 16 Feb 2022 07:42:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211025
IP address blocks: 213.155.169.0/24 maxlen: 24
212.14.48.0/24 maxlen: 24
213.155.172.0/24 maxlen: 24
213.155.170.0/23 maxlen: 23
212.14.54.0/24 maxlen: 24
213.155.177.0/24 maxlen: 24
213.155.181.0/24 maxlen: 24
212.14.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122538175 (0x74dc8bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac64dc21cb5fd4d0bcb02cc2b43fd751fd91e1e
Validity
Not Before: Feb 16 07:42:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48847f050453a2742db2fd35101801eeaccc4ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:42:d9:e4:c9:6f:98:86:88:72:72:9c:9a:81:
2d:a1:e7:9c:6c:ec:b7:15:39:ca:5e:23:b3:be:03:
a3:b5:7e:20:f3:d5:93:cf:cd:ce:48:27:33:cc:5e:
44:e3:c5:67:75:a7:94:39:72:27:b8:9b:ae:a7:f0:
0e:8a:df:f7:3a:9a:00:48:29:e1:06:e2:84:af:98:
1b:b1:ab:24:43:35:1e:ec:9a:a1:75:cf:87:a3:b2:
31:84:82:4b:b8:c1:13:78:c6:b3:71:0d:06:4c:b3:
f6:52:de:4e:62:9d:61:d0:a3:e7:e3:b3:f1:36:fe:
cd:11:ee:bf:79:f7:6b:a2:28:df:91:9b:c2:56:9b:
76:04:aa:75:0c:ae:00:9e:72:ff:c8:96:be:99:a9:
a2:ce:91:52:d5:1e:97:07:e4:70:93:2f:f9:87:91:
10:03:60:51:21:f8:78:92:b2:8c:69:c6:00:a3:7c:
d2:9d:da:1d:d6:a9:74:29:3a:f4:62:59:e6:63:eb:
da:b5:64:58:57:03:9a:e2:05:92:67:8c:55:1b:99:
c0:86:9e:ef:86:8c:26:7e:cb:52:d8:98:ee:9d:5e:
f3:58:33:67:38:db:9f:e7:f9:ea:ad:89:34:43:2f:
72:b0:9d:66:40:73:25:fe:5c:5f:fc:3c:77:0b:b9:
0e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:84:7F:05:04:53:A2:74:2D:B2:FD:35:10:18:01:EE:AC:CC:4E:F8
X509v3 Authority Key Identifier:
keyid:2A:C6:4D:C2:1C:B5:FD:4D:0B:CB:02:CC:2B:43:FD:75:1F:D9:1E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsZNwhy1_U0LywLMK0P9dR_ZHh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/de1db4-ec78-4e41-9570-097c3c1c2540/1/SIR_BQRTonQtsv01EBgB7qzMTvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/de1db4-ec78-4e41-9570-097c3c1c2540/1/KsZNwhy1_U0LywLMK0P9dR_ZHh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.14.48.0/24
212.14.54.0/24
212.14.59.0/24
213.155.169.0-213.155.172.255
213.155.177.0/24
213.155.181.0/24
Signature Algorithm: sha256WithRSAEncryption
55:dc:07:77:a7:62:13:a9:d7:13:e7:d7:8b:60:bb:d1:97:85:
49:a2:54:1e:b9:a4:72:c0:9a:5c:67:36:32:80:a4:1a:09:bd:
af:1b:c5:81:46:7c:3a:af:f7:3f:6a:0a:06:aa:1b:3d:f1:d0:
18:e1:14:8a:bd:d3:06:9e:f5:41:f6:31:e3:64:31:33:05:4a:
78:12:76:30:68:41:ee:51:d6:b5:6c:15:03:13:db:d1:2e:ed:
90:18:bd:69:50:a4:e7:90:d2:7c:f1:7c:50:3a:da:ee:85:9b:
ce:27:4f:f4:f4:1e:a1:93:a2:99:e3:d6:22:66:3d:b1:9a:e7:
03:6c:ea:9a:ed:42:55:5e:d3:16:39:19:7f:a9:87:7d:79:ad:
b3:6e:3e:30:3b:d5:64:be:bc:79:93:f3:58:05:49:64:09:ad:
ca:9a:1f:e2:e3:3d:bb:12:24:a4:a9:23:d3:6d:b7:9c:ee:a5:
72:92:84:16:d4:72:24:01:90:32:d4:5e:b0:e4:19:29:4e:ff:
9f:bb:92:3d:cd:44:13:29:ac:29:88:80:1c:ab:4b:bf:f7:cc:
50:aa:e0:9f:62:8d:44:ea:32:eb:29:d5:a5:bc:38:d9:8c:31:
8d:58:b8:99:8b:88:e6:b7:1d:80:e8:e8:4c:ad:39:b8:42:34:
2c:42:2c:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:30:19 2025 by rpki-client