Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/q_Jdlu3mzKUpz0q5oQvHgnpU9K0.roa
File: q_Jdlu3mzKUpz0q5oQvHgnpU9K0.roa (raw, json)
Hash identifier: 1H9dDfPZYat1EfyldNgXo2E+2JNFNv0MV+nxmbmDKrU=
Subject key identifier: AB:F2:5D:96:ED:E6:CC:A5:29:CF:4A:B9:A1:0B:C7:82:7A:54:F4:AD
Certificate issuer: /CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Certificate serial: 154AB05B
Authority key identifier: F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/q_Jdlu3mzKUpz0q5oQvHgnpU9K0.roa
Signing time: Sat 01 Jan 2022 13:56:56 +0000
ROA not before: Sat 01 Jan 2022 13:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12670
IP address blocks: 195.167.224.0/20 maxlen: 20
185.204.172.0/22 maxlen: 22
92.102.0.0/16 maxlen: 16
46.218.64.0/18 maxlen: 18
195.167.192.0/20 maxlen: 20
92.102.0.0/15 maxlen: 15
213.244.0.0/19 maxlen: 19
82.101.0.0/18 maxlen: 18
77.104.0.0/18 maxlen: 18
212.99.0.0/17 maxlen: 17
212.103.0.0/19 maxlen: 19
92.103.0.0/18 maxlen: 18
92.103.0.0/16 maxlen: 16
89.227.192.0/18 maxlen: 18
89.224.0.0/16 maxlen: 16
89.225.192.0/18 maxlen: 18
89.224.0.0/14 maxlen: 14
213.30.128.0/18 maxlen: 18
46.218.0.0/18 maxlen: 18
46.218.0.0/16 maxlen: 16
217.66.112.0/20 maxlen: 20
83.145.64.0/18 maxlen: 18
195.248.0.0/19 maxlen: 19
92.103.64.0/18 maxlen: 18
2a02:e000::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357216347 (0x154ab05b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e2810f49b36fdd641c326bd1de4e42d128b046
Validity
Not Before: Jan 1 13:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abf25d96ede6cca529cf4ab9a10bc7827a54f4ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:dc:53:50:25:f2:90:97:35:bb:ae:7e:86:95:
72:b9:8c:6f:d1:f1:c5:47:bc:4b:09:cc:0e:bb:6b:
85:ca:84:1e:a2:b3:d6:96:cf:f7:e1:74:b6:a8:bd:
36:ca:2a:70:bb:84:eb:b5:1f:e2:e8:e4:7f:b7:f3:
96:54:a7:ee:11:8b:8a:f7:1a:e9:8f:82:02:e5:2b:
20:5a:3d:45:21:ad:9b:4b:06:50:e3:33:b9:79:03:
fe:4e:92:d7:01:67:44:19:9a:ed:74:4b:9e:5c:46:
47:22:de:4b:6c:d1:10:d3:f5:a0:d9:41:26:49:1b:
22:28:34:61:17:69:ab:06:5f:a7:3e:d8:27:a3:bb:
77:7f:60:02:a0:37:6a:ef:50:3c:51:0a:a9:a5:c0:
a9:99:e1:2b:63:3a:40:ee:a2:ff:eb:1e:21:02:56:
35:46:3c:80:93:77:43:ec:bf:0e:6a:69:f8:2d:dc:
7d:8a:f9:41:41:e8:94:25:b1:6a:94:b0:71:dd:44:
e0:a6:bb:d6:a7:eb:06:05:b5:3d:0e:41:db:11:6b:
1e:30:48:ce:6f:ed:fe:51:4b:b2:5a:90:82:69:9d:
0f:af:2e:d7:37:2d:22:8f:b9:bb:39:e8:5d:84:a5:
1b:f2:9c:86:fe:e0:ea:6a:a7:45:46:79:78:ce:2d:
c0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F2:5D:96:ED:E6:CC:A5:29:CF:4A:B9:A1:0B:C7:82:7A:54:F4:AD
X509v3 Authority Key Identifier:
keyid:F2:E2:81:0F:49:B3:6F:DD:64:1C:32:6B:D1:DE:4E:42:D1:28:B0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uKBD0mzb91kHDJr0d5OQtEosEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/q_Jdlu3mzKUpz0q5oQvHgnpU9K0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/79e905-fb0d-4b8b-9390-50d2b70bcf31/1/8uKBD0mzb91kHDJr0d5OQtEosEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.218.0.0/16
77.104.0.0/18
82.101.0.0/18
83.145.64.0/18
89.224.0.0/14
92.102.0.0/15
185.204.172.0/22
195.167.192.0/20
195.167.224.0/20
195.248.0.0/19
212.99.0.0/17
212.103.0.0/19
213.30.128.0/18
213.244.0.0/19
217.66.112.0/20
IPv6:
2a02:e000::/29
Signature Algorithm: sha256WithRSAEncryption
79:20:93:28:4b:50:90:7f:0d:5f:66:c1:a3:e9:b4:56:67:96:
cd:cf:a5:ea:88:eb:27:6a:a7:75:19:7c:55:92:bb:fa:16:f4:
d2:7a:66:16:16:44:1d:25:7b:03:d3:db:14:11:8d:cc:48:7b:
91:be:5c:b2:60:bb:71:87:ce:bf:ca:b3:c4:76:73:cd:28:80:
f8:f9:95:c5:3a:f5:b3:4e:07:f2:b2:8e:6d:1e:01:62:0b:8a:
77:8e:e4:c8:70:87:05:dd:8d:18:33:da:e4:08:b1:b9:26:fd:
29:f2:6a:66:62:6f:0e:53:72:4f:e9:77:8c:56:b9:c1:f1:66:
14:6f:19:77:03:04:e0:2b:f7:63:15:d1:50:05:d0:e4:46:23:
78:a6:16:a4:5f:b6:24:ba:57:7b:82:6e:74:40:f3:82:45:03:
1e:a7:6d:68:28:1c:4a:eb:59:6b:8b:f8:f5:08:b1:8a:3c:7c:
38:08:0a:bb:35:04:45:d3:da:96:57:0a:55:53:07:d3:83:c8:
ab:a8:bb:20:a2:55:4a:89:0e:2a:08:6b:24:ab:01:f4:2f:db:
12:e9:4f:4f:24:e7:56:dc:57:82:c7:45:5b:b5:a6:47:ca:21:
94:44:99:3d:fa:78:8c:da:07:f9:2d:09:05:60:06:15:0e:79:
45:97:5a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:58:40 2025 by rpki-client