Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/QveU1m93qD3I_1mPAR2dSdtl0xI.roa
File: QveU1m93qD3I_1mPAR2dSdtl0xI.roa (raw, json)
Hash identifier: JmHhxXeTFL0Nw8mJuNj/M8ZLCEh0chTJXee7qziRnAY=
Subject key identifier: 42:F7:94:D6:6F:77:A8:3D:C8:FF:59:8F:01:1D:9D:49:DB:65:D3:12
Certificate issuer: /CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718
Certificate serial: 0635D220
Authority key identifier: 6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/QveU1m93qD3I_1mPAR2dSdtl0xI.roa
Signing time: Sat 01 Jan 2022 14:06:11 +0000
ROA not before: Sat 01 Jan 2022 14:06:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50979
IP address blocks: 92.118.148.0/24 maxlen: 24
2a0a:8c40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104190496 (0x635d220)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718
Validity
Not Before: Jan 1 14:06:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42f794d66f77a83dc8ff598f011d9d49db65d312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c8:6f:d1:5c:ee:88:b9:8e:42:ba:00:df:f7:
60:ff:49:0c:17:4c:33:52:0b:ee:8a:c7:b9:43:5e:
3c:ec:b4:fe:32:d3:8b:ed:15:07:8c:15:4e:aa:d2:
29:dd:b8:c0:50:79:04:a5:d6:e9:2a:7a:a2:c3:fd:
a8:53:c2:54:d0:6d:ab:9f:32:89:a9:48:bf:c8:bf:
2a:03:6d:b6:76:39:a6:d7:e4:01:b1:e9:d9:cb:c0:
73:58:32:91:45:77:53:2c:96:a3:f7:68:3a:7d:8d:
26:ea:d7:0f:b7:48:16:0c:fe:90:4c:e8:be:e8:e7:
84:e4:e7:a3:9e:b9:b2:06:8c:21:fc:25:30:52:02:
7d:a4:9f:db:b3:b8:e1:c1:3e:d8:fe:6c:e0:72:7c:
31:ef:fe:c9:aa:9d:a9:1a:73:9e:54:7b:dc:42:7d:
4f:71:2c:9d:b4:1a:8e:b4:05:1e:ba:b8:83:91:64:
d4:19:d4:a4:c5:79:eb:b0:0a:7c:53:f0:72:c2:17:
f3:3a:7a:d8:42:3e:ac:f8:26:1f:b5:72:49:97:ad:
bf:f0:b2:b8:c0:49:75:73:cd:e9:dc:b1:e8:53:c6:
c7:ea:81:6f:58:cc:fa:be:b9:f2:b4:4a:70:84:e7:
8d:0c:bf:da:f5:9d:7f:98:6a:57:d0:16:3e:f9:db:
55:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F7:94:D6:6F:77:A8:3D:C8:FF:59:8F:01:1D:9D:49:DB:65:D3:12
X509v3 Authority Key Identifier:
keyid:6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/QveU1m93qD3I_1mPAR2dSdtl0xI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.118.148.0/24
IPv6:
2a0a:8c40::/32
Signature Algorithm: sha256WithRSAEncryption
53:02:90:53:5b:af:04:fb:e1:90:20:76:fe:5f:61:a0:8a:86:
e3:b6:cb:01:42:45:93:ca:e3:99:49:c8:32:43:34:54:ba:0e:
f8:7b:cb:c3:ec:85:5c:48:fa:16:5f:3a:77:eb:ae:a4:e7:4e:
db:f4:ad:5b:45:f5:70:19:d9:63:20:f9:d0:86:5d:29:e4:08:
5e:f5:3e:5b:f0:82:6f:b7:bd:e6:07:47:1e:56:9f:44:ed:a6:
8e:19:33:08:dc:5b:86:0f:c0:4b:8c:4d:3c:ee:b7:f2:52:c8:
e0:10:a3:5e:2f:5c:c1:d8:88:f5:14:1f:de:b9:b7:4d:de:23:
fa:a3:50:f8:20:96:ee:a0:8d:5f:f2:3e:7f:4c:f9:95:d2:41:
bf:7c:63:23:b7:de:01:68:ff:b1:2e:b3:3e:36:52:20:7a:1a:
a7:03:b0:c7:ac:ed:78:ab:64:f8:71:df:74:13:82:67:6f:13:
d8:42:bc:fe:05:dc:f3:2d:25:fa:8d:cc:12:76:cd:2c:a2:b2:
49:dc:1f:5d:b7:e7:40:81:80:4d:68:60:2f:83:d8:aa:b9:bb:
8a:63:46:b7:dc:52:1d:ae:ff:e2:f1:b0:23:26:b5:9b:6a:60:
60:cc:1c:3e:20:3e:8e:c5:3a:4f:03:b9:3a:0b:02:56:25:16:
2f:81:cb:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 22:06:15 2025 by rpki-client