Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/0uaQO5LA-5VMugHhRwCRO7FD3b8.roa
File: 0uaQO5LA-5VMugHhRwCRO7FD3b8.roa (raw, json)
Hash identifier: xxDy/KRc2HEwgBtCir6iOcFHtK0Z74y0PqGCNfvDCEc=
Subject key identifier: D2:E6:90:3B:92:C0:FB:95:4C:BA:01:E1:47:00:91:3B:B1:43:DD:BF
Certificate issuer: /CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Certificate serial: 01884CB66FF12E62074E2B4D20A60BCA60E7
Authority key identifier: 40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/0uaQO5LA-5VMugHhRwCRO7FD3b8.roa
Signing time: Wed 24 May 2023 07:43:24 +0000
ROA not before: Wed 24 May 2023 07:43:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61102
IP address blocks: 107.150.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:b6:6f:f1:2e:62:07:4e:2b:4d:20:a6:0b:ca:60:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400e07d799fb355c952025f3d27b00e9b4ee34ed
Validity
Not Before: May 24 07:43:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2e6903b92c0fb954cba01e14700913bb143ddbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:19:ca:6e:fa:53:a3:1e:c0:a5:df:71:22:02:
ef:ad:98:80:2b:d2:df:57:ef:e4:f3:45:2f:a8:a9:
e6:f9:f1:20:b8:02:6c:ad:83:0b:09:b6:e5:a7:4e:
c9:01:dc:57:a2:36:59:67:b1:41:7a:87:7d:05:68:
a9:30:b9:98:0e:b4:3b:c4:91:31:eb:b7:b6:49:db:
b6:2f:b3:22:8f:f2:0d:8d:c3:16:01:83:b3:34:3c:
a6:00:9f:09:cc:53:50:76:b8:b5:21:1c:0f:8d:11:
40:32:bc:3e:f2:ca:4c:0d:77:3c:0a:19:a6:58:47:
36:fe:35:59:26:db:dd:f3:9c:9d:8f:f4:0c:46:69:
10:dc:d2:d1:24:67:4c:68:12:01:e9:92:a9:d5:6c:
2a:0a:e4:da:64:23:ae:c8:47:70:5b:63:33:09:a2:
0e:9f:90:d6:14:42:6c:a7:71:7e:c7:bd:0b:1c:be:
db:ed:00:b0:15:58:be:88:1a:28:f7:65:3c:58:f6:
5f:26:1c:af:f8:4c:57:29:46:78:c8:0e:cb:ee:bf:
a6:d5:73:f3:88:06:33:1d:48:1f:f2:4a:49:51:d1:
64:16:82:96:b3:99:c5:1d:50:13:f0:e2:82:8e:33:
ab:62:05:11:f2:97:79:c9:2f:34:6d:ef:ef:0f:1e:
06:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E6:90:3B:92:C0:FB:95:4C:BA:01:E1:47:00:91:3B:B1:43:DD:BF
X509v3 Authority Key Identifier:
keyid:40:0E:07:D7:99:FB:35:5C:95:20:25:F3:D2:7B:00:E9:B4:EE:34:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA4H15n7NVyVICXz0nsA6bTuNO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/0uaQO5LA-5VMugHhRwCRO7FD3b8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f36b6-d701-4335-af30-48fe633b1b3f/1/QA4H15n7NVyVICXz0nsA6bTuNO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
107.150.178.0/24
Signature Algorithm: sha256WithRSAEncryption
33:ce:41:c1:2b:40:13:30:f2:b1:c8:8a:a1:a1:4f:64:64:20:
cd:c1:a6:92:cc:4e:55:55:98:5d:c5:ea:27:ae:2c:ec:36:2a:
ef:b0:56:68:d8:87:a2:24:af:0e:38:81:cf:77:e5:c2:c1:6c:
6e:23:d4:26:76:ee:65:eb:e1:93:dd:69:78:9c:fb:39:44:85:
95:b9:d8:50:d1:25:bd:f7:16:74:e2:87:87:e6:03:ba:5e:83:
69:93:c8:bc:70:00:01:dc:f9:ba:ca:26:1d:9f:7a:13:21:39:
78:32:62:ba:5c:3e:40:ef:fb:9a:02:72:91:91:4e:aa:fc:ce:
f1:a0:c6:90:c6:7c:0a:2b:9a:73:22:ed:39:5e:b0:6a:4a:71:
ec:72:4a:c5:09:32:f2:d2:1b:ef:1e:a6:5c:3f:c8:34:86:44:
8a:9c:4b:97:4f:b6:ab:6a:a6:9d:12:47:25:d2:47:4e:57:18:
d5:de:5a:50:92:b4:8e:8c:f6:dc:fa:f5:11:35:6f:88:86:f6:
15:42:29:da:a7:76:33:a4:2d:be:91:5d:d4:7f:16:02:69:b4:
71:b9:f8:23:81:ea:a0:ba:b1:17:37:5e:ef:89:ee:4e:18:95:
5a:c0:75:10:fa:04:86:0b:45:01:af:5e:53:0c:6b:8a:b9:71:
b5:99:ca:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 23:11:52 2025 by rpki-client