Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/tpm4oz-P2PWpaiCdQbuTxP-Rycg.roa
File: tpm4oz-P2PWpaiCdQbuTxP-Rycg.roa (raw, json)
Hash identifier: JmqQ60P5QJvDvaNtDniDwngO1REgqfoJTjLsJ4Z9uEY=
Subject key identifier: B6:99:B8:A3:3F:8F:D8:F5:A9:6A:20:9D:41:BB:93:C4:FF:91:C9:C8
Certificate issuer: /CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Certificate serial: 1242AC0D
Authority key identifier: 1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/tpm4oz-P2PWpaiCdQbuTxP-Rycg.roa
Signing time: Sat 01 Jan 2022 04:01:50 +0000
ROA not before: Sat 01 Jan 2022 04:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205405
IP address blocks: 145.14.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 306359309 (0x1242ac0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7b06bf41300dc4d30f3d0e180c9b95d2bcddff
Validity
Not Before: Jan 1 04:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b699b8a33f8fd8f5a96a209d41bb93c4ff91c9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:70:d1:c8:bb:a3:48:0f:77:09:57:fe:61:18:
7f:f4:c6:6c:10:af:16:12:99:76:bb:d1:f4:76:93:
82:16:b5:06:93:c1:b9:66:64:2a:79:f2:b1:01:27:
d0:c9:1f:46:1f:35:e1:ca:2b:fd:a1:84:fd:83:a3:
c8:7a:2d:a7:4d:7d:54:ae:96:94:fb:78:81:7d:5b:
2d:4d:f9:a6:f5:e4:7f:da:6a:d3:42:b3:5e:1f:1b:
39:66:d8:f3:06:75:cb:55:cb:c2:0f:9a:3c:17:fd:
c2:52:ac:9b:76:61:15:d7:c8:42:9e:5b:cb:19:5e:
5b:41:b3:6b:79:dc:b9:6c:e9:0a:c3:a9:cf:98:14:
6b:d5:7a:22:b3:9f:84:6d:e8:b0:96:ab:9a:8e:17:
b7:90:3d:fe:2e:95:fd:9c:3f:5f:63:84:f7:e1:85:
5c:0e:3a:93:19:df:8a:19:cc:6f:ab:96:1f:b8:f4:
c9:b2:d1:c4:cc:1b:35:96:9f:30:ed:c0:aa:13:63:
d9:27:24:af:4b:b8:e4:18:e4:9b:f5:c4:15:c2:a8:
20:0a:0c:30:43:17:39:cc:44:59:b9:c7:1e:af:dd:
b2:a3:39:67:36:e5:1b:92:4e:88:25:ba:90:db:d9:
a8:76:b3:74:38:15:a4:d1:8c:3c:8c:5e:41:a3:9c:
b8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:99:B8:A3:3F:8F:D8:F5:A9:6A:20:9D:41:BB:93:C4:FF:91:C9:C8
X509v3 Authority Key Identifier:
keyid:1C:7B:06:BF:41:30:0D:C4:D3:0F:3D:0E:18:0C:9B:95:D2:BC:DD:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHsGv0EwDcTTDz0OGAybldK83f8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/tpm4oz-P2PWpaiCdQbuTxP-Rycg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/702b28-e158-40c0-8330-24fddc6d147b/1/HHsGv0EwDcTTDz0OGAybldK83f8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.14.4.0/24
Signature Algorithm: sha256WithRSAEncryption
20:b2:10:75:0e:e8:3b:57:9c:94:df:ba:09:08:06:21:24:22:
b1:8a:1a:4f:d8:ea:10:85:07:bc:f0:36:eb:73:ea:ec:75:70:
0e:c9:59:f9:83:22:98:c2:fc:9f:10:52:a3:d1:df:42:18:5d:
54:e1:8f:2b:5a:4e:3f:d7:60:62:6a:81:a7:21:2e:66:ee:30:
5a:44:a1:a8:b8:0e:c2:21:b6:82:bc:59:94:c0:1b:08:bd:90:
23:08:5a:bb:b7:8f:90:da:c7:b9:a5:15:a1:52:14:9d:2e:1a:
d0:60:fd:63:43:82:c3:52:b8:38:50:43:15:39:40:0d:f9:53:
f0:b5:12:2f:03:12:b5:74:c6:a6:e7:22:58:e1:c1:67:1a:44:
75:ce:7b:af:3b:0d:83:d8:33:1a:41:b9:f3:0c:8b:4f:0d:45:
00:b4:28:ca:6e:57:79:31:54:9f:ff:4a:ad:92:90:6d:e1:a6:
14:ea:48:e6:e5:cf:21:51:3f:70:07:83:ab:2d:bc:1e:e9:8b:
0d:be:8f:ad:d3:98:bd:14:05:61:4b:4e:e4:a3:26:d9:ed:d3:
55:32:33:52:de:13:32:c9:96:6e:ac:42:5a:31:c6:72:e7:7f:
5b:32:57:42:13:13:19:24:91:81:db:f4:ad:02:df:e5:1c:ab:
14:d1:eb:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:48:51 2025 by rpki-client