Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/6558bc-7d3a-4f6f-b73a-62a3562c72ba/1/7Fqhoe8YbocZxInPl46FhqrbuHk.roa
File: 7Fqhoe8YbocZxInPl46FhqrbuHk.roa (raw, json)
Hash identifier: drNc+xa42E8ZSZwuNkoK6hZDiE2vVZ1YvzNUUUm4/vY=
Subject key identifier: EC:5A:A1:A1:EF:18:6E:87:19:C4:89:CF:97:8E:85:86:AA:DB:B8:79
Certificate issuer: /CN=139602ef760adc0a5b7a48583cfbf9b60fcb7130
Certificate serial: 2C6D9F
Authority key identifier: 13:96:02:EF:76:0A:DC:0A:5B:7A:48:58:3C:FB:F9:B6:0F:CB:71:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E5YC73YK3ApbekhYPPv5tg_LcTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/6558bc-7d3a-4f6f-b73a-62a3562c72ba/1/7Fqhoe8YbocZxInPl46FhqrbuHk.roa
Signing time: Sat 01 Jan 2022 01:01:22 +0000
ROA not before: Sat 01 Jan 2022 01:01:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206195
IP address blocks: 45.15.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2911647 (0x2c6d9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=139602ef760adc0a5b7a48583cfbf9b60fcb7130
Validity
Not Before: Jan 1 01:01:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec5aa1a1ef186e8719c489cf978e8586aadbb879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1b:f2:90:45:5c:c1:b2:1a:77:9b:12:b5:0c:
31:80:a3:a1:86:2c:35:81:c9:fd:ee:84:0b:0d:73:
37:cd:93:85:1f:ba:1c:70:ca:ac:bc:fd:c3:bd:19:
0f:e7:a9:83:93:d7:77:1c:24:76:0e:6b:76:37:91:
58:f2:17:6b:f2:17:e9:b2:16:f0:11:9f:5f:96:33:
b0:99:d7:7f:bd:52:51:0e:b0:61:47:48:2b:16:89:
de:fe:bb:86:30:a9:de:e8:bc:66:d6:a0:22:22:a6:
70:32:12:78:b3:b1:04:1b:e2:48:2b:d1:80:7d:d7:
da:2c:15:7a:bd:97:5c:b0:95:17:7f:55:eb:2d:7f:
0f:b5:33:d0:9d:1d:71:86:13:50:fd:24:e8:24:10:
b4:98:b4:19:6b:27:2d:9b:3d:81:21:fc:a0:ff:02:
08:7a:21:12:2e:42:e8:db:1a:b4:47:72:c1:5e:e5:
9e:04:cc:2f:56:6f:ca:fc:c8:ea:6e:3b:de:7c:e1:
3d:db:b4:b1:09:c4:24:d5:14:58:72:a1:4e:a9:a0:
22:f5:d4:3c:65:24:a2:3d:93:73:83:34:ca:54:47:
7c:db:44:51:08:d2:51:1c:f3:66:49:ac:1e:25:29:
71:d7:02:ec:ff:e8:0c:07:3c:9f:b1:76:71:a5:8b:
5d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5A:A1:A1:EF:18:6E:87:19:C4:89:CF:97:8E:85:86:AA:DB:B8:79
X509v3 Authority Key Identifier:
keyid:13:96:02:EF:76:0A:DC:0A:5B:7A:48:58:3C:FB:F9:B6:0F:CB:71:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E5YC73YK3ApbekhYPPv5tg_LcTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/6558bc-7d3a-4f6f-b73a-62a3562c72ba/1/7Fqhoe8YbocZxInPl46FhqrbuHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/6558bc-7d3a-4f6f-b73a-62a3562c72ba/1/E5YC73YK3ApbekhYPPv5tg_LcTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.116.0/22
Signature Algorithm: sha256WithRSAEncryption
60:67:26:81:a0:86:43:c5:2f:37:8f:62:09:56:6e:2d:b5:c8:
1a:26:ac:c8:b8:7f:0a:04:67:20:7d:33:6d:12:32:a6:b3:5c:
96:62:9b:56:6d:de:56:00:7f:4d:87:1f:57:72:92:36:c6:6f:
39:87:5b:dc:28:63:03:d7:0c:83:6d:75:42:22:ee:1c:a6:3f:
e1:53:42:7f:bd:af:16:a4:a2:55:05:07:85:1c:9e:6c:5e:68:
e9:1e:d7:4d:00:7e:51:76:e3:b7:6f:71:83:fd:25:9f:4c:b6:
bd:ab:b3:3b:23:bc:f4:23:39:7e:6e:90:30:1e:b6:99:bf:70:
6f:a5:53:41:d0:e0:1e:f2:01:7b:b6:5c:f7:88:99:0d:54:a6:
82:cb:22:f0:dd:ea:56:6b:27:72:06:ce:7f:b8:0b:df:5a:79:
24:39:53:0d:7b:68:7e:fc:7d:19:bf:ff:09:c5:ce:4c:ed:66:
d4:58:4b:e1:b0:26:9d:71:46:4e:dc:d1:73:79:cd:d1:36:f6:
f8:36:70:24:3f:93:62:24:85:ae:eb:17:6e:39:25:03:44:a1:
28:30:89:12:6f:df:3a:6e:5a:c7:75:0d:c6:95:9c:02:cf:6a:
ec:9c:04:c5:8f:fe:f5:9c:9d:bb:31:f7:b3:27:81:b0:2f:56:
6f:98:9a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:24:58 2025 by rpki-client