Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/3f378e-e8a7-4a9f-858b-5c49c8264a7b/1/h2wVSzseLOaNQYNeuto10sVSRs8.roa
File: h2wVSzseLOaNQYNeuto10sVSRs8.roa (raw, json)
Hash identifier: I9W86no1ydJQ5PERKyM6k9m4MtPXt18/E93o5nfEoAA=
Subject key identifier: 87:6C:15:4B:3B:1E:2C:E6:8D:41:83:5E:BA:DA:35:D2:C5:52:46:CF
Certificate issuer: /CN=e8564a4b5fef4444477df0da5b19924d52d10094
Certificate serial: 073FC14B
Authority key identifier: E8:56:4A:4B:5F:EF:44:44:47:7D:F0:DA:5B:19:92:4D:52:D1:00:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FZKS1_vRERHffDaWxmSTVLRAJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/3f378e-e8a7-4a9f-858b-5c49c8264a7b/1/h2wVSzseLOaNQYNeuto10sVSRs8.roa
Signing time: Sat 01 Jan 2022 08:56:02 +0000
ROA not before: Sat 01 Jan 2022 08:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47373
IP address blocks: 45.134.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121618763 (0x73fc14b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8564a4b5fef4444477df0da5b19924d52d10094
Validity
Not Before: Jan 1 08:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=876c154b3b1e2ce68d41835ebada35d2c55246cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:24:31:57:e1:4b:96:32:5c:b9:1f:31:7a:5d:
51:bd:e4:44:4e:da:f4:9d:9d:b4:6a:d0:f9:ce:66:
f6:4d:19:5d:8e:c6:5a:77:e4:3d:74:9e:4d:76:b2:
b3:56:f3:eb:4b:e6:7f:8f:78:01:82:6c:37:19:06:
10:ac:81:dc:d4:00:ec:35:51:ef:92:98:7a:76:b0:
6c:37:68:8c:04:d8:38:21:1d:c2:56:35:05:b9:08:
8d:37:0d:c9:4e:a7:be:5d:bd:b2:37:2a:54:0a:f0:
e8:fc:bc:34:51:be:a2:f2:96:b8:95:9d:9b:46:37:
43:32:8d:6b:9b:d0:b2:8f:87:a0:03:57:fd:51:52:
10:fa:22:55:6f:03:8b:b4:43:69:1a:fd:05:bb:c7:
68:d7:28:b4:4c:78:64:18:98:9d:e5:f4:8c:dc:7a:
b5:7f:98:8e:84:9f:b3:79:8a:b9:51:9e:06:22:eb:
73:c1:cf:a9:d5:d1:0a:44:71:f0:ef:b8:26:bf:f6:
c0:9b:a0:95:e7:73:eb:f2:f8:d3:a9:6d:65:a8:56:
2f:4d:bd:29:45:24:e9:0c:9d:19:33:2c:a1:f3:cd:
2f:01:92:2b:7b:6b:48:ec:9f:13:fd:a7:1e:1b:b3:
46:c9:69:c8:37:a8:70:2d:61:2e:b4:d1:6c:6e:78:
22:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6C:15:4B:3B:1E:2C:E6:8D:41:83:5E:BA:DA:35:D2:C5:52:46:CF
X509v3 Authority Key Identifier:
keyid:E8:56:4A:4B:5F:EF:44:44:47:7D:F0:DA:5B:19:92:4D:52:D1:00:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FZKS1_vRERHffDaWxmSTVLRAJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/3f378e-e8a7-4a9f-858b-5c49c8264a7b/1/h2wVSzseLOaNQYNeuto10sVSRs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/3f378e-e8a7-4a9f-858b-5c49c8264a7b/1/6FZKS1_vRERHffDaWxmSTVLRAJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.244.0/22
Signature Algorithm: sha256WithRSAEncryption
35:96:02:a3:f4:44:b4:6d:9a:b7:ad:c1:9b:57:ae:49:94:ff:
fb:7c:71:21:5e:44:c0:e5:03:fb:04:6f:a2:0e:ab:6d:20:7d:
6b:e5:2c:fa:a0:81:fb:34:7c:8a:c3:9e:54:79:49:cd:06:b2:
ec:52:bc:9c:2f:3d:bd:9d:a2:f9:15:ed:99:ec:73:51:c1:d0:
e8:36:a8:a0:42:af:93:91:8f:4d:cf:fa:0b:1d:76:ab:7a:48:
d6:52:11:8f:36:b7:07:ee:d5:78:88:2c:c6:b4:33:b7:aa:02:
54:56:03:ac:c8:d7:2e:ef:40:66:b6:ea:eb:d6:2e:d4:a7:89:
ac:6f:73:d9:5f:28:f7:45:73:bb:f6:7f:cc:0e:bd:84:4b:c9:
24:06:2d:4b:4e:ee:aa:96:ac:b7:ab:4e:6f:32:dc:c1:2b:0c:
d4:61:54:2e:91:ba:36:62:0d:6a:f9:80:d2:8c:41:5a:b8:53:
92:30:a6:b2:f2:18:60:ab:06:7f:19:47:a4:b1:ef:1b:a2:8e:
54:ba:41:93:2e:60:5c:d8:58:ad:b4:60:78:98:4c:e6:42:9e:
1b:55:f2:85:57:88:74:f4:51:93:a4:03:d2:46:78:f7:c6:d1:
65:8f:ea:79:31:73:a1:87:ad:df:d6:e5:0b:24:87:ca:4a:f9:
30:5c:78:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 22:23:30 2025 by rpki-client