Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/W3Yd351A1zzjgzm7B2rQFc-yJsc.roa
File: W3Yd351A1zzjgzm7B2rQFc-yJsc.roa (raw, json)
Hash identifier: I9mjq0vWI22Qsnia+tFY/rMSSfXacu5vaOVt77V9pAQ=
Subject key identifier: 5B:76:1D:DF:9D:40:D7:3C:E3:83:39:BB:07:6A:D0:15:CF:B2:26:C7
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 018389CCDF720CBDC6315D509A577B61EF05
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/W3Yd351A1zzjgzm7B2rQFc-yJsc.roa
Signing time: Thu 29 Sep 2022 15:10:48 +0000
ROA not before: Thu 29 Sep 2022 15:10:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 155.254.38.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:89:cc:df:72:0c:bd:c6:31:5d:50:9a:57:7b:61:ef:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Sep 29 15:10:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5b761ddf9d40d73ce38339bb076ad015cfb226c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9b:d1:a7:dc:7d:a9:eb:95:15:58:f2:27:a5:
22:46:4a:30:d9:92:a8:c2:eb:c7:8d:75:e4:90:04:
be:b7:7e:bb:11:e7:3b:a2:8f:cf:d3:6f:34:90:fd:
93:1c:c0:e9:4b:8e:79:f0:17:7e:fa:1c:36:9c:98:
0c:0d:8f:49:79:61:16:fa:9a:eb:3a:ae:51:a4:1c:
10:a5:e7:fc:5a:67:3d:b1:a3:03:55:64:7d:87:8b:
6e:be:9a:7d:c0:58:32:fe:b6:9e:5c:9a:96:68:b1:
fc:e7:4f:9c:20:95:d3:de:fb:bf:47:90:0c:ca:0c:
76:23:f1:6d:1b:53:e0:98:3b:69:07:48:aa:04:80:
07:c7:dd:72:b1:05:29:93:78:43:74:a4:2a:9b:82:
0e:9e:51:ae:59:de:e5:7f:33:8d:c7:48:24:41:1e:
72:99:16:97:7a:9f:a3:4a:7f:dc:91:dc:5b:b0:b9:
18:e7:1d:34:50:14:e9:2f:ce:3e:0a:8b:6e:fa:96:
ff:c6:6e:1d:73:4d:1b:8b:3c:8c:2f:57:b9:12:ed:
3c:9c:b2:1e:72:71:f1:7d:91:02:cf:4c:5a:44:3f:
e8:ae:cf:00:58:28:3c:be:09:f1:cf:90:3c:10:2c:
7b:8b:18:0c:25:54:09:1d:5a:17:68:ad:c9:3b:66:
53:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:76:1D:DF:9D:40:D7:3C:E3:83:39:BB:07:6A:D0:15:CF:B2:26:C7
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/W3Yd351A1zzjgzm7B2rQFc-yJsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.254.38.0/23
Signature Algorithm: sha256WithRSAEncryption
75:f8:51:91:64:26:1f:75:d5:a2:83:52:6a:35:6b:f3:24:a9:
ce:62:b4:0e:c3:db:87:49:d2:49:5f:34:06:b6:71:7b:60:56:
1f:47:76:ff:b1:76:da:f8:bb:e8:98:00:5b:c8:65:e5:0e:2d:
37:11:1c:4f:0c:f6:c6:61:70:f4:bf:5d:a7:78:f4:ba:3b:8f:
ab:66:20:d0:90:62:5b:bf:59:95:4c:ef:e1:7e:6f:97:b8:43:
85:0e:04:4b:50:83:12:e5:24:1e:9f:3d:2d:69:a4:5b:98:8d:
cd:5e:88:94:58:b1:64:76:64:f0:1a:f4:b3:e3:46:ca:3d:f9:
49:4b:7d:e8:55:e8:db:c5:39:e1:94:93:33:7b:ee:87:f0:91:
2d:71:a9:3a:9e:7e:28:d2:16:26:dc:6b:1d:0b:68:3b:b2:11:
3e:5f:c4:4f:48:0b:a3:c7:e8:db:31:18:7b:29:e9:ad:86:11:
78:58:da:a6:ff:fb:9b:52:fd:36:80:38:7d:de:6e:93:a6:58:
20:ff:85:5b:df:08:3d:f3:ab:0e:35:8e:7b:8b:95:ec:bd:4d:
1f:38:66:ca:3c:00:5e:42:c1:86:bf:7b:cf:49:a0:7b:82:8d:
81:f1:a9:49:52:44:0a:36:a9:f5:a8:68:40:5d:3c:8c:73:79:
fa:18:7b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:45:58 2025 by rpki-client