Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/tP_uKPq8mLzEN3uBUCHHgywGZAU.roa
File: tP_uKPq8mLzEN3uBUCHHgywGZAU.roa (raw, json)
Hash identifier: RBY//oe/oCkbNFXYwIwJqjrMRclnQKn3ppI5we60XXc=
Subject key identifier: B4:FF:EE:28:FA:BC:98:BC:C4:37:7B:81:50:21:C7:83:2C:06:64:05
Certificate issuer: /CN=caaee579e013218f571386413e2c5b2bc245a836
Certificate serial: 055DF160
Authority key identifier: CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/tP_uKPq8mLzEN3uBUCHHgywGZAU.roa
Signing time: Tue 14 Jun 2022 08:17:51 +0000
ROA not before: Tue 14 Jun 2022 08:17:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208349
IP address blocks: 31.10.7.0/24 maxlen: 24
77.105.156.0/24 maxlen: 24
185.31.133.0/24 maxlen: 24
45.134.125.0/24 maxlen: 24
45.134.124.0/22 maxlen: 22
45.134.124.0/24 maxlen: 24
45.134.127.0/24 maxlen: 24
45.134.126.0/24 maxlen: 24
2a0e:7e40::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90042720 (0x55df160)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caaee579e013218f571386413e2c5b2bc245a836
Validity
Not Before: Jun 14 08:17:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4ffee28fabc98bcc4377b815021c7832c066405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:32:37:6d:4b:f0:78:a5:3d:29:36:80:d9:1c:
2b:99:fa:ab:da:54:8b:a4:e2:df:3f:09:e8:2c:ca:
b0:68:53:c7:0f:e3:e5:a9:25:1b:30:1f:76:12:e9:
7a:fe:a9:83:3b:d0:52:07:fb:a8:52:dc:c7:0a:2d:
3e:fc:ad:d8:a8:3f:2a:ae:e5:2f:e3:56:83:a8:9d:
16:b9:54:f3:f3:5e:a3:f7:11:56:d8:69:52:d4:9b:
2d:20:9f:95:51:3d:ff:51:d0:d4:7e:e4:30:4a:4f:
5a:ea:89:75:17:4a:c8:c6:e6:90:f9:79:2e:bd:d1:
2e:65:5d:57:e0:b7:9a:a7:2e:2a:0e:85:91:a4:59:
72:c0:20:22:31:a7:5a:97:ac:06:5d:e7:b8:e0:39:
60:cb:41:46:67:78:58:e0:9b:ff:d4:06:6e:b9:f3:
26:95:61:02:23:42:68:5c:8d:09:07:88:dc:4f:fd:
3c:1a:97:bc:b3:e9:a6:16:cd:06:4f:b9:8c:76:18:
21:4f:c6:b6:e7:cd:66:99:c1:79:e5:0b:d8:ae:41:
e5:dd:68:69:ea:3d:eb:11:48:20:b4:ed:88:a1:1a:
e9:16:e1:53:7d:cf:99:6d:f5:8d:91:8c:fb:c5:6e:
d4:82:bb:cf:75:31:ca:79:10:25:16:aa:ca:60:2d:
24:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:FF:EE:28:FA:BC:98:BC:C4:37:7B:81:50:21:C7:83:2C:06:64:05
X509v3 Authority Key Identifier:
keyid:CA:AE:E5:79:E0:13:21:8F:57:13:86:41:3E:2C:5B:2B:C2:45:A8:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yq7leeATIY9XE4ZBPixbK8JFqDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/tP_uKPq8mLzEN3uBUCHHgywGZAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/759874-e7f2-45fd-819d-a5d1148f25bd/1/yq7leeATIY9XE4ZBPixbK8JFqDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.7.0/24
45.134.124.0/22
77.105.156.0/24
185.31.133.0/24
IPv6:
2a0e:7e40::/29
Signature Algorithm: sha256WithRSAEncryption
43:a1:3e:8c:d0:a0:52:92:5b:b4:67:42:d0:5e:c5:a8:b6:e1:
22:d5:5d:c8:c0:61:2e:d8:a2:04:cd:34:ea:66:a5:50:92:bb:
d5:95:c7:24:1c:ee:b1:04:d0:f6:48:1b:f0:26:f6:66:10:79:
4e:55:f6:3b:90:fe:4b:43:af:cf:99:f2:7f:a1:e2:b7:6b:8c:
9c:33:dc:33:ea:d5:b4:ac:47:3d:12:e6:7c:ff:e5:88:03:89:
3c:16:8a:4b:01:dd:44:08:e3:f2:2d:54:ca:b6:df:e5:5e:d1:
b4:76:35:88:c8:4c:29:27:ea:b6:29:a0:93:4b:3b:7d:e9:71:
79:7d:ad:f2:d9:58:ac:7a:9b:50:bb:7b:07:55:4c:61:3d:88:
80:ae:27:57:72:47:73:1a:1c:8b:2d:cc:e5:f6:0d:51:e9:51:
a8:a1:0f:b3:88:00:cf:fc:44:54:2d:5f:b3:63:a4:49:fb:29:
25:e2:4b:5e:67:4e:ec:e1:41:11:72:87:67:7b:f6:0d:5c:35:
4e:70:75:33:e3:95:49:1e:4e:c3:f2:73:4b:fd:33:87:2d:c6:
89:46:9e:05:19:0c:c7:ef:34:ab:e0:e1:4c:c7:63:84:90:6f:
3d:9b:32:c7:22:01:d3:ef:02:44:16:66:b8:1f:b8:de:d5:b0:
72:42:65:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:51:47 2025 by rpki-client