Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/G8TOiCaSx-k0KnIl2mhIm3MPwoo.roa
File: G8TOiCaSx-k0KnIl2mhIm3MPwoo.roa (raw, json)
Hash identifier: qRtmMlsNDoKghyD8hXPmstzrBjN0uO1yJ4u179rw+cQ=
Subject key identifier: 1B:C4:CE:88:26:92:C7:E9:34:2A:72:25:DA:68:48:9B:73:0F:C2:8A
Certificate issuer: /CN=a33eec03ea122713278b4066ecf2bfeaa1563c0d
Certificate serial: 025A7028
Authority key identifier: A3:3E:EC:03:EA:12:27:13:27:8B:40:66:EC:F2:BF:EA:A1:56:3C:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oz7sA-oSJxMni0Bm7PK_6qFWPA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/G8TOiCaSx-k0KnIl2mhIm3MPwoo.roa
Signing time: Sat 01 Jan 2022 05:04:43 +0000
ROA not before: Sat 01 Jan 2022 05:04:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208933
IP address blocks: 45.15.30.0/23 maxlen: 23
45.15.28.0/22 maxlen: 22
45.15.28.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39481384 (0x25a7028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a33eec03ea122713278b4066ecf2bfeaa1563c0d
Validity
Not Before: Jan 1 05:04:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bc4ce882692c7e9342a7225da68489b730fc28a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cd:26:84:df:f1:0d:4b:87:5f:86:14:9a:7a:
92:f9:82:4e:38:ea:6f:bd:43:73:25:47:4c:5a:03:
b8:fd:48:03:5a:1d:b4:9f:75:35:95:4b:0d:69:ba:
80:1e:54:99:1d:c0:53:8c:89:71:a1:e6:cb:11:0e:
d2:29:69:90:24:03:7c:04:e0:7d:17:ab:3e:90:fe:
84:3f:47:be:69:b3:99:c8:00:fc:d8:95:18:31:5d:
ec:bf:72:1d:95:c8:b5:f9:c2:e1:41:40:92:bb:02:
29:fa:51:a7:6f:a9:40:73:bc:38:01:91:30:5c:37:
48:eb:ff:19:39:22:66:6f:f0:e4:91:d3:09:9f:15:
83:6f:c7:65:43:ac:74:11:e5:a6:53:c3:f8:f8:fa:
19:15:3f:63:20:19:21:43:48:bc:f8:da:ce:0d:32:
68:a5:fa:4e:a5:1e:73:91:b9:66:88:8c:03:62:cc:
b1:32:8a:d0:13:2e:ff:7e:ff:b0:fd:80:9c:86:70:
53:25:5a:e8:ce:cc:da:68:02:cd:10:d4:f7:e0:e9:
49:d4:9f:97:c8:e8:78:5c:ff:71:ae:05:b0:a2:f7:
91:98:f9:80:2e:14:a2:60:5c:6a:53:75:20:64:ac:
b8:76:b3:e0:93:86:1a:9a:48:2f:4a:e8:8d:fe:5e:
88:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C4:CE:88:26:92:C7:E9:34:2A:72:25:DA:68:48:9B:73:0F:C2:8A
X509v3 Authority Key Identifier:
keyid:A3:3E:EC:03:EA:12:27:13:27:8B:40:66:EC:F2:BF:EA:A1:56:3C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oz7sA-oSJxMni0Bm7PK_6qFWPA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/G8TOiCaSx-k0KnIl2mhIm3MPwoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/oz7sA-oSJxMni0Bm7PK_6qFWPA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.28.0/22
Signature Algorithm: sha256WithRSAEncryption
35:a6:4d:12:2f:46:00:cb:a6:2a:31:a6:d7:75:e9:d4:5e:6a:
30:65:29:08:1d:a5:80:72:b9:c8:61:37:79:2c:86:17:dd:7f:
0c:7f:7d:f5:fc:52:2d:86:af:e6:15:13:b8:92:61:23:26:52:
39:24:78:a2:36:7c:46:e4:aa:6e:fb:ea:e1:f7:d4:5c:fb:45:
39:a2:5a:c1:c7:b8:3a:c6:38:04:68:11:d2:e3:a0:b6:a8:7d:
7c:a4:0e:0b:86:95:d2:af:c7:ce:f7:7b:18:75:0f:bb:0a:6d:
9a:50:d8:63:7e:24:84:9a:07:f5:5e:34:fb:c5:79:98:9e:1a:
4b:24:54:e5:42:0b:3e:79:9c:b1:35:1b:72:d2:e5:41:07:9f:
e3:82:ca:09:96:2f:ae:b0:ab:c8:c8:6a:4e:61:34:b6:7f:c4:
36:32:9e:7c:b8:51:33:bc:64:4f:ea:5c:69:cb:21:e4:3d:87:
50:56:6b:71:16:1a:b7:8f:04:4d:e3:0e:19:e4:66:89:73:94:
d7:ff:90:16:a0:37:ac:af:19:a3:1a:e5:89:77:b1:01:49:95:
3e:a3:d7:cc:78:b9:b3:b7:f3:52:47:86:92:91:fa:ff:3b:c8:
ce:74:fa:7a:ba:11:67:20:e5:b2:72:e3:3b:34:d4:30:1b:ba:
ab:00:66:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:57:04 2025 by rpki-client