Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/vNwmT7DtOEPfNWcHuwAR0tFIbYc.roa
File: vNwmT7DtOEPfNWcHuwAR0tFIbYc.roa (raw, json)
Hash identifier: e8wRQO/jLJuCFRwcp5FwTbaDgu/EmAyoehfUUPgEonc=
Subject key identifier: BC:DC:26:4F:B0:ED:38:43:DF:35:67:07:BB:00:11:D2:D1:48:6D:87
Certificate issuer: /CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Certificate serial: 0187E62E613E6D0E9E414A2A5D025E4C6DA6
Authority key identifier: 71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/vNwmT7DtOEPfNWcHuwAR0tFIbYc.roa
Signing time: Thu 04 May 2023 09:53:31 +0000
ROA not before: Thu 04 May 2023 09:53:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198740
IP address blocks: 45.8.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e6:2e:61:3e:6d:0e:9e:41:4a:2a:5d:02:5e:4c:6d:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71bddeaf0f30fbdaf9e75b92ac7d5bd13f285de7
Validity
Not Before: May 4 09:53:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcdc264fb0ed3843df356707bb0011d2d1486d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:92:a8:7a:dc:ab:8d:60:8a:29:24:bb:1e:66:
05:c1:a9:b4:78:84:48:d6:ab:ac:e8:e6:31:e2:63:
4b:cd:53:54:08:64:fa:a2:0c:fa:a4:8b:90:13:0e:
1b:a8:df:54:39:c9:16:91:13:db:cf:9d:93:c2:27:
a4:dd:fd:ba:78:fe:c2:7a:cb:95:b5:e7:18:7f:ba:
00:9d:fe:2a:39:44:94:83:22:7e:d9:0c:e3:38:38:
51:ea:56:51:13:36:3a:01:22:fb:83:34:0b:bb:60:
58:48:14:5b:42:0b:a0:77:93:ec:1c:36:94:6d:69:
b2:93:21:d9:d4:1a:4a:4a:0d:66:2d:0c:a8:c1:e5:
25:ea:d2:a3:37:1d:fa:cc:9e:7b:64:1c:12:bd:d7:
ce:84:8d:18:ed:25:0b:7d:0e:74:aa:a3:9e:23:92:
a9:b2:30:dc:59:4a:14:e4:41:97:ba:77:04:ba:8c:
ee:4d:0a:f1:1b:4d:42:e5:b9:c3:9a:9d:7a:25:9c:
fc:ed:c0:4c:4d:7a:03:a3:f8:39:df:c8:c7:f1:a9:
16:a1:6a:e0:97:da:c2:75:47:2b:6d:50:5d:1a:64:
9e:7a:42:c3:10:9e:eb:e0:ac:79:e7:24:6f:14:ac:
eb:a6:19:c0:3d:e6:cf:66:d3:03:ee:5f:04:cf:b6:
b0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:DC:26:4F:B0:ED:38:43:DF:35:67:07:BB:00:11:D2:D1:48:6D:87
X509v3 Authority Key Identifier:
keyid:71:BD:DE:AF:0F:30:FB:DA:F9:E7:5B:92:AC:7D:5B:D1:3F:28:5D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb3erw8w-9r551uSrH1b0T8oXec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/vNwmT7DtOEPfNWcHuwAR0tFIbYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/814ec5-9e41-4b5a-a6fe-477231191a35/1/cb3erw8w-9r551uSrH1b0T8oXec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.177.0/24
Signature Algorithm: sha256WithRSAEncryption
af:3e:c5:f9:a4:7b:2c:74:a0:74:7e:cb:77:13:d5:7c:bd:64:
0e:8f:62:b0:de:c8:78:c9:66:1a:8e:e2:c5:2c:19:c0:84:d3:
d9:ba:29:e7:12:fc:25:18:b6:5c:6b:b7:08:07:ed:c5:fb:44:
2e:42:f1:df:95:1d:63:05:a1:77:90:10:7b:11:6e:89:ae:5c:
ff:9e:8f:ac:7b:d4:80:a3:19:48:f8:92:b7:39:bf:42:16:f9:
b9:88:19:fa:2a:b2:f1:80:f7:69:42:9a:bb:33:af:d3:9e:5b:
d0:ef:2f:82:a7:21:c3:fe:f2:f0:64:a6:13:0c:b8:5b:7c:2e:
d0:1e:8c:a4:6a:ee:87:1a:9c:50:57:62:e4:54:57:50:05:83:
15:af:2d:20:2a:3e:80:af:39:cb:b2:a1:d8:7f:5b:a5:ff:3e:
a4:f4:7f:45:d8:5c:40:d9:cf:ef:30:01:9f:55:03:dc:d8:8b:
85:0c:c6:2d:c2:12:b7:72:31:b8:c2:13:75:b9:e9:69:03:a8:
34:b0:e5:14:04:2f:ae:68:05:3b:a7:0a:02:ef:4c:5b:28:5c:
1d:0c:30:93:b7:ce:53:dd:32:f0:6b:e9:e7:8b:fc:f7:b7:55:
04:33:be:8b:e6:5d:30:2a:0b:ab:3e:2e:2c:d2:77:76:e9:db:
5b:d8:a9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:04 2025 by rpki-client