Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/_5LDrsfz-dVSmPRNfXQqpmtuAhA.roa
File: _5LDrsfz-dVSmPRNfXQqpmtuAhA.roa (raw, json)
Hash identifier: IHXH5LEacGxsYV907Js5lqHkhNTIqr9AVN0APbmAYVc=
Subject key identifier: FF:92:C3:AE:C7:F3:F9:D5:52:98:F4:4D:7D:74:2A:A6:6B:6E:02:10
Certificate issuer: /CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Certificate serial: 01850FBAD9415B72281819A2BABEC0D0FEA5
Authority key identifier: BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/_5LDrsfz-dVSmPRNfXQqpmtuAhA.roa
Signing time: Wed 14 Dec 2022 08:23:01 +0000
ROA not before: Wed 14 Dec 2022 08:23:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 45.132.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0f:ba:d9:41:5b:72:28:18:19:a2:ba:be:c0:d0:fe:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Validity
Not Before: Dec 14 08:23:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff92c3aec7f3f9d55298f44d7d742aa66b6e0210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6c:9f:7f:a8:e6:f9:ac:1b:40:27:04:45:65:
26:b1:cc:48:4e:1a:65:68:d5:84:32:73:3e:3a:48:
6f:d0:e1:44:d1:57:ca:f4:2a:64:61:cd:b7:4a:c5:
85:dc:24:5f:e7:4f:cb:66:13:25:0e:49:94:cd:06:
cb:7d:55:dd:dd:c3:99:54:3f:6c:97:95:a8:07:5b:
85:72:b5:21:77:7d:76:2e:2b:d8:65:60:f4:f2:9d:
73:c8:5b:09:3d:d8:44:d4:e3:44:34:89:ba:e1:d9:
ce:ce:2d:ef:9d:c8:22:6e:13:a5:d9:44:30:0b:06:
09:8e:4e:c5:18:67:ce:8d:de:36:ac:8b:da:a1:b4:
1e:0c:17:c5:b7:e5:19:e7:63:3f:d6:7a:b4:58:16:
e5:c4:12:9a:5b:cd:7b:ce:62:84:dd:98:1c:0a:12:
50:bd:06:2c:ef:43:4b:e3:c0:f1:9c:06:a4:03:04:
82:e1:ef:4e:97:68:a0:2b:be:23:89:48:01:f9:af:
8a:d5:a9:16:2b:79:70:e7:12:52:66:92:c5:8a:1d:
b0:e0:c3:32:9c:3a:97:31:b3:a0:bb:24:d9:32:3d:
c0:16:6b:35:d5:91:a6:7c:78:78:7d:ff:c3:09:2a:
4d:99:a4:3c:d0:be:09:0a:f4:a9:db:b7:3c:6b:24:
a0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:92:C3:AE:C7:F3:F9:D5:52:98:F4:4D:7D:74:2A:A6:6B:6E:02:10
X509v3 Authority Key Identifier:
keyid:BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/_5LDrsfz-dVSmPRNfXQqpmtuAhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/uqp7TAHpKcOJI5gatRyXJ6H58H4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.227.0/24
Signature Algorithm: sha256WithRSAEncryption
63:15:b9:cb:47:2e:40:06:00:ae:a3:bb:ff:f4:11:24:2d:7a:
c3:8b:9f:41:bb:de:a7:a8:6d:8c:48:d6:86:21:8b:95:87:ad:
7e:b0:88:57:e0:d1:f9:84:b1:be:62:0d:e9:03:87:d8:8f:11:
6d:1f:07:fc:54:a9:31:1b:6c:62:4a:11:8d:f3:ae:85:e1:f5:
95:73:26:dc:cb:f8:6b:ed:9e:e8:4a:da:d1:6c:cd:05:8f:72:
ef:d8:ee:51:4b:c3:67:56:fc:36:ef:f6:5e:60:91:24:01:c3:
6c:58:99:9c:54:3a:53:92:2e:bd:78:bd:62:61:88:fd:2b:5d:
08:a5:f8:7e:3e:77:da:11:a6:dc:25:22:10:ba:02:50:fb:2c:
0f:d8:6c:23:02:63:d2:c0:ce:3d:b8:d8:49:4d:f0:3a:45:ab:
99:c3:79:76:35:21:18:49:27:3b:7b:a4:82:10:ad:24:8d:4b:
6d:a6:aa:90:37:87:38:c4:4d:23:09:a9:ee:1c:4b:d6:10:0e:
e0:14:57:f0:ee:44:0b:af:17:c6:6a:11:71:b8:68:53:c6:df:
51:06:ad:3b:b3:d7:79:23:78:62:32:51:2f:68:74:48:d4:96:
56:73:01:7c:3a:0a:10:9b:de:b8:bd:04:eb:36:53:32:5b:9a:
5a:ba:4d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:42:07 2025 by rpki-client