Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3298e3-9a50-4cfb-84e6-d137ade166d1/1/RSJBSny1FM3BiRkv5d3mwwfjpkk.roa
File: RSJBSny1FM3BiRkv5d3mwwfjpkk.roa (raw, json)
Hash identifier: xTBMGT4yV7SuvcQdHtXby7ef5WrJZZYJlkeEYkb0OQ4=
Subject key identifier: 45:22:41:4A:7C:B5:14:CD:C1:89:19:2F:E5:DD:E6:C3:07:E3:A6:49
Certificate issuer: /CN=706d64134faa746293c0384edac0371950f3b224
Certificate serial: 11403A38
Authority key identifier: 70:6D:64:13:4F:AA:74:62:93:C0:38:4E:DA:C0:37:19:50:F3:B2:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG1kE0-qdGKTwDhO2sA3GVDzsiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/3298e3-9a50-4cfb-84e6-d137ade166d1/1/RSJBSny1FM3BiRkv5d3mwwfjpkk.roa
Signing time: Sat 01 Jan 2022 09:56:25 +0000
ROA not before: Sat 01 Jan 2022 09:56:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 18212
IP address blocks: 45.90.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 289421880 (0x11403a38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d64134faa746293c0384edac0371950f3b224
Validity
Not Before: Jan 1 09:56:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4522414a7cb514cdc189192fe5dde6c307e3a649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f3:40:30:c3:95:d2:3a:73:05:84:b5:68:b5:
3e:da:39:74:23:0a:71:3b:45:f9:1e:18:cd:f7:56:
97:13:1b:53:16:27:15:44:c8:8d:89:a6:6d:67:71:
46:61:cb:9a:ed:a3:cd:6a:db:fc:3f:fa:d3:19:03:
21:c0:ee:2a:4c:bc:06:05:2c:03:f8:73:15:18:7a:
33:2b:02:61:1e:09:a9:26:46:23:2f:7a:2c:70:eb:
58:7d:bb:d0:e8:49:55:44:47:68:49:e1:4d:39:0d:
4a:f2:1a:53:05:1c:19:c9:f4:54:8b:76:76:6a:fb:
68:b0:c0:9c:78:3b:89:72:6d:ad:a3:4c:2f:a4:a1:
1c:72:3d:33:d6:d2:11:ff:c1:2e:ab:ca:fa:6b:3e:
c8:fe:22:13:58:7a:60:90:2d:1e:0e:95:e9:2b:b6:
5e:cc:83:da:78:6f:43:e5:73:ef:2d:d8:f2:97:cd:
45:21:77:1d:3d:ab:46:bf:4c:88:ee:50:f8:b8:81:
2d:9b:f1:e9:69:6d:a6:cd:3e:55:aa:3d:71:81:d7:
1e:b8:ef:11:5e:74:05:b1:47:5c:84:83:3d:bf:9a:
46:7a:ab:63:a4:8b:c8:fb:38:c0:2c:3f:0e:04:ac:
33:0e:7e:03:b5:36:0c:5c:8f:c0:5a:bf:32:63:23:
58:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:22:41:4A:7C:B5:14:CD:C1:89:19:2F:E5:DD:E6:C3:07:E3:A6:49
X509v3 Authority Key Identifier:
keyid:70:6D:64:13:4F:AA:74:62:93:C0:38:4E:DA:C0:37:19:50:F3:B2:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG1kE0-qdGKTwDhO2sA3GVDzsiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3298e3-9a50-4cfb-84e6-d137ade166d1/1/RSJBSny1FM3BiRkv5d3mwwfjpkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3298e3-9a50-4cfb-84e6-d137ade166d1/1/cG1kE0-qdGKTwDhO2sA3GVDzsiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.40.0/24
Signature Algorithm: sha256WithRSAEncryption
66:34:a5:6c:56:5d:d5:3b:19:89:cd:6b:dd:28:b2:6b:b0:40:
19:ff:11:98:d5:8e:54:78:b9:2b:f8:3a:73:73:99:73:18:5a:
67:d3:fd:d7:49:99:ac:af:89:73:b7:30:f5:c6:8b:bd:4c:db:
c3:05:2b:3b:de:3f:71:f7:a3:55:61:73:e9:9e:11:d0:91:3d:
e2:13:4e:55:eb:89:3f:33:c0:6c:50:9a:ce:20:b9:75:5d:7f:
1d:a3:c7:24:fd:1a:a4:cf:30:a3:39:de:00:74:c8:45:dc:07:
94:60:f3:95:57:db:49:6e:c4:f5:54:71:6e:f8:c5:96:ff:6b:
d9:1d:44:e0:25:e9:a6:a7:c2:d7:82:d3:5c:7e:8e:f9:08:15:
81:1a:fc:99:69:34:e5:0a:18:dd:a6:44:e1:f4:bf:1e:dc:83:
13:3e:ba:e7:93:b4:07:58:6d:c5:92:9f:73:63:f0:e8:52:01:
d1:87:35:73:0b:27:68:51:e8:96:1e:85:0f:7b:c5:ac:a4:94:
1d:bc:67:6e:ed:86:57:9e:5a:59:7d:52:18:0d:6e:fb:77:c1:
3a:2c:02:e6:93:88:c6:36:ef:7d:db:5c:10:38:d5:89:d5:6f:
9e:b6:4f:07:37:38:60:46:3c:56:01:e9:4f:e8:8c:40:f8:f0:
88:02:3c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:40:28 2025 by rpki-client