Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2c57e5-402b-4896-929f-54341cd13a9d/1/sNvmMHBI03RmaKxYRY4ghLcvmkY.roa
File: sNvmMHBI03RmaKxYRY4ghLcvmkY.roa (raw, json)
Hash identifier: Avh0SMMTcUSS0q+bw/fmqjIHU1xsOR+bjmgTR4Ti3aQ=
Subject key identifier: B0:DB:E6:30:70:48:D3:74:66:68:AC:58:45:8E:20:84:B7:2F:9A:46
Certificate issuer: /CN=edee25a78a816bde362c40c86e39b947d0ee2ff3
Certificate serial: 03E8CE13
Authority key identifier: ED:EE:25:A7:8A:81:6B:DE:36:2C:40:C8:6E:39:B9:47:D0:EE:2F:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7e4lp4qBa942LEDIbjm5R9DuL_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2c57e5-402b-4896-929f-54341cd13a9d/1/sNvmMHBI03RmaKxYRY4ghLcvmkY.roa
Signing time: Sat 01 Jan 2022 14:56:42 +0000
ROA not before: Sat 01 Jan 2022 14:56:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201800
IP address blocks: 45.159.104.0/22 maxlen: 24
188.68.188.0/24 maxlen: 24
188.68.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65588755 (0x3e8ce13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edee25a78a816bde362c40c86e39b947d0ee2ff3
Validity
Not Before: Jan 1 14:56:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0dbe6307048d3746668ac58458e2084b72f9a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:63:24:a5:e6:ea:50:d5:c2:ec:a2:ab:0e:ee:
e2:0c:fe:06:05:0c:89:cd:a7:e1:03:44:72:fd:b8:
cf:8b:fe:36:b7:80:1e:3e:21:6d:2d:7d:73:01:d8:
f8:6e:38:3b:92:35:09:d7:e7:c5:90:78:b7:38:70:
40:b9:7c:62:2e:e8:77:c1:f8:bb:b4:0f:85:42:ef:
2a:e9:25:2f:18:d6:a0:3f:50:b9:c1:04:36:ad:68:
8c:d6:3c:1f:d7:a6:9d:a5:d5:29:61:79:7a:b9:c7:
c0:ac:70:f0:5f:74:be:4e:9f:85:b3:2e:6a:0f:c1:
85:a6:c5:5e:05:6e:2d:ca:06:a0:e2:ab:00:cc:30:
2b:3f:95:a3:d4:bc:f1:da:1a:38:f2:bc:79:84:ea:
b7:96:e0:0a:ed:d4:78:28:9b:82:46:83:a2:12:22:
f2:6e:62:5e:3c:8d:e2:11:f1:5d:33:cf:c2:c2:0d:
71:b6:ca:b4:cd:81:60:ba:51:d9:ca:e0:c9:2e:c5:
e3:e1:d0:fe:eb:01:62:95:a9:24:09:9e:43:27:4a:
a2:bf:79:7f:86:9b:b4:78:9a:5b:e4:36:df:c9:e9:
a6:b8:e2:fe:6e:66:76:50:dd:09:ed:e6:26:d2:40:
bc:22:b5:dd:62:af:2e:87:e8:81:4d:08:91:b6:17:
0e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:DB:E6:30:70:48:D3:74:66:68:AC:58:45:8E:20:84:B7:2F:9A:46
X509v3 Authority Key Identifier:
keyid:ED:EE:25:A7:8A:81:6B:DE:36:2C:40:C8:6E:39:B9:47:D0:EE:2F:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e4lp4qBa942LEDIbjm5R9DuL_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2c57e5-402b-4896-929f-54341cd13a9d/1/sNvmMHBI03RmaKxYRY4ghLcvmkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2c57e5-402b-4896-929f-54341cd13a9d/1/7e4lp4qBa942LEDIbjm5R9DuL_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.104.0/22
188.68.188.0/24
188.68.191.0/24
Signature Algorithm: sha256WithRSAEncryption
26:45:79:d2:04:f4:0d:87:50:e3:52:86:1b:97:8c:07:66:6a:
27:94:af:ab:15:65:24:76:b2:43:91:b7:cd:5c:ab:df:df:23:
c0:ab:69:0d:49:ee:03:2a:23:ea:94:45:b2:4a:70:7e:c9:7c:
81:0e:3f:3e:b4:8c:c2:15:de:7b:bf:4b:22:da:e8:24:ad:f4:
32:4a:77:2c:1f:aa:f2:c1:ba:8b:36:1b:4c:33:8f:80:13:84:
73:91:87:cc:d3:e0:a3:b1:ba:46:ae:2e:16:2b:57:75:66:dc:
b4:06:10:07:44:ee:76:5b:68:15:7f:41:b8:96:6a:69:10:42:
da:e0:f3:0a:76:e8:d9:8d:59:fb:d0:66:c4:17:f1:20:c9:6b:
75:51:9d:f6:90:68:ec:66:73:17:80:f7:75:57:d8:da:8b:70:
5b:27:30:e2:0a:ad:55:c0:10:80:a6:12:0d:2b:b4:8d:af:4b:
94:f2:3d:38:98:2d:18:de:03:49:ac:2e:4d:71:27:25:0b:51:
32:41:97:6a:5e:e5:c2:ee:2c:82:c3:66:77:e6:b3:f7:9a:4f:
e6:43:77:e1:36:5b:b8:de:53:99:25:1c:ea:6f:ef:01:fa:01:
60:ef:5d:e4:86:55:a2:d8:4a:34:bf:75:b0:73:62:1d:2d:f5:
f2:51:bb:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:47:09 2025 by rpki-client