Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/2bbcd4-edab-48ee-a411-28fc7063d952/1/gep7Q0zTJ4AXgj6-2dC5usuI9tY.roa
File: gep7Q0zTJ4AXgj6-2dC5usuI9tY.roa (raw, json)
Hash identifier: Oa9uxJiyp4SlaNRej+99QtU3TNYl0LIw4ucLz3N9O2M=
Subject key identifier: 81:EA:7B:43:4C:D3:27:80:17:82:3E:BE:D9:D0:B9:BA:CB:88:F6:D6
Certificate issuer: /CN=2890da765a999f719875c51eecf4c7d6148a1bd9
Certificate serial: 6EB6
Authority key identifier: 28:90:DA:76:5A:99:9F:71:98:75:C5:1E:EC:F4:C7:D6:14:8A:1B:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJDadlqZn3GYdcUe7PTH1hSKG9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/2bbcd4-edab-48ee-a411-28fc7063d952/1/gep7Q0zTJ4AXgj6-2dC5usuI9tY.roa
Signing time: Wed 06 Apr 2022 10:14:19 +0000
ROA not before: Wed 06 Apr 2022 10:14:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208339
IP address blocks: 45.143.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28342 (0x6eb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2890da765a999f719875c51eecf4c7d6148a1bd9
Validity
Not Before: Apr 6 10:14:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81ea7b434cd3278017823ebed9d0b9bacb88f6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e6:a7:a7:e7:cb:ea:94:fc:10:13:44:bc:58:
48:a3:ee:5b:77:d2:4f:29:1c:6a:78:05:47:b2:9c:
f9:26:ca:e0:cb:5d:d2:47:9c:2e:4c:87:35:ec:71:
a6:25:72:4e:56:5b:12:c4:53:b0:a0:ea:e7:ef:d1:
8e:dd:f2:80:6b:3a:24:52:d2:0a:79:9c:fe:4c:d3:
d4:44:c0:ad:80:f7:c0:87:0c:89:8f:c4:94:41:9d:
45:88:7a:1a:01:d3:e0:a0:80:c6:29:ac:4f:01:0a:
d0:da:6c:08:d7:7d:44:a1:f4:55:54:b5:40:b5:b9:
fd:c2:1f:11:56:b0:8a:54:9d:15:66:c6:93:6d:66:
04:04:94:73:9d:c3:d9:e6:32:26:f7:78:3b:6c:33:
67:0f:8a:23:74:49:7a:da:bc:52:af:6f:23:4f:d7:
cb:65:61:fb:4c:cb:99:5a:c4:73:10:af:de:1c:ce:
5f:5c:a0:20:c7:82:aa:54:a7:e1:c3:b2:87:db:c2:
f2:b6:3a:2e:9a:99:02:bb:1e:c3:67:16:f2:bf:08:
79:90:35:6c:d8:3b:ce:76:65:a2:ff:3a:b5:4f:21:
b0:f1:80:b7:d3:08:00:2c:af:80:ed:03:9a:dc:15:
59:c6:88:8a:8c:89:5f:40:af:84:be:4f:7d:5a:b0:
20:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EA:7B:43:4C:D3:27:80:17:82:3E:BE:D9:D0:B9:BA:CB:88:F6:D6
X509v3 Authority Key Identifier:
keyid:28:90:DA:76:5A:99:9F:71:98:75:C5:1E:EC:F4:C7:D6:14:8A:1B:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJDadlqZn3GYdcUe7PTH1hSKG9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2bbcd4-edab-48ee-a411-28fc7063d952/1/gep7Q0zTJ4AXgj6-2dC5usuI9tY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2bbcd4-edab-48ee-a411-28fc7063d952/1/KJDadlqZn3GYdcUe7PTH1hSKG9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.204.0/22
Signature Algorithm: sha256WithRSAEncryption
25:87:ef:5b:17:43:c8:58:fc:df:2c:11:d4:9d:f5:e9:ed:9e:
76:cc:98:68:3f:81:a0:42:bb:80:bd:49:8a:06:86:62:d8:bb:
58:10:07:62:00:54:7f:14:a1:20:c1:74:b2:c9:2d:59:a2:14:
f6:90:9b:1f:b8:9c:b8:9d:26:e5:3f:09:35:5e:67:41:54:ac:
ec:91:96:d6:ce:63:2f:8b:49:39:c5:a0:11:f5:7c:a3:41:af:
5d:ae:2b:da:fa:10:1b:6b:d4:4a:aa:14:9b:1f:e9:a4:38:a9:
55:f2:10:cb:f1:c2:92:ab:b8:e2:bc:7b:a5:3d:c2:04:6d:4b:
74:1d:7f:95:35:3f:17:62:dc:ad:c5:79:94:27:db:72:6b:1e:
ec:89:b4:d8:3a:36:30:66:48:bb:61:51:34:b3:86:20:b8:28:
7c:1a:55:d9:c2:d6:71:19:59:ac:1d:67:f1:c4:90:32:1a:d7:
ba:b7:dc:3e:81:50:70:e7:93:7c:c5:ec:9e:d2:7e:c6:d9:ba:
ee:5f:1a:19:7e:c3:1f:ce:ec:63:02:77:48:d5:81:2c:d1:69:
b4:3f:73:5f:be:9c:4f:b4:70:55:1b:54:65:51:63:eb:cb:e4:
2c:2a:7e:71:8a:6c:22:7f:09:42:10:5e:7b:9a:51:ae:92:95:
42:32:58:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:19 2025 by rpki-client