Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/bxvvISHRMvAtQquaCuUFZ3Ecs6Y.roa
File: bxvvISHRMvAtQquaCuUFZ3Ecs6Y.roa (raw, json)
Hash identifier: FzFGNmw4tNeeFZazkEKEg6cECYlWibtO+5tk4kPPjqw=
Subject key identifier: 6F:1B:EF:21:21:D1:32:F0:2D:42:AB:9A:0A:E5:05:67:71:1C:B3:A6
Certificate issuer: /CN=aaf4969842de9c4c1e1a5759d98d1ed5c0d62ef8
Certificate serial: 02C6B2DD
Authority key identifier: AA:F4:96:98:42:DE:9C:4C:1E:1A:57:59:D9:8D:1E:D5:C0:D6:2E:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qvSWmELenEweGldZ2Y0e1cDWLvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/bxvvISHRMvAtQquaCuUFZ3Ecs6Y.roa
Signing time: Sat 01 Jan 2022 06:05:56 +0000
ROA not before: Sat 01 Jan 2022 06:05:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50046
IP address blocks: 45.152.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46576349 (0x2c6b2dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf4969842de9c4c1e1a5759d98d1ed5c0d62ef8
Validity
Not Before: Jan 1 06:05:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f1bef2121d132f02d42ab9a0ae50567711cb3a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6a:44:d9:3a:2c:b2:dc:84:d4:6c:8b:18:be:
02:5b:bf:e9:e3:7d:e5:7f:0d:26:41:fa:6a:f3:4a:
70:0b:3d:a8:47:e3:61:d5:cd:a4:34:ef:f8:d3:88:
72:be:43:b0:0c:dd:5a:ce:6e:e9:6a:ab:e6:ba:db:
fc:4d:1d:7c:2a:98:09:0d:1b:17:e0:bf:4d:2d:4a:
89:b3:b9:1e:fb:8d:f2:bd:d0:89:e9:bd:29:71:fc:
fb:2f:0b:96:ca:9f:60:dd:52:96:aa:30:5a:35:8f:
be:db:7c:8e:30:52:5d:4b:5a:2b:00:06:39:72:2c:
d3:4b:ca:29:77:03:d2:f4:dc:93:56:a2:d7:4c:29:
fc:88:4f:6d:bf:8e:20:4f:be:33:c6:20:1d:a2:7a:
09:f6:70:ec:1a:3a:ab:80:da:f3:d8:73:4f:3b:f2:
57:89:07:64:0a:48:90:47:a6:fd:b1:71:69:28:55:
82:8b:f8:e2:7e:84:44:b9:7f:0c:cf:e5:97:e4:3f:
56:53:5d:ea:d3:93:6b:6a:d9:64:fc:71:14:89:73:
e0:d4:c4:af:f8:32:43:f8:a6:04:a6:b5:92:de:df:
dc:e3:90:91:ec:6d:5b:80:59:30:89:c6:2a:73:44:
e4:cb:6e:5c:88:7f:6e:44:78:0b:c6:6f:ff:1b:ed:
99:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:1B:EF:21:21:D1:32:F0:2D:42:AB:9A:0A:E5:05:67:71:1C:B3:A6
X509v3 Authority Key Identifier:
keyid:AA:F4:96:98:42:DE:9C:4C:1E:1A:57:59:D9:8D:1E:D5:C0:D6:2E:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qvSWmELenEweGldZ2Y0e1cDWLvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/bxvvISHRMvAtQquaCuUFZ3Ecs6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/720f9f-f0b8-44d2-8367-f81fdf74e655/1/qvSWmELenEweGldZ2Y0e1cDWLvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.70.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:94:81:a0:b8:ff:f4:9d:12:b1:cc:c1:d2:e6:7a:fc:31:2e:
a8:17:1a:a3:91:7f:99:7f:35:70:36:16:af:57:b3:d5:89:6b:
fb:32:85:5b:fe:81:3d:60:bf:c3:d3:91:f2:94:47:fa:ee:4e:
5a:82:29:a1:30:09:fe:d3:0b:9e:6a:99:31:46:c2:15:88:fb:
a8:9c:ba:e8:52:ec:04:70:68:f2:3b:89:63:38:0c:54:51:b0:
8c:de:2a:7a:21:83:48:19:3f:eb:14:2e:a5:c8:10:57:db:61:
aa:f3:ee:23:e5:71:53:66:2d:69:68:67:77:f3:88:e7:4b:f5:
db:2e:e8:17:f4:76:64:e6:a4:c5:83:44:f8:96:07:d3:ed:59:
9d:bb:39:0b:67:74:59:e1:3b:3d:f4:ec:0f:d9:40:37:ec:fb:
8b:58:26:cb:c0:10:a3:59:e0:94:1b:05:72:36:a3:3f:d3:04:
bf:ad:ce:91:5b:89:8a:ce:34:5f:83:37:38:f8:eb:18:34:37:
b5:83:98:dc:36:37:3b:55:fb:c2:6a:2e:08:6d:00:1e:cc:09:
c2:0c:d4:9e:56:a2:74:71:8b:27:b4:d8:bb:99:01:e0:7b:37:
3c:c5:08:51:0d:f7:ae:dd:e4:76:d4:2b:ab:84:c2:ee:77:51:
ff:4b:25:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:02:00 2025 by rpki-client