Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/ed501a-6ed7-452d-8c76-6bb4fee85735/1/I53lj-iqpQ_xCnjKN810ysB3Q24.roa
File: I53lj-iqpQ_xCnjKN810ysB3Q24.roa (raw, json)
Hash identifier: 2r8s6PkDjZWHd/Huksg+tVNauwnIAMBaa6+l0Kxz8ZE=
Subject key identifier: 23:9D:E5:8F:E8:AA:A5:0F:F1:0A:78:CA:37:CD:74:CA:C0:77:43:6E
Certificate issuer: /CN=0b3969cdc0b5ff09d199bca5daddb9aab51040e7
Certificate serial: 030D363A
Authority key identifier: 0B:39:69:CD:C0:B5:FF:09:D1:99:BC:A5:DA:DD:B9:AA:B5:10:40:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CzlpzcC1_wnRmbyl2t25qrUQQOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/ed501a-6ed7-452d-8c76-6bb4fee85735/1/I53lj-iqpQ_xCnjKN810ysB3Q24.roa
Signing time: Sat 01 Jan 2022 03:01:42 +0000
ROA not before: Sat 01 Jan 2022 03:01:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35112
IP address blocks: 45.8.125.0/24 maxlen: 24
45.8.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51197498 (0x30d363a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b3969cdc0b5ff09d199bca5daddb9aab51040e7
Validity
Not Before: Jan 1 03:01:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=239de58fe8aaa50ff10a78ca37cd74cac077436e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:70:e1:16:2e:f0:3d:11:81:80:96:8d:6b:11:
2f:30:94:77:2e:13:22:b5:6d:aa:7d:c6:fb:d5:9f:
33:30:c1:3d:a3:d5:80:27:6b:12:98:a1:33:02:37:
88:40:1d:6c:6d:92:43:e6:a3:9c:5c:44:39:3c:23:
96:b7:19:64:a7:ad:bf:48:22:73:f4:06:d4:8a:17:
08:c0:35:d2:c8:ed:44:25:bc:62:db:d3:30:a9:5e:
d3:2b:0c:fd:69:86:6b:1e:b7:a1:76:47:b0:59:b8:
35:cc:49:19:d4:29:a1:17:f4:3f:c2:c5:76:87:97:
a7:37:e4:81:3e:e5:c3:71:cd:37:41:7a:fc:48:8a:
84:36:58:fe:42:ff:6f:f2:7b:02:32:23:1f:7a:45:
9e:11:f6:81:92:c3:38:17:7a:f6:92:4c:d4:fd:e1:
a3:26:8c:f9:00:3e:a5:a6:cf:ec:0f:f2:88:8d:b8:
7a:f4:3c:96:58:a7:9a:48:3d:5d:ee:8f:5c:60:4b:
78:e9:bf:61:49:4e:10:32:6d:44:2a:13:c7:69:cc:
8c:82:4a:fb:34:32:03:14:0c:45:90:3a:0a:a7:70:
03:97:d1:53:7a:a4:fc:2f:f9:fd:80:51:1a:cc:a7:
0a:f3:51:21:c3:b7:82:1a:58:a6:9c:fb:4a:d9:91:
8d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9D:E5:8F:E8:AA:A5:0F:F1:0A:78:CA:37:CD:74:CA:C0:77:43:6E
X509v3 Authority Key Identifier:
keyid:0B:39:69:CD:C0:B5:FF:09:D1:99:BC:A5:DA:DD:B9:AA:B5:10:40:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CzlpzcC1_wnRmbyl2t25qrUQQOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/ed501a-6ed7-452d-8c76-6bb4fee85735/1/I53lj-iqpQ_xCnjKN810ysB3Q24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/ed501a-6ed7-452d-8c76-6bb4fee85735/1/CzlpzcC1_wnRmbyl2t25qrUQQOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.125.0-45.8.126.255
Signature Algorithm: sha256WithRSAEncryption
33:d4:b5:e4:b4:23:2a:18:d7:86:85:3d:8c:c9:06:73:ba:bc:
8b:c7:c0:ff:c8:11:82:0d:c0:f9:ed:38:e5:42:7a:95:de:a4:
4e:55:15:51:42:b4:33:8c:ae:91:0f:7a:e9:1b:64:50:f8:40:
7e:cd:8b:20:6a:38:92:d2:e5:19:0a:99:ef:85:96:c7:0b:eb:
d6:ab:bc:00:c5:6a:f7:cb:7e:fb:81:79:f5:d0:91:8f:1e:7c:
4f:b1:23:6d:d4:70:d4:00:6f:d2:e3:19:15:34:71:41:77:00:
33:c6:32:11:bf:e6:45:7d:cb:ef:91:c9:99:fb:66:3c:db:30:
c3:fc:1d:6a:55:3c:f1:5c:a0:09:bb:cb:f5:08:93:4d:9f:83:
7d:07:52:36:e5:b1:1e:af:20:7c:91:8c:27:84:78:c9:73:a5:
ef:15:eb:0f:2b:d3:3d:66:01:80:54:2b:41:62:c4:3d:31:0d:
7e:7c:46:a9:33:18:1d:db:81:1f:7b:4b:fc:ad:9d:c3:89:4f:
2b:b1:67:12:93:ac:d9:53:a3:ad:d5:73:7c:62:3d:ef:28:f6:
8a:46:6a:3d:a0:50:10:e7:9a:40:5c:c6:e4:7b:2e:cf:72:49:
39:cd:af:8a:b4:7e:43:ab:71:73:6a:b3:cf:d3:90:fe:96:f3:
4c:b5:ca:a6
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEAw02OjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YjM5NjljZGMwYjVmZjA5ZDE5OWJjYTVkYWRkYjlhYWI1MTA0MGU3MB4XDTIyMDEw
MTAzMDE0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjM5ZGU1OGZlOGFh
YTUwZmYxMGE3OGNhMzdjZDc0Y2FjMDc3NDM2ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKhw4RYu8D0RgYCWjWsRLzCUdy4TIrVtqn3G+9WfMzDBPaPV
gCdrEpihMwI3iEAdbG2SQ+ajnFxEOTwjlrcZZKetv0gic/QG1IoXCMA10sjtRCW8
YtvTMKle0ysM/WmGax63oXZHsFm4NcxJGdQpoRf0P8LFdoeXpzfkgT7lw3HNN0F6
/EiKhDZY/kL/b/J7AjIjH3pFnhH2gZLDOBd69pJM1P3hoyaM+QA+pabP7A/yiI24
evQ8llinmkg9Xe6PXGBLeOm/YUlOEDJtRCoTx2nMjIJK+zQyAxQMRZA6CqdwA5fR
U3qk/C/5/YBRGsynCvNRIcO3ghpYppz7StmRjY0CAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBQjneWP6KqlD/EKeMo3zXTKwHdDbjAfBgNVHSMEGDAWgBQLOWnNwLX/CdGZ
vKXa3bmqtRBA5zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0N6bHB6Y0MxX3duUm1ieWwydDI1cXJVUVFPYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWUvZWQ1MDFhLTZlZDctNDUyZC04Yzc2LTZiYjRmZWU4NTczNS8x
L0k1M2xqLWlxcFFfeENuaktOODEweXNCM1EyNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWUv
ZWQ1MDFhLTZlZDctNDUyZC04Yzc2LTZiYjRmZWU4NTczNS8xL0N6bHB6Y0MxX3du
Um1ieWwydDI1cXJVUVFPYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQALQh9AwQALQh+MA0GCSqGSIb3
DQEBCwUAA4IBAQAz1LXktCMqGNeGhT2MyQZzuryLx8D/yBGCDcD57TjlQnqV3qRO
VRVRQrQzjK6RD3rpG2RQ+EB+zYsgajiS0uUZCpnvhZbHC+vWq7wAxWr3y377gXn1
0JGPHnxPsSNt1HDUAG/S4xkVNHFBdwAzxjIRv+ZFfcvvkcmZ+2Y82zDD/B1qVTzx
XKAJu8v1CJNNn4N9B1I25bEeryB8kYwnhHjJc6XvFesPK9M9ZgGAVCtBYsQ9MQ1+
fEapMxgd24Efe0v8rZ3DiU8rsWcSk6zZU6Ot1XN8Yj3vKPaKRmo9oFAQ55pAXMbk
ey7Pckk5za+KtH5Dq3FzarPP05D+lvNMtcqm
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:13 2025 by rpki-client