Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/K26o9J1OP_7aB924I7WihPyHImI.roa
File: K26o9J1OP_7aB924I7WihPyHImI.roa (raw, json)
Hash identifier: TGk+a+21/J8sMu2u+aWGA5uah4bmUvwT8U38W87E6fo=
Subject key identifier: 2B:6E:A8:F4:9D:4E:3F:FE:DA:07:DD:B8:23:B5:A2:84:FC:87:22:62
Certificate issuer: /CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Certificate serial: 0183EC55875EA627318DEAD9C7017953149C
Authority key identifier: 72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/K26o9J1OP_7aB924I7WihPyHImI.roa
Signing time: Tue 18 Oct 2022 18:22:51 +0000
ROA not before: Tue 18 Oct 2022 18:22:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15695
IP address blocks: 45.93.87.0/24 maxlen: 24
2a00:cb8:353::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ec:55:87:5e:a6:27:31:8d:ea:d9:c7:01:79:53:14:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e81fb5cf0fb32c4575f8413acbd41aa84b82f4
Validity
Not Before: Oct 18 18:22:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b6ea8f49d4e3ffeda07ddb823b5a284fc872262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:0f:e2:d5:e0:69:20:2e:53:1a:57:49:a3:98:
80:4e:62:42:7e:4c:89:80:72:ac:2f:6a:33:1f:f2:
7e:d2:58:c8:b3:56:ce:19:c6:8a:5c:13:60:f8:d4:
8a:93:ae:1a:44:26:75:b8:2d:df:c6:ff:26:dd:d4:
64:e8:02:4b:1e:49:a3:45:31:18:a4:4b:60:d0:1b:
72:99:96:36:09:6a:51:7e:6a:c6:f7:60:61:9b:38:
66:35:e8:e1:71:3a:12:2c:79:b2:55:4d:d4:a6:65:
35:8a:ef:65:92:ae:a3:fd:f4:34:f2:52:0e:be:32:
71:01:a5:5a:5b:aa:63:50:ea:01:d5:c2:31:2d:ae:
89:14:12:a1:de:58:5d:0c:b3:fa:bd:6f:e1:7c:78:
5f:d6:d5:b3:64:2f:b5:4a:b0:74:49:78:01:89:a8:
60:0f:94:b8:1e:80:85:7b:bc:b1:9e:24:34:5b:c4:
85:5d:48:62:a3:c7:a1:27:2a:f7:c0:71:f9:47:7e:
f7:d0:98:db:93:ab:35:1b:a1:fb:fa:ec:3a:70:c9:
43:3d:bd:ff:c6:a1:53:c2:1a:8f:41:fb:cd:a0:83:
21:0f:5e:28:d3:0e:74:0f:fe:36:96:be:93:33:14:
30:a0:8f:2f:0b:e4:b2:6f:9e:38:ab:94:8e:e4:ca:
5b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:6E:A8:F4:9D:4E:3F:FE:DA:07:DD:B8:23:B5:A2:84:FC:87:22:62
X509v3 Authority Key Identifier:
keyid:72:E8:1F:B5:CF:0F:B3:2C:45:75:F8:41:3A:CB:D4:1A:A8:4B:82:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cugftc8PsyxFdfhBOsvUGqhLgvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/K26o9J1OP_7aB924I7WihPyHImI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/f068a7-5f8c-4f32-ab94-cda6e19ffb88/1/cugftc8PsyxFdfhBOsvUGqhLgvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.87.0/24
IPv6:
2a00:cb8:353::/48
Signature Algorithm: sha256WithRSAEncryption
13:d3:30:ca:c2:25:c0:8e:66:dd:5b:26:99:77:86:54:b4:d7:
dc:0f:e5:12:4a:ae:b7:26:f5:ef:08:a8:2d:44:a7:23:b3:51:
74:8c:b2:8b:fd:92:f8:2b:41:4d:bd:87:8b:8c:41:74:9d:23:
29:0e:29:48:fb:c7:eb:3e:0a:13:b1:70:56:a3:a0:df:d3:4a:
3d:8f:d3:6a:28:f1:72:c0:7c:02:28:3e:b0:de:21:28:86:10:
3b:d7:d7:59:a7:7d:1d:6e:60:7f:58:0c:dc:52:2a:3e:7a:6a:
f2:4f:64:ae:bf:3c:58:5f:00:66:5c:7f:0b:dc:cc:dc:92:b3:
93:2a:0f:24:a8:7e:fe:43:4f:e7:86:d2:8f:0f:83:63:b2:dd:
41:d2:85:d6:fa:ad:62:f0:41:cd:09:45:f9:c5:93:76:43:c1:
5a:7c:ea:07:56:49:ea:bc:7b:4a:59:00:33:ec:d3:df:ab:1b:
54:2f:b5:95:13:15:db:c6:5d:de:46:a3:d1:8a:0b:c4:b1:82:
e4:05:c2:ab:7c:86:69:26:67:d7:4d:48:f6:a2:04:14:f6:83:
ec:f5:de:0e:95:42:16:8a:13:dc:92:f5:20:e8:87:d6:b1:7e:
5c:91:1f:b3:b2:11:40:8b:f2:ad:b8:1d:e7:d0:4d:b5:67:f0:
00:b5:32:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:24 2025 by rpki-client