Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/FtOHoDJvfdAkMaciQk713X-dotM.roa
File: FtOHoDJvfdAkMaciQk713X-dotM.roa (raw, json)
Hash identifier: Am00HyJzJYpNEVSmOy0LPzRsXqyabGwxiYDEaHSUWDs=
Subject key identifier: 16:D3:87:A0:32:6F:7D:D0:24:31:A7:22:42:4E:F5:DD:7F:9D:A2:D3
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01329805
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/FtOHoDJvfdAkMaciQk713X-dotM.roa
Signing time: Sat 01 Jan 2022 00:59:52 +0000
ROA not before: Sat 01 Jan 2022 00:59:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209956
IP address blocks: 45.13.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20092933 (0x1329805)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16d387a0326f7dd02431a722424ef5dd7f9da2d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9c:3d:be:35:b8:38:65:4c:fa:be:b4:b0:e6:
37:64:2c:aa:1b:c5:0f:3f:45:6c:a3:89:ab:99:12:
a9:d8:b9:4d:e2:d4:4b:7b:09:55:d7:63:c6:55:5b:
cd:06:ee:f8:a7:1f:02:e1:47:2c:26:f8:43:3e:36:
eb:e0:3c:72:15:26:f0:84:f6:1d:17:d5:bb:b6:e1:
59:b5:49:4c:e4:bf:51:3c:d8:df:92:db:a4:91:5a:
c2:04:58:8d:09:b8:47:1b:d3:06:09:ac:5d:b6:90:
e4:8a:ae:84:1d:56:79:7f:ef:f4:8b:5d:13:a1:a4:
cd:dd:72:11:a6:b9:bf:e2:6b:9e:d2:7a:6b:cc:ff:
ae:50:02:bd:b9:e2:fb:dc:75:96:8c:ff:bb:f4:0e:
53:13:a3:92:8b:ac:65:c1:38:11:c4:4b:f9:d8:36:
f5:b3:c6:61:fe:6f:1c:6a:b3:7a:3e:15:6c:3e:3d:
25:37:7f:0a:59:86:75:24:d7:56:13:11:0e:8e:ad:
22:2c:43:c7:5a:1a:7c:b9:44:cc:27:70:56:23:45:
f2:b7:bb:4f:ce:c4:0f:5d:a4:0e:fd:17:b2:5b:4a:
65:19:96:18:c4:72:8c:e5:2f:8e:79:83:df:7f:42:
89:4b:1f:d9:15:4c:06:d7:17:27:80:e2:5e:eb:51:
e7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D3:87:A0:32:6F:7D:D0:24:31:A7:22:42:4E:F5:DD:7F:9D:A2:D3
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/FtOHoDJvfdAkMaciQk713X-dotM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.119.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:9b:64:3d:3d:82:9b:8c:3b:fa:13:23:b2:5f:e2:89:17:f0:
e1:a9:bb:98:76:b4:da:dd:73:77:07:95:20:8f:b0:12:b5:4e:
a9:a2:23:74:5f:cd:e9:a8:0f:90:be:d8:7f:60:5e:09:c2:b7:
dc:1f:ec:bd:39:53:25:92:15:79:67:42:1f:d6:7a:1e:41:1c:
d7:47:4d:17:bc:6e:15:31:23:e6:72:72:a7:d6:63:7a:c4:3c:
c5:ef:b8:34:fa:a2:af:97:64:78:95:7e:8d:24:7c:96:32:35:
0f:b9:f0:3e:13:2f:e2:d6:74:32:1d:52:99:21:85:3b:52:7f:
e7:29:ec:af:1d:c3:55:3b:5b:65:37:26:16:b1:2c:36:07:4d:
68:a5:ef:55:9e:93:82:f7:5c:b4:a9:bb:39:2e:00:36:e9:9f:
b4:56:b7:41:04:a6:9d:2f:b0:d3:c1:bd:44:b9:84:7c:39:d3:
26:11:31:0d:0d:60:ad:ae:6b:32:50:fc:8c:3d:54:dc:27:e9:
e4:18:58:6e:97:12:e6:2c:b0:14:b2:c6:ca:57:07:38:ce:16:
5d:77:fa:41:f9:f1:01:b0:0a:2a:1b:cf:19:a8:d2:85:8c:06:
87:17:c7:86:6f:0f:52:f3:f6:74:9e:3b:e5:19:89:11:80:28:
24:9f:79:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:27:39 2025 by rpki-client