Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/KTn47a1GrE_-d1e-e_SVL7N3TeM.roa
File: KTn47a1GrE_-d1e-e_SVL7N3TeM.roa (raw, json)
Hash identifier: EI1YhNxASlsF8BGcyCaEC3EuVdyqXzVM9+9rKYr4C/k=
Subject key identifier: 29:39:F8:ED:AD:46:AC:4F:FE:77:57:BE:7B:F4:95:2F:B3:77:4D:E3
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0103E3DE
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/KTn47a1GrE_-d1e-e_SVL7N3TeM.roa
Signing time: Sat 01 Jan 2022 00:59:28 +0000
ROA not before: Sat 01 Jan 2022 00:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48024
IP address blocks: 45.154.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17032158 (0x103e3de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 00:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2939f8edad46ac4ffe7757be7bf4952fb3774de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7b:6c:cb:ef:11:6b:ee:22:3d:0d:df:6a:4d:
8f:6f:ff:bc:ab:ea:f8:80:b7:02:dc:44:62:ad:1f:
8b:59:ef:6c:3a:01:69:39:ad:f2:24:61:38:10:a0:
45:92:72:9c:c7:df:ef:85:10:5d:13:9d:94:b4:79:
bc:b2:e2:63:f9:41:ef:53:7e:e4:8a:c4:97:ca:42:
33:63:9c:e3:36:99:b5:74:bb:5f:09:a0:d7:2a:07:
33:23:d9:e6:89:98:e7:92:1f:65:da:03:6d:31:a7:
81:3c:dc:c4:d8:9c:94:40:b6:45:17:dd:de:c7:4d:
95:60:e5:b2:53:6f:2d:9a:1c:12:43:45:0d:1e:bd:
3a:44:49:9b:fc:b8:9c:b9:e9:ad:14:4c:5c:ac:86:
d2:c6:19:05:1b:cc:55:ff:74:ba:26:b5:c0:71:19:
77:5d:29:34:0e:98:88:60:d4:19:ee:27:94:6c:26:
bf:97:05:fd:4c:5d:bd:0b:b7:b3:f7:59:bb:1f:a5:
4d:68:60:ee:35:6c:38:a6:24:af:b1:ee:80:69:63:
b7:65:60:db:2b:f8:7a:5c:83:6a:12:fc:db:a7:b6:
b2:78:6f:5e:7a:c2:0b:a5:e7:01:49:25:66:03:f3:
43:05:0f:56:b1:df:15:13:ba:62:7c:53:1d:5f:48:
5d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:39:F8:ED:AD:46:AC:4F:FE:77:57:BE:7B:F4:95:2F:B3:77:4D:E3
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/KTn47a1GrE_-d1e-e_SVL7N3TeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.98.0/24
Signature Algorithm: sha256WithRSAEncryption
47:f8:02:54:0f:7b:9a:97:f7:4e:f6:d6:c1:35:a7:55:88:14:
83:85:4d:1f:b2:a7:20:e7:d2:f6:c0:7a:50:4e:da:a7:c6:f3:
68:d1:b0:b2:f1:6e:41:3c:0a:c1:38:b1:af:93:2c:3c:f2:42:
42:8d:96:ac:d8:21:e8:cc:fa:c2:de:de:d0:47:c3:34:a8:c2:
13:ae:c0:30:1c:6d:59:c7:a2:94:da:d2:18:05:f5:12:78:f3:
3e:74:9c:d0:2f:62:82:83:a7:bc:c1:9f:e4:11:08:05:29:c3:
ab:57:e2:0f:84:0d:ac:74:94:e8:b1:67:01:ba:e5:91:a5:21:
63:6f:24:97:d8:8b:1c:2e:6a:0b:b3:9e:c4:2e:5c:e8:aa:a8:
30:6c:98:af:59:b3:82:32:15:e3:0b:40:20:34:aa:3f:9d:e7:
7a:49:01:43:82:5c:29:2e:c6:6a:71:c5:26:3f:8a:81:0b:b6:
1f:54:b0:ce:38:e6:ed:d8:49:73:04:6c:dc:79:3f:fd:c5:ea:
5c:68:ea:56:ff:2d:37:25:a5:01:91:9f:fe:e3:a7:f8:40:e0:
47:d6:99:02:9d:e8:82:44:d5:41:7f:91:71:1f:13:2f:5f:e2:
9b:18:e5:cb:b1:f3:8b:12:5f:dc:09:7c:8e:2c:8c:c1:92:8b:
3e:f3:85:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:28:12 2025 by rpki-client