Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/rTtSuaAEtatFy1KdReHXGK2oZxM.roa
File: rTtSuaAEtatFy1KdReHXGK2oZxM.roa (raw, json)
Hash identifier: wBv/SAqudlU8S39XTnBPzKXAvjxHCzEahYtQQH5gujE=
Subject key identifier: AD:3B:52:B9:A0:04:B5:AB:45:CB:52:9D:45:E1:D7:18:AD:A8:67:13
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01613499
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/rTtSuaAEtatFy1KdReHXGK2oZxM.roa
Signing time: Sat 01 Jan 2022 01:00:32 +0000
ROA not before: Sat 01 Jan 2022 01:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213320
IP address blocks: 45.154.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23147673 (0x1613499)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad3b52b9a004b5ab45cb529d45e1d718ada86713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f0:aa:82:7a:86:01:8b:d9:35:61:1f:56:f5:
39:02:ca:1e:8a:6a:d0:66:2a:c0:23:42:75:75:83:
43:80:a0:1f:a3:b8:02:10:3b:8c:c4:35:1e:02:02:
b3:93:d0:44:97:f9:b0:d4:30:79:a1:68:7a:f1:f0:
13:dc:4a:22:13:3c:3b:89:97:c5:41:c5:2f:00:9b:
cd:73:3e:0e:d7:6d:82:db:cb:7d:2a:7a:de:a6:a3:
fe:bf:57:07:96:11:84:d2:d9:cf:41:82:de:18:33:
6e:65:05:20:68:2a:a1:33:6a:0d:46:bd:1e:2b:2b:
6a:1a:d8:ec:e7:74:03:39:80:1f:e4:25:44:6f:13:
d9:88:6b:ed:44:80:04:51:6e:63:0b:7c:96:09:36:
56:46:53:48:49:a2:88:20:18:45:9c:e8:c0:89:5f:
26:48:50:51:f7:a2:ba:9f:ea:b5:c6:e9:32:88:4d:
3a:7f:df:23:cd:fe:4e:64:82:4a:4e:df:42:0b:be:
c6:42:72:f7:f9:de:d6:b7:ac:51:1e:17:3d:9f:ff:
e5:13:3b:17:6b:44:78:ad:05:0f:6f:c4:2c:3d:81:
4c:89:fb:bc:db:de:7c:90:6c:be:42:b2:53:84:81:
f2:19:88:db:0f:53:de:d7:e2:db:c7:8d:b1:c8:f6:
cb:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3B:52:B9:A0:04:B5:AB:45:CB:52:9D:45:E1:D7:18:AD:A8:67:13
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/rTtSuaAEtatFy1KdReHXGK2oZxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.98.0/24
Signature Algorithm: sha256WithRSAEncryption
18:91:21:4d:0c:60:5b:4b:17:d3:8f:f3:79:dd:52:ed:24:f7:
74:72:81:2d:0c:23:7b:b6:25:fc:b6:cb:c6:bf:24:51:1a:70:
cb:32:12:67:4b:33:c7:8d:3b:8d:d8:17:8c:c2:0e:25:43:06:
91:88:47:60:68:18:40:cd:89:a1:7c:5f:e2:21:3d:08:cb:c6:
6b:4a:f3:0c:2d:25:a3:20:97:21:65:a6:f4:c2:cc:26:5e:ee:
89:55:6a:41:ee:cf:a1:21:a6:fc:37:a7:51:67:d7:cf:0d:74:
df:09:96:cf:5f:b8:fe:c5:34:30:a1:05:f2:f8:0b:15:a0:cd:
70:6b:18:2d:a1:fa:e3:d3:c9:15:fa:0e:1b:86:0f:b5:3f:15:
67:13:a5:4e:5e:a2:9c:8a:66:47:43:20:eb:78:2b:f4:6d:20:
b1:48:2b:cf:3a:06:4e:00:99:02:c2:ca:6d:0f:af:20:d1:89:
8f:49:6e:65:e3:ae:7d:48:6d:17:87:69:93:fc:a5:c2:64:3b:
6e:ee:e4:2c:b3:12:e7:cd:82:88:03:dc:d4:e6:1c:ff:3c:1a:
8a:d6:b9:05:e6:8c:e3:97:55:91:a0:7c:b0:29:98:5f:be:f4:
07:76:ae:a7:cc:13:75:69:2d:f8:a2:0b:dc:fd:72:42:72:f8:
4f:45:56:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:17:22 2025 by rpki-client