Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/pOWobmIHKFV4sncRx4RGdjyE6Uw.roa
File: pOWobmIHKFV4sncRx4RGdjyE6Uw.roa (raw, json)
Hash identifier: xb+o8ccmNTb+i7ydJB7ILsF+4LJ7cbtFZyD2bhhMWqg=
Subject key identifier: A4:E5:A8:6E:62:07:28:55:78:B2:77:11:C7:84:46:76:3C:84:E9:4C
Certificate issuer: /CN=36980b4863a4c0fc109e933a9f8f7892e42622f8
Certificate serial: 063AFC5D
Authority key identifier: 36:98:0B:48:63:A4:C0:FC:10:9E:93:3A:9F:8F:78:92:E4:26:22:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpgLSGOkwPwQnpM6n494kuQmIvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/pOWobmIHKFV4sncRx4RGdjyE6Uw.roa
Signing time: Sat 01 Jan 2022 03:52:30 +0000
ROA not before: Sat 01 Jan 2022 03:52:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212041
IP address blocks: 45.130.24.0/24 maxlen: 31
45.130.26.0/24 maxlen: 31
45.130.25.0/24 maxlen: 31
45.130.27.0/24 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104528989 (0x63afc5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36980b4863a4c0fc109e933a9f8f7892e42622f8
Validity
Not Before: Jan 1 03:52:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a4e5a86e6207285578b27711c78446763c84e94c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:24:de:c8:c0:98:b1:89:19:23:6a:c7:c6:16:
cf:6c:60:d7:73:16:93:0d:6c:7b:10:77:f5:5f:56:
df:95:51:41:ff:df:05:d6:ca:e8:bf:d9:1e:05:2c:
f2:f4:aa:ce:6b:f1:ed:e3:62:cc:bb:a3:93:9d:e3:
d7:a2:0e:a9:5f:1a:b6:94:77:b9:ac:dc:1f:98:94:
e8:cf:92:b3:16:80:b4:bc:54:17:fb:19:f9:7e:29:
b9:2d:c4:35:a9:8c:92:10:52:69:72:51:73:24:ea:
f4:51:35:3a:3d:3d:3a:d3:93:74:e8:1d:2d:b2:82:
93:de:ec:fa:44:67:3c:62:4f:7d:83:08:18:38:0b:
e2:fb:ce:ba:51:10:c1:b3:a5:a5:44:84:30:43:73:
7f:0f:74:ad:52:e5:3a:93:b2:6c:e1:05:db:5d:92:
3e:de:a9:0a:9e:05:05:b0:65:25:38:4a:18:d9:44:
55:dc:14:86:f2:1b:da:58:b6:0c:d2:2e:9d:24:f0:
54:d4:69:82:54:0b:91:32:df:b3:8a:36:ca:4b:5b:
2d:8a:48:0e:eb:cd:dd:7d:f3:70:e3:1d:de:ae:44:
20:b7:90:43:f1:56:59:4b:93:e5:9a:44:47:79:c5:
a5:b2:fc:52:9b:72:33:35:f1:9a:c8:10:55:00:e6:
22:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E5:A8:6E:62:07:28:55:78:B2:77:11:C7:84:46:76:3C:84:E9:4C
X509v3 Authority Key Identifier:
keyid:36:98:0B:48:63:A4:C0:FC:10:9E:93:3A:9F:8F:78:92:E4:26:22:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpgLSGOkwPwQnpM6n494kuQmIvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/pOWobmIHKFV4sncRx4RGdjyE6Uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/68f44b-3675-4ad8-a0ca-74ba26aaf1f6/1/NpgLSGOkwPwQnpM6n494kuQmIvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.24.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:4d:8a:22:db:19:dc:98:c5:f7:60:8c:7d:ce:27:9d:fb:d5:
18:f1:8a:ac:cd:40:66:d5:85:7e:76:e2:c3:22:0c:ef:8d:f0:
86:e7:ce:c6:ad:cb:f3:c6:a0:22:e7:9b:62:7a:2e:13:c6:00:
2f:c8:ca:b8:2e:f6:a3:05:26:94:09:ad:6b:1b:ab:03:4a:20:
73:0a:e2:fd:0f:5b:2c:15:62:a9:81:8c:04:4a:03:95:f5:56:
49:52:da:01:8e:16:c8:26:0a:de:7a:15:6e:09:2b:35:43:31:
10:4b:48:32:71:3b:e1:2c:49:53:ab:9d:d2:06:f5:fc:5d:76:
fc:31:e4:92:e0:fa:91:13:97:f9:ca:90:de:bb:3a:81:cb:86:
9f:ed:c9:4b:8b:21:78:ed:61:37:38:a3:82:38:4d:32:09:d2:
78:e5:4c:86:80:bb:13:bb:d6:b9:5d:fb:22:1f:0e:2d:7d:98:
0e:af:40:e7:03:d9:53:da:8d:58:fa:d0:90:a7:6a:43:38:75:
3f:1e:43:91:e0:2e:09:80:42:7e:95:87:9a:27:da:e7:dc:22:
05:31:27:68:69:23:57:91:10:11:33:d6:b2:46:9b:d9:91:f0:
82:e4:cd:9e:03:ff:23:49:f3:43:a6:52:30:3e:c4:3d:d1:40:
06:cf:14:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:35:50 2025 by rpki-client