Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/x0uG4dseOzDaCkW6emHN8FLBAjI.roa
File: x0uG4dseOzDaCkW6emHN8FLBAjI.roa (raw, json)
Hash identifier: N9wcbX7sEnWLRi8NQ9iuFFJ7h55xAMDzjOY2cOENNpM=
Subject key identifier: C7:4B:86:E1:DB:1E:3B:30:DA:0A:45:BA:7A:61:CD:F0:52:C1:02:32
Certificate issuer: /CN=e4baad9f5f69bad910075f8e1d805eb41d0df7cb
Certificate serial: 01845E226A14D41CF6FFC48A1053473B469C
Authority key identifier: E4:BA:AD:9F:5F:69:BA:D9:10:07:5F:8E:1D:80:5E:B4:1D:0D:F7:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Lqtn19putkQB1-OHYBetB0N98s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/x0uG4dseOzDaCkW6emHN8FLBAjI.roa
Signing time: Wed 09 Nov 2022 20:43:44 +0000
ROA not before: Wed 09 Nov 2022 20:43:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35224
IP address blocks: 45.93.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5e:22:6a:14:d4:1c:f6:ff:c4:8a:10:53:47:3b:46:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4baad9f5f69bad910075f8e1d805eb41d0df7cb
Validity
Not Before: Nov 9 20:43:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c74b86e1db1e3b30da0a45ba7a61cdf052c10232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:91:b9:d2:49:b9:94:c7:24:8b:e5:3a:2d:a2:
b8:8c:ff:12:4a:8b:45:08:92:f2:a5:3a:e2:79:bd:
32:1b:a3:74:7c:b3:e1:8b:5a:63:39:b1:46:69:f6:
58:b5:20:ba:d8:43:69:89:8a:bb:e3:07:fd:70:80:
a5:f8:b0:62:b5:b9:02:96:e4:81:25:c4:db:c1:ec:
d7:81:fa:09:7b:17:84:61:b2:5f:9a:0a:14:94:24:
0b:c5:53:97:aa:81:95:f9:c6:d3:5a:fc:5b:ae:01:
8b:1d:3c:f7:a4:de:16:73:84:ed:a3:19:a1:c6:6f:
7e:61:2a:7c:e4:ed:ba:c3:88:09:f6:e5:11:21:63:
46:ff:23:ba:8f:04:d0:5d:70:84:59:f1:2f:00:35:
77:f0:4a:8f:af:2f:8d:de:95:af:5d:3b:da:93:5e:
6a:f1:ac:15:ae:27:7a:81:b9:75:dd:3d:bb:60:f1:
a0:ea:8e:ab:c6:e4:9a:c0:7d:43:88:86:7a:2a:13:
5b:b8:04:2d:ea:f2:27:e8:8f:85:22:45:4d:36:3a:
a7:43:46:e8:f9:be:bf:ec:c8:84:7d:6a:1f:66:89:
0d:7f:eb:5e:86:66:68:43:6b:a9:53:15:66:3a:af:
48:8f:5e:f2:19:ad:15:9b:10:db:97:ca:d1:e0:d0:
e1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:4B:86:E1:DB:1E:3B:30:DA:0A:45:BA:7A:61:CD:F0:52:C1:02:32
X509v3 Authority Key Identifier:
keyid:E4:BA:AD:9F:5F:69:BA:D9:10:07:5F:8E:1D:80:5E:B4:1D:0D:F7:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Lqtn19putkQB1-OHYBetB0N98s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/x0uG4dseOzDaCkW6emHN8FLBAjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/ebdca6-2588-40a0-a19e-6d0cbd8bd492/1/5Lqtn19putkQB1-OHYBetB0N98s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.72.0/22
Signature Algorithm: sha256WithRSAEncryption
49:35:fd:5e:bb:37:a9:e5:0c:1d:aa:1b:f5:38:6b:bf:8b:a8:
dd:86:01:55:7c:57:52:1f:9f:a7:51:16:96:60:ad:1b:d3:2d:
33:20:ba:8f:57:ac:01:ea:bc:56:67:46:ff:b3:ab:c7:4a:0b:
47:a5:ea:7c:61:d0:c4:4d:d8:bf:05:7f:49:82:e3:aa:fc:bf:
13:1d:0a:22:01:2a:86:2e:e5:9b:df:73:ef:c5:02:54:03:3e:
b8:b4:41:b1:4e:5a:c7:ed:f2:6a:76:4f:44:a4:cf:4e:2e:0a:
d1:9c:5f:a9:f7:1c:06:dc:de:8e:ae:29:95:b7:6a:5a:3f:06:
c2:9b:85:22:a9:fc:06:f5:96:b8:e0:41:03:b2:a3:03:38:cf:
44:29:6c:74:92:26:98:5f:f0:ad:1a:0d:bd:23:33:c7:0e:0b:
bf:b2:25:2b:b0:3e:9a:27:5e:c2:23:aa:69:3b:cf:7b:b2:c8:
b7:ae:73:63:bc:e6:91:c0:85:65:d6:4a:9b:af:c1:14:97:a2:
55:cd:cc:6a:40:bc:d7:ef:30:ff:45:15:0f:e3:2f:65:1e:15:
3e:6a:04:a5:38:88:9c:7d:64:83:07:39:21:ad:a2:23:70:90:
bd:96:78:5b:42:c0:c2:a7:df:4e:ce:cd:29:86:57:d7:bd:b4:
32:69:7c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:05 2025 by rpki-client