Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/eygVe9YzQYaota0LIjkUkE8XdW4.roa
File: eygVe9YzQYaota0LIjkUkE8XdW4.roa (raw, json)
Hash identifier: H4kdS/t7Ubjh9egReXgGortbm8cIpgEL0K//SCzIgsM=
Subject key identifier: 7B:28:15:7B:D6:33:41:86:A8:B5:AD:0B:22:39:14:90:4F:17:75:6E
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0188E906CA4EFD50D2D78987EB6BD2FFBC13
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/eygVe9YzQYaota0LIjkUkE8XdW4.roa
Signing time: Fri 23 Jun 2023 16:11:56 +0000
ROA not before: Fri 23 Jun 2023 16:11:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
79.98.247.0/24 maxlen: 24
176.125.250.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
185.226.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e9:06:ca:4e:fd:50:d2:d7:89:87:eb:6b:d2:ff:bc:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jun 23 16:11:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b28157bd6334186a8b5ad0b223914904f17756e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:05:fe:29:c3:a1:82:a1:a4:b7:67:c1:0e:5b:
38:a3:b9:98:a4:ed:6a:d5:4f:4d:4e:92:43:1c:82:
02:ef:ca:00:62:e3:77:52:49:e2:1a:93:9e:5e:22:
a3:eb:7d:ca:aa:cf:e0:1d:3f:01:b6:bc:25:7c:0d:
15:5f:40:7a:03:f0:5f:a1:ed:9b:bd:29:d5:dd:79:
ee:78:fb:dc:b1:08:0e:60:60:ea:ae:1f:e6:75:43:
0f:10:ae:4b:2e:5b:75:09:16:67:77:c4:f6:c8:e4:
27:f5:a7:4f:2e:8e:ad:77:1a:47:68:40:3f:3d:53:
00:ae:3c:42:81:bd:84:7f:68:0c:13:c7:73:54:bb:
30:74:b9:a1:5e:ae:9a:96:ca:4a:88:b9:6b:2f:2c:
d9:4e:50:a7:89:46:e4:d7:75:94:2e:5e:d1:8d:27:
2c:04:af:13:a4:da:de:1b:a7:37:36:ad:39:a2:67:
27:7d:3b:74:8e:e5:e7:d6:08:39:db:b9:5d:1e:52:
85:b2:93:24:45:5d:a6:4a:80:e3:67:5c:6d:d7:23:
3c:33:c7:89:48:d6:a3:41:4b:e6:d7:45:4e:43:d5:
ae:3a:44:5f:55:1a:29:ba:af:38:bc:16:9a:97:df:
f6:41:30:6b:3a:86:2c:16:4e:0b:f4:0b:ac:bf:1b:
21:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:28:15:7B:D6:33:41:86:A8:B5:AD:0B:22:39:14:90:4F:17:75:6E
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/eygVe9YzQYaota0LIjkUkE8XdW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
45.157.209.0/24
79.98.247.0/24
176.125.250.0/24
185.226.181.0/24
194.146.93.0/24
Signature Algorithm: sha256WithRSAEncryption
85:1c:16:ef:f5:8c:2e:46:75:de:46:ca:5e:78:bd:29:b8:79:
fa:00:76:66:17:6e:5f:fa:75:4f:f1:5a:ad:8a:82:69:90:1f:
42:11:bd:f3:6b:c8:cf:eb:37:19:98:ae:11:7f:d7:a0:29:fe:
91:34:cf:69:ed:64:48:ae:15:6e:d4:bd:90:c7:57:68:92:a0:
a7:c5:f3:f2:af:89:f6:b1:0c:17:2a:6d:93:7c:f7:ab:93:f8:
1c:9b:71:fa:32:1b:2d:b9:e4:3b:7a:6a:9c:e2:93:bd:83:86:
bd:28:ca:00:8e:a0:fd:20:84:43:b6:f6:74:ed:53:f2:a9:e2:
93:ce:e8:ba:be:24:12:76:56:71:2b:c2:1b:f3:43:d8:59:98:
f7:c5:53:31:da:df:f4:28:a3:f5:2e:d7:f7:98:48:72:45:35:
ac:e6:88:07:8b:a9:bf:a9:f9:86:46:50:7b:f6:3c:7a:ed:24:
45:31:b9:0e:23:e0:94:a7:45:7a:07:01:ee:18:d5:cf:29:d4:
81:b9:74:e4:1b:05:ca:25:89:d5:a0:1d:41:5b:43:c2:ef:d4:
39:62:76:7c:19:74:a6:c7:4b:f9:d4:d7:f1:d4:90:9f:27:89:
1c:67:90:ff:d7:f1:9d:d7:29:94:6b:73:7f:85:a4:7d:e2:6a:
a6:e5:2e:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:31:18 2025 by rpki-client