Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/MljNzSI07-wfTGOJjwrS0R_3b2c.roa
File: MljNzSI07-wfTGOJjwrS0R_3b2c.roa (raw, json)
Hash identifier: PYxHXEiSPevzSQTaPZwskfsCPWjEiwMR6cop+C2eSGA=
Subject key identifier: 32:58:CD:CD:22:34:EF:EC:1F:4C:63:89:8F:0A:D2:D1:1F:F7:6F:67
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0AABC7A1
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/MljNzSI07-wfTGOJjwrS0R_3b2c.roa
Signing time: Sat 01 Jan 2022 12:00:21 +0000
ROA not before: Sat 01 Jan 2022 12:00:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48313
IP address blocks: 92.45.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179029921 (0xaabc7a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 1 12:00:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3258cdcd2234efec1f4c63898f0ad2d11ff76f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:40:75:ba:49:b6:34:1b:4f:26:1e:d5:ad:ca:
94:30:53:c5:27:66:af:5c:c1:b1:56:8c:fe:81:e0:
3d:c1:32:0c:dd:78:e5:bf:9d:f5:08:9c:bb:8a:a8:
ee:09:e6:d3:eb:de:f7:73:71:f6:92:09:3c:0e:03:
51:67:ee:f2:fd:88:0f:c5:b8:3f:75:03:47:5c:6d:
fb:30:77:65:d1:76:10:fc:0e:ff:eb:79:02:cb:94:
c4:6a:4a:ed:01:c1:81:f3:97:2a:c2:49:e3:9e:33:
ab:d6:57:48:1d:1e:1b:f7:26:ac:a4:54:2b:b8:8f:
08:47:e0:a3:a4:3b:da:74:3e:2c:7f:af:2e:a1:13:
34:b7:2e:5d:fc:41:a1:40:70:06:0a:57:ae:ad:e0:
e4:eb:7e:7e:8d:e1:9f:e8:13:90:02:c6:46:49:f6:
5c:fb:39:ee:d5:44:b3:ac:2d:79:7a:8f:49:5d:ff:
bf:ab:cb:5b:00:d3:8b:79:f3:71:87:29:32:4f:43:
f7:cd:54:52:0b:4d:8c:08:80:cb:66:da:01:33:39:
6a:c6:76:01:e2:9f:9f:67:07:86:b9:29:5d:5b:ac:
0a:52:df:3c:a1:6a:75:da:25:b3:dd:3d:e6:74:d0:
a4:11:a4:cc:cc:f4:9b:f8:3f:a7:b3:39:42:59:ba:
63:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:58:CD:CD:22:34:EF:EC:1F:4C:63:89:8F:0A:D2:D1:1F:F7:6F:67
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/MljNzSI07-wfTGOJjwrS0R_3b2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.45.64.0/24
Signature Algorithm: sha256WithRSAEncryption
36:4a:5d:8b:99:ec:aa:a1:2f:e3:a9:0c:30:33:a5:df:40:55:
1e:4b:fb:2b:cd:06:da:62:3a:c2:9f:83:db:4a:87:0e:da:0c:
00:e1:1b:20:08:23:95:c1:56:05:4f:6d:6c:e6:2b:75:76:bd:
fe:e5:c3:f2:2d:cf:ba:b8:36:8c:5c:65:ae:3d:55:ec:58:70:
93:eb:ba:a2:f1:84:37:fe:7b:59:a9:b1:05:9d:67:1b:4d:a0:
72:91:6c:44:59:0c:31:ac:4a:29:35:c5:49:55:3e:e2:c8:03:
62:ba:4a:b3:16:b5:d0:46:6e:02:af:79:e9:73:a6:38:cb:4a:
23:ec:e1:c1:ab:a9:3e:d7:f8:66:c8:2f:9f:2e:39:dd:74:84:
fb:14:a0:4f:8a:d3:f4:c6:d9:a7:20:0e:13:bd:b0:b5:41:1e:
6e:f7:8a:a7:d6:ec:ae:43:8e:c4:87:ce:ef:cf:91:8b:4c:6d:
84:26:64:bb:7a:68:16:7e:23:fa:8f:15:4c:42:a7:89:93:08:
30:87:5c:79:05:02:30:bf:9f:d8:9a:f3:d6:d8:5c:e5:11:57:
d1:75:e8:d2:b2:85:9c:03:ba:66:dc:1c:26:36:8f:d3:ac:aa:
a5:78:ff:a6:cf:71:9b:b1:65:5a:b7:d0:0a:32:47:08:c1:23:
a5:5f:fd:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:40:54 2025 by rpki-client