Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/U_nq-WDGM--_4GLyE0Tj6BTAk1w.roa
File: U_nq-WDGM--_4GLyE0Tj6BTAk1w.roa (raw, json)
Hash identifier: NWWDRQ9lxbKK6q4cEOx3J3d2KbZ/NhQ/eDzwTccWm/Q=
Subject key identifier: 53:F9:EA:F9:60:C6:33:EF:BF:E0:62:F2:13:44:E3:E8:14:C0:93:5C
Certificate issuer: /CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Certificate serial: 0185735622991ACA8052983A26D0982C819C
Authority key identifier: BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/U_nq-WDGM--_4GLyE0Tj6BTAk1w.roa
Signing time: Mon 02 Jan 2023 16:35:02 +0000
ROA not before: Mon 02 Jan 2023 16:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44558
IP address blocks: 92.45.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:22:99:1a:ca:80:52:98:3a:26:d0:98:2c:81:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9d30e6035be8b8386061f271481c707e04ce2b
Validity
Not Before: Jan 2 16:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53f9eaf960c633efbfe062f21344e3e814c0935c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:da:48:e6:a8:48:31:8c:4c:01:e3:7d:55:67:
a7:b2:f9:82:6a:ec:6e:fb:f3:ac:7e:a2:d4:fb:80:
78:2b:45:a2:9b:84:23:fd:10:44:8e:70:96:3a:6a:
78:3f:66:70:c7:05:eb:7e:1f:b3:ae:89:62:ac:17:
bf:f2:8d:67:c3:0c:6f:77:a3:60:9f:26:a6:1d:2e:
4b:9b:6f:45:43:e1:da:78:f1:1b:3d:f0:30:cb:cf:
41:01:16:41:aa:91:de:10:41:72:1b:9a:ce:5d:62:
28:b0:57:7b:c4:b7:d0:b4:fa:07:29:a2:74:82:1c:
c1:ab:e0:4a:43:b3:78:e5:e9:69:7a:ae:b1:ae:73:
3d:aa:e7:f3:94:7d:bb:d1:da:85:ba:2d:98:a2:b5:
ea:c9:c6:ee:3a:96:9f:18:4c:49:29:ef:4d:29:f7:
49:90:92:72:73:54:37:af:f1:37:39:50:10:88:59:
ff:51:11:da:9f:dc:5b:b1:16:77:47:0d:d4:95:e2:
a2:03:b4:d6:cb:39:e3:a3:21:0e:06:e7:91:77:49:
51:9f:88:49:3f:6e:80:df:af:75:e4:2b:92:a4:f0:
17:4f:0d:b3:cb:e4:91:a2:8d:91:a7:a2:17:16:f3:
6f:eb:f1:25:09:74:20:57:8d:9b:41:b7:bd:c8:3e:
5d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F9:EA:F9:60:C6:33:EF:BF:E0:62:F2:13:44:E3:E8:14:C0:93:5C
X509v3 Authority Key Identifier:
keyid:BA:9D:30:E6:03:5B:E8:B8:38:60:61:F2:71:48:1C:70:7E:04:CE:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up0w5gNb6Lg4YGHycUgccH4Ezis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/U_nq-WDGM--_4GLyE0Tj6BTAk1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ac9c32-7dbc-4d6c-bc08-5d584fbc5d27/1/up0w5gNb6Lg4YGHycUgccH4Ezis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.45.100.0/24
Signature Algorithm: sha256WithRSAEncryption
72:0c:a1:8d:9b:d2:fc:4a:9d:15:b1:cf:30:7b:69:55:ee:b6:
e1:2f:c7:74:a0:a0:ac:09:60:f5:fe:a1:d5:1a:ae:e1:e9:3c:
8e:f4:7f:4e:c2:ba:8c:db:ca:49:6d:ee:65:e0:cb:ef:5e:92:
49:33:cf:44:05:0d:a3:3b:26:71:dc:12:82:34:63:5f:d7:65:
39:2d:52:45:9f:9d:76:70:bc:07:45:90:00:78:3d:e7:d9:5e:
cc:df:89:ba:9a:07:f6:b4:ff:63:28:14:6b:65:88:f4:dc:8e:
03:eb:5b:46:34:be:25:2e:39:a0:53:d2:f8:9d:8e:64:aa:42:
15:8a:f9:86:f8:fb:21:1a:3d:37:a5:37:7f:f4:08:a5:e6:85:
0c:f3:e7:cc:5d:4f:38:8c:14:04:0b:cc:8d:34:4a:f9:27:33:
6e:de:38:e3:20:f8:9e:72:86:24:78:60:ac:73:f1:cd:a8:af:
96:73:e2:8a:0b:24:78:bd:f7:46:d4:47:5a:0f:3c:1e:3b:92:
88:a4:0d:23:8c:e2:a1:d2:a6:3d:87:7a:99:8a:7a:a9:a2:39:
14:44:d7:81:cd:f8:4a:1e:1c:a1:0d:8d:a4:88:d9:79:b2:94:
05:6a:ba:32:59:d7:bb:08:85:86:6e:b2:84:16:35:f0:ef:31:
1b:b8:62:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:43:09 2025 by rpki-client