Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/TmU5AdvE-M2EHsTbnQ5kulniSoA.roa
File: TmU5AdvE-M2EHsTbnQ5kulniSoA.roa (raw, json)
Hash identifier: uPyCN5IhvM9WLHVcYlIfzqJnGd3LDWUncYR/wuPdcCA=
Subject key identifier: 4E:65:39:01:DB:C4:F8:CD:84:1E:C4:DB:9D:0E:64:BA:59:E2:4A:80
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 0189DDCA705BE9E6732D8C26876369FF7F28
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/TmU5AdvE-M2EHsTbnQ5kulniSoA.roa
Signing time: Thu 10 Aug 2023 04:52:59 +0000
ROA not before: Thu 10 Aug 2023 04:52:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135097
IP address blocks: 45.135.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:dd:ca:70:5b:e9:e6:73:2d:8c:26:87:63:69:ff:7f:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Aug 10 04:52:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e653901dbc4f8cd841ec4db9d0e64ba59e24a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:00:36:7f:d1:9a:03:a6:c3:40:f7:e9:bb:d9:
b2:ac:2b:a6:be:db:9c:48:2f:d7:9a:5b:80:ca:6f:
75:aa:ce:bb:2c:f5:83:94:4c:4d:c2:3e:85:ab:78:
cb:39:aa:be:3d:e0:b1:e9:f7:97:9a:d6:c4:25:12:
88:63:1f:c6:fa:23:a1:1f:2f:ab:f1:f7:ce:be:e8:
5a:b6:99:d3:ab:f2:f1:85:a9:4b:43:bd:7b:27:d6:
0f:3d:3c:09:38:fa:da:94:ec:06:0c:d6:ec:d1:6a:
5d:72:d1:f6:bf:95:01:9d:c7:2f:fc:65:d9:f9:24:
55:07:e2:72:12:90:9c:f6:c4:4b:51:c6:28:bc:10:
4c:cf:64:8c:74:19:51:23:60:77:d3:1b:b3:49:41:
31:1e:75:d9:2e:5c:fb:bd:e5:3c:e3:8f:fe:89:e5:
b2:cf:02:ad:01:df:d7:d7:86:c1:d8:54:3e:10:13:
4f:9b:70:f2:f4:08:54:5d:26:c9:86:8e:0e:12:18:
6f:9f:05:87:47:8c:83:57:79:d3:d2:58:d7:1a:e9:
b2:b1:06:71:ca:5c:7f:ef:4d:f6:7d:51:91:ea:f7:
d6:10:3c:f7:69:da:9a:9b:64:40:5d:b5:21:00:2c:
f7:c3:c8:23:fa:8f:79:cc:da:48:7a:13:2c:f3:32:
1c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:65:39:01:DB:C4:F8:CD:84:1E:C4:DB:9D:0E:64:BA:59:E2:4A:80
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/TmU5AdvE-M2EHsTbnQ5kulniSoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.237.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:db:1f:f5:ad:3e:90:c2:c9:6a:99:24:32:c1:44:9b:78:f6:
27:f6:63:f9:a8:76:1b:78:da:2a:75:2b:79:02:f0:c0:8b:00:
62:b9:e9:56:2b:49:69:90:70:18:b7:98:70:ed:f8:da:c1:6b:
db:75:ca:2f:60:0c:1b:8e:ae:26:75:a4:bb:22:9c:bb:b2:a5:
7a:70:50:b6:05:12:db:b3:5d:7d:4d:fd:50:e8:0c:67:65:61:
1f:02:92:bf:8c:23:11:2d:af:57:02:7d:48:6a:5b:f3:2e:b5:
db:1b:02:49:7f:d6:70:25:e5:eb:f4:f8:98:2f:1d:dc:c2:95:
d2:fa:37:28:d0:83:ac:84:fb:be:bb:af:67:a5:70:ca:1c:a9:
7f:5f:c2:11:af:0c:49:44:fc:01:56:a7:f3:4e:91:02:eb:41:
68:1d:a5:91:78:80:1b:bc:22:70:ad:70:f4:96:6b:83:94:ba:
f7:2f:67:09:59:67:9a:05:a4:d4:b2:e9:36:79:d1:5b:67:b7:
4b:ef:b2:ae:be:de:04:97:00:07:a5:d1:18:4f:7b:53:99:87:
65:4b:0d:5f:84:d7:45:31:b7:b1:84:b1:a6:a9:41:cd:56:17:
2e:f5:19:ef:be:39:c0:5a:56:aa:39:90:07:74:da:0f:05:e6:
3d:5d:b6:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:26:54 2025 by rpki-client