Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/fEPPCkvZWSR9vvLdu8Q6ne9DN5o.roa
File: fEPPCkvZWSR9vvLdu8Q6ne9DN5o.roa (raw, json)
Hash identifier: 9aBj2KQY3ltu/gI4SCEAFgo+l0HAVaLepWqnfh61S44=
Subject key identifier: 7C:43:CF:0A:4B:D9:59:24:7D:BE:F2:DD:BB:C4:3A:9D:EF:43:37:9A
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 018597D3CF1A758DCD3A505A603CCA44B5B0
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/fEPPCkvZWSR9vvLdu8Q6ne9DN5o.roa
Signing time: Mon 09 Jan 2023 18:38:38 +0000
ROA not before: Mon 09 Jan 2023 18:38:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 5.105.149.0/24 maxlen: 24
5.105.150.0/24 maxlen: 24
5.105.151.0/24 maxlen: 24
5.105.148.0/24 maxlen: 24
5.105.87.0/24 maxlen: 24
5.105.88.0/24 maxlen: 24
5.105.89.0/24 maxlen: 24
5.105.86.0/24 maxlen: 24
5.105.233.0/24 maxlen: 24
5.105.232.0/24 maxlen: 24
5.105.234.0/24 maxlen: 24
5.105.235.0/24 maxlen: 24
5.105.236.0/24 maxlen: 24
5.105.177.0/24 maxlen: 24
5.105.178.0/24 maxlen: 24
5.105.174.0/24 maxlen: 24
5.105.175.0/24 maxlen: 24
5.105.176.0/24 maxlen: 24
5.105.180.0/24 maxlen: 24
5.105.181.0/24 maxlen: 24
5.105.182.0/24 maxlen: 24
5.105.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:97:d3:cf:1a:75:8d:cd:3a:50:5a:60:3c:ca:44:b5:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 9 18:38:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c43cf0a4bd959247dbef2ddbbc43a9def43379a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ae:8c:02:d2:56:56:31:ee:31:c1:e7:2a:7c:
09:08:75:06:21:7e:bb:d9:a1:88:ad:92:2d:6a:b7:
cd:19:e0:19:ae:02:c4:f4:bd:cd:ab:a8:96:dd:45:
30:76:97:08:e3:28:24:5a:58:ef:1c:f5:19:88:a5:
41:dd:33:b7:b4:b5:68:d0:18:d6:86:d4:da:f2:8d:
6a:79:d6:79:e8:ff:0d:db:25:39:2f:51:26:ac:c0:
16:2d:0a:84:a5:94:78:32:9d:6a:07:83:81:06:e3:
aa:83:88:dd:de:3c:66:28:4c:67:42:0c:62:2c:42:
84:2e:24:c1:c0:9f:d0:93:ee:e0:2b:fe:a1:a0:59:
ef:3a:a5:d6:02:43:c5:b9:15:f1:4e:17:ce:f5:9b:
aa:95:e6:56:9e:f9:bf:84:d8:65:71:7b:e3:52:c7:
51:88:ab:eb:1b:c5:9e:9d:70:9d:48:9f:86:a2:21:
14:b7:92:dd:67:b0:80:f7:41:ac:26:91:87:45:ba:
4a:54:28:0b:4b:0c:f8:bc:ba:28:32:90:ac:99:5d:
90:64:f5:bf:26:86:7a:05:4d:ca:d5:c0:41:07:f5:
8d:93:14:a6:a4:0a:b8:be:d0:aa:f6:4d:6b:02:9c:
0f:9b:d2:af:f7:27:d0:08:ea:ce:75:49:dc:9d:ef:
be:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:43:CF:0A:4B:D9:59:24:7D:BE:F2:DD:BB:C4:3A:9D:EF:43:37:9A
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/fEPPCkvZWSR9vvLdu8Q6ne9DN5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.86.0-5.105.89.255
5.105.148.0/22
5.105.174.0-5.105.178.255
5.105.180.0/22
5.105.232.0-5.105.236.255
Signature Algorithm: sha256WithRSAEncryption
d3:c6:57:a0:2d:32:5e:ca:b9:ee:63:5f:df:58:c9:91:5e:be:
ad:e2:7c:e7:f7:77:ac:94:45:5d:01:73:a3:00:51:3a:56:4a:
c0:70:9b:f2:d8:91:dc:c8:91:71:30:18:be:a6:e8:a6:f9:82:
e2:0d:62:b5:7a:0c:d1:7a:88:88:74:26:21:44:03:df:27:d8:
66:a7:53:d5:28:93:e1:53:e1:d9:d5:24:e5:d0:7e:09:90:9c:
b7:6b:5d:04:a6:1c:4e:f3:d1:2d:73:00:d0:93:81:57:40:06:
76:df:bd:8e:0e:e5:32:92:47:78:7e:11:42:23:b9:1a:4d:96:
7f:73:53:05:e5:4c:8d:9b:b0:21:75:34:0a:5c:85:7a:1d:43:
af:f4:2c:ee:79:00:8e:ca:39:a9:5c:31:59:f2:28:5a:e4:45:
b3:3a:cf:fb:68:07:26:2f:df:79:5d:86:f4:c7:94:d4:a0:de:
4e:8f:fe:e4:1b:6c:b1:bb:80:b9:1e:0e:b6:59:aa:bd:01:9d:
06:8c:1a:46:72:a2:d5:c3:09:4b:27:36:f3:35:50:e0:dc:e7:
23:04:1d:aa:34:39:dd:df:5b:ad:9d:a2:02:8c:37:04:4e:f7:
08:20:78:d6:bd:01:1b:53:6f:73:b8:e1:f6:3a:78:c7:46:e3:
d6:68:d6:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 14:15:25 2025 by rpki-client