Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/b24127-81dd-4fa1-83f0-7b410b781def/1/KOJhkUUMIjz0uFGlKRuIsZQS2Ow.roa
File: KOJhkUUMIjz0uFGlKRuIsZQS2Ow.roa (raw, json)
Hash identifier: WaVE9ISV8SFpeSoNaxxeWdeLlD/qqWaxQnuBgi0DKuA=
Subject key identifier: 28:E2:61:91:45:0C:22:3C:F4:B8:51:A5:29:1B:88:B1:94:12:D8:EC
Certificate issuer: /CN=c56d2154ed53b629d872b2a38d9cd041bdb4b128
Certificate serial: 01870886D65AA6B6EE4EDB321245D8852F74
Authority key identifier: C5:6D:21:54:ED:53:B6:29:D8:72:B2:A3:8D:9C:D0:41:BD:B4:B1:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xW0hVO1TtinYcrKjjZzQQb20sSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/b24127-81dd-4fa1-83f0-7b410b781def/1/KOJhkUUMIjz0uFGlKRuIsZQS2Ow.roa
Signing time: Wed 22 Mar 2023 08:54:27 +0000
ROA not before: Wed 22 Mar 2023 08:54:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2607
IP address blocks: 46.228.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:08:86:d6:5a:a6:b6:ee:4e:db:32:12:45:d8:85:2f:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c56d2154ed53b629d872b2a38d9cd041bdb4b128
Validity
Not Before: Mar 22 08:54:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28e26191450c223cf4b851a5291b88b19412d8ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2d:8b:34:6e:94:54:ee:5f:8f:03:37:66:e9:
9a:6b:08:1d:06:62:a4:18:ca:43:44:33:69:76:6b:
e4:57:58:a9:4f:e0:15:9b:62:c8:2b:7e:0c:ca:1e:
dd:6d:d7:15:16:ea:50:c1:80:0e:6e:6f:1a:76:6e:
c8:6c:dc:3f:ce:da:3b:dd:8d:ab:9b:bc:3f:3a:74:
ae:2e:e8:ef:16:ce:af:0d:ea:26:ee:92:a4:f9:88:
2c:5c:8b:e7:4f:bd:f1:71:f1:cb:70:c8:8a:e8:e4:
6d:90:fb:b4:1b:4e:a3:53:05:fc:dd:27:27:57:4f:
ab:a9:c1:6b:8d:d0:ac:00:21:51:8c:e5:a2:f6:4a:
62:5f:aa:4e:1e:27:24:91:71:ce:50:68:5f:dc:5f:
c6:23:22:61:78:29:f0:e8:8d:0b:20:b2:7a:0a:0c:
35:5d:c2:f7:99:3f:d3:32:f2:56:49:b4:c0:cb:11:
3b:e0:86:b9:b6:35:90:06:55:d6:96:61:85:e7:4e:
8b:5d:45:c8:36:f8:43:5d:50:d3:ed:3a:2d:4c:75:
b7:a8:32:d2:8b:f0:d8:75:a8:20:40:0b:7e:82:41:
8b:10:ca:54:27:91:60:0c:aa:e2:df:fc:81:ea:e3:
ef:16:2c:01:56:a8:bf:52:24:17:f8:51:b2:4a:a0:
22:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E2:61:91:45:0C:22:3C:F4:B8:51:A5:29:1B:88:B1:94:12:D8:EC
X509v3 Authority Key Identifier:
keyid:C5:6D:21:54:ED:53:B6:29:D8:72:B2:A3:8D:9C:D0:41:BD:B4:B1:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xW0hVO1TtinYcrKjjZzQQb20sSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/b24127-81dd-4fa1-83f0-7b410b781def/1/KOJhkUUMIjz0uFGlKRuIsZQS2Ow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/b24127-81dd-4fa1-83f0-7b410b781def/1/xW0hVO1TtinYcrKjjZzQQb20sSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.228.223.0/24
Signature Algorithm: sha256WithRSAEncryption
06:89:99:3d:19:82:67:cb:c5:8e:da:7a:04:0a:6d:86:f7:22:
0c:3b:a4:22:08:3e:d8:18:78:68:ad:7f:22:1e:8f:78:90:eb:
f8:49:9d:8c:6a:09:f5:d5:f6:b2:8a:f4:e1:56:58:87:e8:f4:
5d:af:f7:4b:98:a9:c7:e3:d2:0b:4a:c4:a5:58:eb:10:29:9f:
12:82:33:a2:37:02:73:0d:8d:17:cb:74:11:17:20:c2:ca:e5:
8e:a7:95:0b:17:39:46:da:94:f9:d9:0c:d7:72:56:be:5b:2e:
89:a4:48:01:13:e8:23:19:20:b9:28:72:1c:3c:9e:ea:a6:87:
a8:65:db:1c:cb:71:bf:2d:3d:04:f4:40:f6:fc:e4:47:d3:5e:
a0:f2:b8:9d:c1:d8:53:f4:c5:0e:1a:b1:ae:e4:82:e1:7d:72:
c8:b3:cb:59:60:15:86:3f:97:4c:bb:a6:f6:ae:27:04:91:fd:
f7:6a:f8:a9:71:0e:d0:65:b6:71:22:27:30:24:31:8a:26:60:
6c:46:b8:43:86:9a:46:99:ee:57:99:50:d4:9f:09:2c:18:31:
8f:9e:2f:57:37:48:7e:11:be:ef:4b:f3:b7:cf:3f:c7:80:dd:
7b:09:22:7f:11:26:57:38:77:9f:d1:9f:12:2a:3c:d9:ea:31:
db:f9:26:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:41:40 2025 by rpki-client