Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/75452b-a4ea-4112-af03-8ed8433d38c4/1/ohV_1YuKMHj04W3HGuXNXvJDwZo.roa
File: ohV_1YuKMHj04W3HGuXNXvJDwZo.roa (raw, json)
Hash identifier: gkERE5w0rmgcsVPcrfceGDLRHyHkM9Hm60KmAAQHBkc=
Subject key identifier: A2:15:7F:D5:8B:8A:30:78:F4:E1:6D:C7:1A:E5:CD:5E:F2:43:C1:9A
Certificate issuer: /CN=531f247d4bc70214606d07d659319ec3f3479706
Certificate serial: 085D4DC7
Authority key identifier: 53:1F:24:7D:4B:C7:02:14:60:6D:07:D6:59:31:9E:C3:F3:47:97:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ux8kfUvHAhRgbQfWWTGew_NHlwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/75452b-a4ea-4112-af03-8ed8433d38c4/1/ohV_1YuKMHj04W3HGuXNXvJDwZo.roa
Signing time: Sat 01 Jan 2022 07:56:35 +0000
ROA not before: Sat 01 Jan 2022 07:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24961
IP address blocks: 45.81.132.0/22 maxlen: 22
91.212.140.0/24 maxlen: 24
2a0e:4680::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140332487 (0x85d4dc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=531f247d4bc70214606d07d659319ec3f3479706
Validity
Not Before: Jan 1 07:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2157fd58b8a3078f4e16dc71ae5cd5ef243c19a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:73:57:54:cb:d8:a2:eb:24:d5:bf:fa:3a:0e:
72:74:51:b7:a1:0d:17:e9:41:69:53:42:2e:db:25:
fc:41:8c:92:c5:e0:91:70:a0:2c:09:82:19:bc:e4:
52:b3:d9:bf:76:72:a8:8e:f3:b0:06:2d:e3:76:e8:
44:d1:a2:c9:6f:9c:0d:ad:8c:a4:ae:b2:18:1a:0e:
f6:8a:f4:1a:f4:1f:48:03:4d:03:d4:7e:8e:50:e9:
14:df:96:ef:87:cb:1a:2b:ae:c8:04:5d:e8:17:ba:
cc:94:b1:5a:86:91:77:da:59:20:5c:75:eb:9e:9a:
a4:ac:8f:2b:d1:16:32:83:06:68:33:83:37:42:36:
29:20:af:cf:73:c1:25:50:b6:27:0b:d7:c1:e2:ba:
9d:ba:15:a5:c7:b3:b2:5d:b0:b7:62:3c:84:44:57:
fc:f6:fe:62:81:60:17:59:a6:d5:35:bf:5a:00:2f:
b5:02:b1:59:7d:af:82:d8:01:ab:0a:9c:ed:26:5d:
17:b6:6a:48:13:61:e2:d6:18:92:2b:c8:0c:e0:ce:
d3:53:b8:f7:18:0c:5f:43:7f:ad:0a:70:19:fc:f1:
11:3e:33:ab:07:40:be:a9:56:37:5b:c5:1d:6f:c8:
92:ac:86:0b:9d:0b:03:bc:5f:b8:ad:e1:68:c2:62:
b6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:15:7F:D5:8B:8A:30:78:F4:E1:6D:C7:1A:E5:CD:5E:F2:43:C1:9A
X509v3 Authority Key Identifier:
keyid:53:1F:24:7D:4B:C7:02:14:60:6D:07:D6:59:31:9E:C3:F3:47:97:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ux8kfUvHAhRgbQfWWTGew_NHlwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/75452b-a4ea-4112-af03-8ed8433d38c4/1/ohV_1YuKMHj04W3HGuXNXvJDwZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/75452b-a4ea-4112-af03-8ed8433d38c4/1/Ux8kfUvHAhRgbQfWWTGew_NHlwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.132.0/22
91.212.140.0/24
IPv6:
2a0e:4680::/32
Signature Algorithm: sha256WithRSAEncryption
7e:4c:ca:06:d9:4d:a2:4a:3d:92:d1:25:38:07:85:d2:36:58:
d4:96:4a:a9:2b:f4:57:f7:b8:9f:1b:05:c2:ee:72:90:bd:c0:
7c:73:6c:9c:93:62:42:10:38:26:dc:8e:b4:36:cb:02:cd:d7:
93:9a:91:e7:ca:ab:90:65:f2:9c:d4:a8:7d:66:fc:2c:4f:0b:
a4:2f:66:11:51:21:bb:0a:04:1f:9f:16:4b:f5:0b:8c:dc:a5:
46:c4:20:78:48:e6:89:7c:60:a0:0b:b9:7c:1d:bf:63:05:6b:
94:c2:92:cb:35:b4:42:97:9c:bc:10:20:bd:0d:6c:4b:23:cf:
bb:88:85:6a:8b:2d:50:5b:ea:67:c6:39:10:35:07:2a:5b:d2:
c8:b3:95:c7:c0:a9:0c:17:d6:16:94:7c:8a:e4:10:20:5c:c0:
93:14:d1:e6:02:3e:4f:49:3e:f0:06:d7:9c:69:8a:4e:19:22:
1e:53:4c:71:19:28:9b:96:e1:04:d9:14:a5:13:71:bc:d7:21:
a4:d2:be:e6:93:eb:30:e7:bd:be:be:4a:63:b5:78:27:c7:3b:
bc:b9:ea:85:04:8d:43:b2:28:c6:4b:09:b3:fb:f7:67:74:36:
f1:2f:00:7c:0a:1d:c8:23:3d:c8:1b:4b:89:8e:cd:66:12:f1:
56:2f:24:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:41:42 2025 by rpki-client