Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/45AjwkC3x64jWwmaRF57aneHdQ0.roa
File: 45AjwkC3x64jWwmaRF57aneHdQ0.roa (raw, json)
Hash identifier: vm68rsdqiJkoC1NlranXn9fVkEn32laiCKm+nDpqVy8=
Subject key identifier: E3:90:23:C2:40:B7:C7:AE:23:5B:09:9A:44:5E:7B:6A:77:87:75:0D
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 27B651AC
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/45AjwkC3x64jWwmaRF57aneHdQ0.roa
Signing time: Sat 01 Jan 2022 16:08:41 +0000
ROA not before: Sat 01 Jan 2022 16:08:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50334
IP address blocks: 31.148.250.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 666259884 (0x27b651ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e39023c240b7c7ae235b099a445e7b6a7787750d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:32:f8:3c:13:06:3c:c3:79:37:04:7c:4b:90:
01:a9:c1:e9:a6:c3:1a:4c:be:13:f1:d1:0d:08:1b:
1b:f5:0d:73:7f:4c:18:80:d9:c1:f6:3b:aa:72:b3:
6e:07:bd:6f:2a:5e:43:a0:7d:f8:5a:2b:a4:ab:ec:
e4:26:3b:70:43:a9:b5:78:d3:65:19:24:ee:61:b7:
cf:87:44:6b:8e:a2:d9:5d:c0:5e:8c:f1:c3:55:88:
28:07:6d:f3:14:d1:28:8f:89:46:c6:b6:e9:a7:26:
0b:5b:c6:ff:3d:d9:59:1d:cf:3c:96:65:5c:1d:86:
5c:e3:fd:a8:2e:46:de:bb:77:94:45:81:e7:08:49:
14:d6:d0:a7:75:ce:03:f6:8a:44:13:19:27:ac:4c:
b6:a8:50:e5:9c:67:54:4c:54:10:b6:a9:f7:5e:b2:
ec:26:41:b7:b3:78:90:0e:d1:25:a4:db:d1:8c:65:
07:9d:17:eb:5d:96:4b:0e:c4:18:d6:78:40:1a:1b:
47:8d:90:51:d8:ff:1e:1b:ae:23:76:03:ec:1b:f6:
5e:04:c1:0d:75:6a:57:27:86:53:91:49:77:8a:2c:
46:3a:73:28:9a:39:1c:4e:87:fe:3f:93:d5:00:94:
b8:46:e8:b7:a4:96:e8:66:b5:c5:ad:c2:0b:e4:63:
1e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:90:23:C2:40:B7:C7:AE:23:5B:09:9A:44:5E:7B:6A:77:87:75:0D
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/45AjwkC3x64jWwmaRF57aneHdQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.250.0/23
Signature Algorithm: sha256WithRSAEncryption
06:88:4f:03:67:95:7a:4c:32:f4:57:cf:1f:ad:93:7d:86:d0:
8b:99:09:10:03:2b:ea:3a:8e:04:fc:6c:aa:5c:74:77:01:1f:
0f:36:42:6f:9d:ba:b8:4e:b5:db:47:1e:06:e6:cd:93:41:40:
41:9f:41:db:b4:d1:fb:b3:e9:c7:a2:4c:2b:5f:65:0e:20:4e:
7c:c2:08:03:5a:cd:3e:e2:4a:82:0d:17:47:8b:32:45:6d:88:
6a:ea:4c:05:ce:16:4a:1b:0b:65:43:d7:e8:6e:6f:e8:32:f7:
97:9c:1f:82:e6:5a:80:1d:fc:d0:71:7a:96:63:7c:b5:07:3a:
43:e9:06:75:b0:51:13:31:d0:ed:d5:89:33:d5:7c:8e:11:03:
2e:5e:21:86:a1:67:75:da:2c:c4:e7:0e:7b:b2:83:2e:f6:b3:
e3:a2:43:72:4e:f7:5f:e4:18:fb:76:d8:f3:42:f4:1d:7b:e3:
a8:ee:5a:0d:8d:ce:e7:63:3a:f1:6f:5d:11:c7:7e:a9:ec:b3:
d4:c7:71:6f:01:a5:71:b6:4a:e7:00:f1:6d:e9:69:c1:25:5c:
6a:4e:aa:2a:ad:2e:7c:8e:2e:68:27:bd:3c:0c:d5:97:a5:1e:
29:3e:f2:20:0a:92:66:9a:12:be:e2:12:f1:10:d0:36:41:74:
cf:82:a5:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 23:23:10 2025 by rpki-client