Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/3d4bc5-c363-415f-b3da-48e4cc6b33a3/1/hWngAm3NUaJ9IoWNgYtMnpJR2gU.roa
File: hWngAm3NUaJ9IoWNgYtMnpJR2gU.roa (raw, json)
Hash identifier: kAdIrO8s47NJfqVCCBfvmOWIDyADuwL9gS2davMWJO4=
Subject key identifier: 85:69:E0:02:6D:CD:51:A2:7D:22:85:8D:81:8B:4C:9E:92:51:DA:05
Certificate issuer: /CN=5bf81435ed13789895f375dc34d04ce91aca4744
Certificate serial: 8F489E
Authority key identifier: 5B:F8:14:35:ED:13:78:98:95:F3:75:DC:34:D0:4C:E9:1A:CA:47:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W_gUNe0TeJiV83XcNNBM6RrKR0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/3d4bc5-c363-415f-b3da-48e4cc6b33a3/1/hWngAm3NUaJ9IoWNgYtMnpJR2gU.roa
Signing time: Sat 01 Jan 2022 01:55:10 +0000
ROA not before: Sat 01 Jan 2022 01:55:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 719
IP address blocks: 158.233.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9390238 (0x8f489e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bf81435ed13789895f375dc34d04ce91aca4744
Validity
Not Before: Jan 1 01:55:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8569e0026dcd51a27d22858d818b4c9e9251da05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:88:50:79:7b:bc:68:16:5c:15:31:c9:2d:6c:
75:44:60:f2:70:21:dd:ce:b2:e3:ef:82:68:62:9a:
cd:3e:8f:3c:a3:a8:bf:61:06:15:11:52:08:ae:3f:
8e:8b:cf:b7:ae:2a:4b:0b:d5:b6:f5:ca:00:6a:7c:
f4:70:73:20:5d:15:b5:f1:99:63:a2:a8:8d:63:c2:
ec:dc:bf:13:03:21:ac:42:94:ca:3c:3c:7d:11:19:
76:a4:bf:fe:ac:dc:7e:04:39:81:a2:5b:21:5b:8f:
9b:3b:be:3e:35:30:73:52:82:c2:d4:eb:67:d9:75:
08:53:aa:d2:b4:ed:3a:27:6d:13:79:69:e0:86:25:
98:20:d4:44:bf:0a:9a:04:b2:32:23:e5:0d:ab:3a:
28:a9:a8:e5:63:b5:30:c3:42:5a:b0:f7:35:65:59:
bc:33:f7:44:af:8e:a4:5f:38:13:02:8f:ad:e2:00:
fe:ef:c3:81:ea:c1:09:71:4a:77:0e:0d:9b:99:87:
e9:b1:57:ec:b2:c7:d6:40:1e:04:23:d7:e2:bc:f5:
d0:1e:59:b3:64:96:8c:fa:0e:ae:84:e9:2c:20:00:
ad:e9:6b:0d:8a:49:2a:82:82:bb:5a:0d:c2:8a:2b:
83:56:cc:a1:5d:42:fd:e3:22:10:96:de:05:88:9e:
7a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:69:E0:02:6D:CD:51:A2:7D:22:85:8D:81:8B:4C:9E:92:51:DA:05
X509v3 Authority Key Identifier:
keyid:5B:F8:14:35:ED:13:78:98:95:F3:75:DC:34:D0:4C:E9:1A:CA:47:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W_gUNe0TeJiV83XcNNBM6RrKR0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3d4bc5-c363-415f-b3da-48e4cc6b33a3/1/hWngAm3NUaJ9IoWNgYtMnpJR2gU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3d4bc5-c363-415f-b3da-48e4cc6b33a3/1/W_gUNe0TeJiV83XcNNBM6RrKR0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.233.0.0/23
Signature Algorithm: sha256WithRSAEncryption
c7:28:1a:e1:71:91:f3:c1:d3:ab:8a:43:f8:a6:ec:4a:21:69:
a0:16:36:a8:f6:fc:89:6a:43:e4:96:57:dd:b7:9f:a4:4c:29:
63:78:93:34:cd:21:37:b1:c2:da:91:2f:0d:d3:49:5e:64:d7:
62:17:b8:cb:13:cc:4b:71:80:0b:be:a9:50:47:93:fb:c7:96:
67:af:27:f6:24:1d:c4:bf:dc:63:1b:16:0e:d6:05:1f:5d:bd:
52:25:f0:68:69:52:24:65:94:1e:53:b3:de:42:81:ea:15:89:
81:5a:0b:e3:e6:13:3f:1b:a5:bd:60:78:12:77:e5:c3:f5:56:
d2:ce:60:6e:27:a1:32:0c:b3:7c:4f:6f:5f:5c:60:cb:18:46:
12:ff:75:60:f3:66:f8:06:8e:5c:2d:c4:f5:81:0e:e3:a7:45:
17:bb:c3:17:7b:f1:88:1a:6b:cd:13:d6:ab:9e:3c:9b:30:71:
8f:dc:00:46:21:3d:28:e0:50:9a:fd:7b:bc:1b:97:9e:e5:fe:
5b:a1:11:7d:90:53:b2:e1:b8:a0:54:82:a4:ee:9d:f4:18:d6:
09:9b:60:65:d4:20:6a:56:b4:9d:d8:a2:5a:4a:b9:d1:09:d3:
4c:de:93:c8:61:bd:86:56:c6:20:cd:9a:ae:9c:e2:90:92:5e:
97:65:e9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:33:19 2025 by rpki-client