Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/Do3CQ2zKNEf6iAEvJ6ci9YgaYjM.roa
File: Do3CQ2zKNEf6iAEvJ6ci9YgaYjM.roa (raw, json)
Hash identifier: CvhFOJj7ZOmLkSUZT1oXguWR8cVme1XxFb3+dco0+is=
Subject key identifier: 0E:8D:C2:43:6C:CA:34:47:FA:88:01:2F:27:A7:22:F5:88:1A:62:33
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 02809826
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/Do3CQ2zKNEf6iAEvJ6ci9YgaYjM.roa
Signing time: Sat 01 Jan 2022 15:55:21 +0000
ROA not before: Sat 01 Jan 2022 15:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209835
IP address blocks: 45.149.182.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41981990 (0x2809826)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Jan 1 15:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e8dc2436cca3447fa88012f27a722f5881a6233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a6:bb:97:2a:ef:57:f6:10:ac:db:b8:ce:32:
7f:71:f1:57:66:8a:80:22:88:b1:88:3c:05:a0:a2:
f8:cb:a1:64:5e:99:57:ff:17:90:a9:6a:7c:5a:ca:
b4:e0:c0:cc:a1:4e:0c:16:07:d2:76:42:04:c3:75:
dc:7b:ce:31:56:c7:c6:a2:9a:a4:ac:34:a5:69:d2:
fc:64:6d:7e:a8:4e:4c:5b:d2:4f:ed:54:b8:20:2b:
df:df:de:27:8c:67:de:93:6b:bf:f4:31:80:83:e1:
7b:74:12:20:9f:98:f8:e1:22:e0:45:af:6d:0f:1f:
59:e0:1b:1a:1f:2b:b0:5c:20:f3:16:d7:da:c5:d5:
ef:bf:3a:29:ee:90:6b:a6:32:33:d5:ea:79:89:34:
0f:c6:0a:b3:dd:da:0e:c2:e7:3e:38:ab:c5:1c:1e:
93:06:18:0d:a3:05:00:c6:82:34:4e:76:03:81:83:
ae:57:38:33:b4:70:51:5b:52:35:e4:38:f8:5d:33:
86:35:9a:af:77:f3:55:a0:3d:28:df:6f:cd:e9:53:
4b:9b:e3:2d:98:96:87:47:9d:67:1e:35:07:77:53:
20:1c:cb:86:74:a2:6f:c8:a4:30:b3:72:8c:b8:55:
24:4b:af:1b:6e:b9:5b:80:0e:ea:8d:00:7e:ff:e6:
c3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:8D:C2:43:6C:CA:34:47:FA:88:01:2F:27:A7:22:F5:88:1A:62:33
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/Do3CQ2zKNEf6iAEvJ6ci9YgaYjM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.182.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:4e:8f:3e:16:0f:fb:53:ff:8a:ba:ee:1f:2e:93:b4:dc:d0:
34:d8:43:5d:cf:7b:15:2a:42:1d:3f:39:36:b6:7f:c5:f3:2f:
38:d6:19:f9:d1:6c:a7:61:8d:2a:65:3f:55:62:e7:c9:1b:e3:
d9:54:93:65:50:e0:2f:a5:29:49:66:fd:f3:b4:d0:e9:5a:d5:
84:04:d3:a0:b7:d5:cc:63:82:ff:0c:2d:1f:22:c1:93:3d:46:
de:d8:ec:79:3c:8f:16:a0:c1:3a:66:f0:a9:de:86:c5:28:67:
5c:d7:c7:52:2d:1f:9f:0c:c0:08:fc:0f:29:7e:11:c3:ae:8b:
73:2c:87:17:bc:bd:71:2e:72:83:f5:d9:e5:62:e0:2b:28:9f:
bb:3d:de:47:65:f4:10:0d:99:57:ea:1a:61:d8:82:1d:03:90:
6b:c7:b9:bf:30:ca:a5:2b:8c:06:35:ca:cd:bb:42:f2:f7:29:
7c:0f:e5:99:15:6e:4d:67:1b:53:04:c2:00:8f:df:3b:2b:94:
b4:21:cf:77:bc:89:8e:31:85:49:a4:db:85:4e:52:d4:71:c0:
1d:2b:d6:b0:ea:f8:ad:5a:cc:4f:c9:b1:d4:a5:d7:d1:6c:4e:
ea:84:b9:66:ce:1c:b2:91:f8:f3:9e:0c:2e:53:f1:57:91:b6:
67:97:64:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:57 2025 by rpki-client