Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/dEDiKYJQjBfJHYtMjm3hI6_wVA4.roa
File: dEDiKYJQjBfJHYtMjm3hI6_wVA4.roa (raw, json)
Hash identifier: 5QngjfmLojKoQH47qDfRTG8uufXZl+5Rjw6PgmRCjBM=
Subject key identifier: 74:40:E2:29:82:50:8C:17:C9:1D:8B:4C:8E:6D:E1:23:AF:F0:54:0E
Certificate issuer: /CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Certificate serial: 02D9A931
Authority key identifier: BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/dEDiKYJQjBfJHYtMjm3hI6_wVA4.roa
Signing time: Tue 15 Feb 2022 16:54:20 +0000
ROA not before: Tue 15 Feb 2022 16:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208486
IP address blocks: 45.149.180.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47819057 (0x2d9a931)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf107e07952c069358cd3f82aaeceb4c69483ca9
Validity
Not Before: Feb 15 16:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7440e22982508c17c91d8b4c8e6de123aff0540e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:79:de:3d:5d:20:d3:06:4b:5b:64:85:bd:7e:
22:e7:e6:f6:e8:0a:bf:fb:24:08:d1:9d:80:c6:ad:
c4:8b:1f:a4:e4:2f:13:71:9f:85:d6:5a:ed:df:de:
93:85:58:7b:de:43:11:4a:45:94:f5:12:ae:c6:75:
d9:85:ca:2c:ac:0f:51:60:24:d3:50:b5:c6:8c:bd:
ed:22:b6:38:e3:4a:5c:3f:97:2b:e6:50:ff:ac:c1:
ff:6c:ea:ca:24:48:9c:09:fc:34:3d:46:4b:f6:45:
ce:04:48:e1:90:60:fd:46:4c:e6:5c:85:96:d5:ef:
70:5a:8d:15:10:17:1a:c1:49:09:0c:f8:02:0b:44:
fe:e9:a5:29:25:57:11:57:e9:0c:29:d6:c4:83:7a:
1e:6b:83:10:38:1f:98:c4:75:c2:15:b3:b7:63:80:
75:6f:73:82:8e:a6:9e:8f:9e:59:e8:43:52:1b:8c:
be:63:a7:73:c2:ff:04:25:89:d7:d2:c7:38:e0:f9:
2e:7a:95:4e:c6:94:8e:25:de:38:0e:b1:9f:3e:ee:
ba:8b:46:8a:71:9c:df:c7:1e:03:96:d0:43:7d:40:
26:2b:44:e4:7b:08:34:89:e0:2b:11:b6:50:8c:30:
63:78:25:e0:71:f8:85:fa:ea:41:47:84:3b:3f:d9:
bf:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:40:E2:29:82:50:8C:17:C9:1D:8B:4C:8E:6D:E1:23:AF:F0:54:0E
X509v3 Authority Key Identifier:
keyid:BF:10:7E:07:95:2C:06:93:58:CD:3F:82:AA:EC:EB:4C:69:48:3C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxB-B5UsBpNYzT-CquzrTGlIPKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/dEDiKYJQjBfJHYtMjm3hI6_wVA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/7e28ee-c65d-4529-a47b-48633d718590/1/vxB-B5UsBpNYzT-CquzrTGlIPKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.180.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:5e:fd:ae:9a:c9:cf:4d:16:1e:12:e0:28:74:30:90:31:ab:
17:5e:5c:42:c2:3b:bc:5f:d8:06:81:d3:cc:7a:d3:f0:5d:72:
5c:fd:cd:8b:2a:03:84:0c:11:53:90:6d:ae:56:cc:62:fe:7b:
0d:25:44:44:31:59:40:c8:b7:5e:0a:17:53:07:46:0b:fd:da:
63:43:ac:40:b6:af:69:e3:6e:bd:dd:ec:cb:a9:1a:cc:8b:8e:
49:fb:99:d5:45:d7:c1:44:7f:5a:c7:75:0f:45:83:59:f0:c0:
bf:01:94:a1:f0:57:83:44:95:9f:69:e6:ab:11:39:ad:1b:a0:
fc:77:1f:fe:22:58:0d:37:d0:a8:ee:23:d4:5f:27:41:88:95:
df:0b:44:97:14:90:54:d4:85:88:78:9b:34:58:42:e4:2c:0f:
93:a0:98:bc:73:2d:f5:58:24:e7:34:78:fc:2a:54:03:7f:8a:
80:11:4f:7b:5c:ed:53:6c:c6:00:83:e9:05:b4:60:24:54:1c:
89:64:ae:04:63:9f:8c:4c:88:32:28:dc:65:b8:6a:46:a1:4c:
8d:68:ef:bb:ab:85:75:37:44:5c:78:a6:50:e4:34:69:3c:7a:
b6:0e:57:14:d4:b8:44:4a:52:99:3d:42:49:b1:9d:dc:d9:65:
c1:8d:cd:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:28 2025 by rpki-client