Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/7f7259-53d0-41ae-951d-400417c9717e/1/9_Aed5fP5omDKNBP6ZZlSfw9i0Q.roa
File: 9_Aed5fP5omDKNBP6ZZlSfw9i0Q.roa (raw, json)
Hash identifier: 4Hv/Nz8eFcK2tKd9t+r06kgGL+o4rqY4JBBv72ThjWg=
Subject key identifier: F7:F0:1E:77:97:CF:E6:89:83:28:D0:4F:E9:96:65:49:FC:3D:8B:44
Certificate issuer: /CN=eff92d9368a09ad36f7a57edfbd0a05d9fd40e1d
Certificate serial: 018571B9F7519468D0D01D5075DB9A3F0CE7
Authority key identifier: EF:F9:2D:93:68:A0:9A:D3:6F:7A:57:ED:FB:D0:A0:5D:9F:D4:0E:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7_ktk2igmtNvelft-9CgXZ_UDh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/7f7259-53d0-41ae-951d-400417c9717e/1/9_Aed5fP5omDKNBP6ZZlSfw9i0Q.roa
Signing time: Mon 02 Jan 2023 09:04:50 +0000
ROA not before: Mon 02 Jan 2023 09:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44558
IP address blocks: 45.130.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b9:f7:51:94:68:d0:d0:1d:50:75:db:9a:3f:0c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eff92d9368a09ad36f7a57edfbd0a05d9fd40e1d
Validity
Not Before: Jan 2 09:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7f01e7797cfe6898328d04fe9966549fc3d8b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:51:a9:25:34:f2:d2:8b:1e:12:ec:62:63:85:
79:9c:e3:2d:5f:11:a5:47:4d:30:3d:f6:05:8e:be:
c2:e2:74:9c:a0:1b:22:e6:c6:64:54:96:31:3f:59:
38:93:26:a1:56:1c:b4:59:8e:f0:64:21:ff:ca:fc:
61:bd:71:94:12:d2:03:2b:4b:59:f7:32:8b:85:2b:
1e:dc:e5:12:d4:1b:ee:31:7b:b9:cc:60:55:86:9e:
92:73:1f:2b:f7:0d:08:e0:9f:61:4f:14:00:de:08:
5d:7f:67:40:58:07:8c:8b:75:21:e7:ed:b4:ec:a9:
8a:14:6b:7c:03:e7:f9:3b:52:7b:73:96:da:d5:49:
48:93:43:c0:3c:77:dc:77:4a:80:fc:0a:19:e1:cb:
55:cd:a5:31:f4:f2:88:78:82:99:cc:bb:50:d3:21:
ce:58:b1:c6:8f:65:08:36:70:61:00:2c:dc:da:d8:
5f:cf:2e:62:eb:6d:eb:9c:e2:3c:98:d4:36:67:e6:
ea:38:c0:17:4e:3a:51:05:cc:bb:b4:13:58:f7:f6:
7c:6e:6c:09:2a:dd:c4:6e:b5:11:41:b8:a0:67:3b:
b8:87:0c:84:4f:77:9c:b6:63:e7:c6:21:a0:19:68:
fd:31:65:af:ae:99:59:61:77:aa:94:c8:76:48:62:
8b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:F0:1E:77:97:CF:E6:89:83:28:D0:4F:E9:96:65:49:FC:3D:8B:44
X509v3 Authority Key Identifier:
keyid:EF:F9:2D:93:68:A0:9A:D3:6F:7A:57:ED:FB:D0:A0:5D:9F:D4:0E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7_ktk2igmtNvelft-9CgXZ_UDh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7f7259-53d0-41ae-951d-400417c9717e/1/9_Aed5fP5omDKNBP6ZZlSfw9i0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7f7259-53d0-41ae-951d-400417c9717e/1/7_ktk2igmtNvelft-9CgXZ_UDh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.156.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:5a:c7:25:a1:a5:2b:1a:8e:22:e9:2e:8b:0d:28:67:27:4c:
8f:6a:8b:e8:95:ac:72:77:1e:2b:bc:3e:1d:91:e0:1b:60:69:
ad:40:36:26:ae:2e:df:80:c4:8c:2c:b1:57:ae:16:a1:7b:56:
e5:54:05:b3:d9:97:c2:02:23:17:ba:90:a1:88:7a:80:9c:17:
8f:f2:d9:89:71:ff:a7:ee:c9:af:46:85:6b:c8:60:55:88:fd:
7f:20:59:07:3f:79:de:b3:5a:ba:cb:12:57:b3:cb:0c:6f:40:
46:a0:ef:25:55:01:12:c0:30:d0:26:2e:62:2e:ca:0c:a7:b9:
40:fc:ae:eb:95:d1:bc:31:c1:ba:c6:dc:bf:9a:f6:c9:ac:f4:
71:b3:f2:84:e1:dc:b0:6b:c4:61:36:f6:f3:d1:e7:4a:6a:4c:
01:57:76:c7:49:c6:97:17:47:f1:c7:20:52:ea:ed:c4:75:ad:
76:89:c0:24:ef:42:15:8f:21:7c:19:66:7f:b9:ae:6b:c0:98:
ec:03:54:4f:4b:90:b2:51:46:0f:37:9b:a4:43:b0:d1:27:67:
9f:b7:fb:29:56:b0:bf:97:0c:3f:0c:8b:2d:b4:64:22:fc:51:
23:1a:96:b7:b8:80:26:ef:75:a7:28:f8:4e:27:8e:71:68:63:
65:79:e7:9e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxufdRlGjQ0B1QdduaPwznMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmZjkyZDkzNjhhMDlhZDM2ZjdhNTdlZGZiZDBhMDVkOWZk
NDBlMWQwHhcNMjMwMTAyMDkwNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmN2YwMWU3Nzk3Y2ZlNjg5ODMyOGQwNGZlOTk2NjU0OWZjM2Q4YjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhlGpJTTy0oseEuxiY4V5nOMtXxGl
R00wPfYFjr7C4nScoBsi5sZkVJYxP1k4kyahVhy0WY7wZCH/yvxhvXGUEtIDK0tZ
9zKLhSse3OUS1BvuMXu5zGBVhp6Scx8r9w0I4J9hTxQA3ghdf2dAWAeMi3Uh5+20
7KmKFGt8A+f5O1J7c5ba1UlIk0PAPHfcd0qA/AoZ4ctVzaUx9PKIeIKZzLtQ0yHO
WLHGj2UINnBhACzc2thfzy5i623rnOI8mNQ2Z+bqOMAXTjpRBcy7tBNY9/Z8bmwJ
Kt3EbrURQbigZzu4hwyET3ectmPnxiGgGWj9MWWvrplZYXeqlMh2SGKL8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPfwHneXz+aJgyjQT+mWZUn8PYtEMB8GA1UdIwQY
MBaAFO/5LZNooJrTb3pX7fvQoF2f1A4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN19rdGsyaWdtdE52ZWxmdC05Q2dYWl9VRGgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi83ZjcyNTktNTNkMC00MWFlLTk1MWQt
NDAwNDE3Yzk3MTdlLzEvOV9BZWQ1ZlA1b21ES05CUDZaWmxTZnc5aTBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi83ZjcyNTktNTNkMC00MWFlLTk1MWQtNDAwNDE3Yzk3MTdl
LzEvN19rdGsyaWdtdE52ZWxmdC05Q2dYWl9VRGgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYKcMA0G
CSqGSIb3DQEBCwUAA4IBAQAcWscloaUrGo4i6S6LDShnJ0yPaovolaxydx4rvD4d
keAbYGmtQDYmri7fgMSMLLFXrhahe1blVAWz2ZfCAiMXupChiHqAnBeP8tmJcf+n
7smvRoVryGBViP1/IFkHP3nes1q6yxJXs8sMb0BGoO8lVQESwDDQJi5iLsoMp7lA
/K7rldG8McG6xty/mvbJrPRxs/KE4dywa8RhNvbz0edKakwBV3bHScaXF0fxxyBS
6u3Eda12icAk70IVjyF8GWZ/ua5rwJjsA1RPS5CyUUYPN5ukQ7DRJ2eft/spVrC/
lww/DIsttGQi/FEjGpa3uIAm73WnKPhOJ45xaGNleeee
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:56:32 2025 by rpki-client