Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/7TWsKn-Xesn7tQZXJKEMtfgdNN8.roa
File: 7TWsKn-Xesn7tQZXJKEMtfgdNN8.roa (raw, json)
Hash identifier: Y+PKw3AJs8rjJNzS/bBSdLFlClB5PIe4BteBKCaW8JY=
Subject key identifier: ED:35:AC:2A:7F:97:7A:C9:FB:B5:06:57:24:A1:0C:B5:F8:1D:34:DF
Certificate issuer: /CN=3749975439fe4ffa9310262acbdd5f723cee2223
Certificate serial: 05C03617
Authority key identifier: 37:49:97:54:39:FE:4F:FA:93:10:26:2A:CB:DD:5F:72:3C:EE:22:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N0mXVDn-T_qTECYqy91fcjzuIiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/7TWsKn-Xesn7tQZXJKEMtfgdNN8.roa
Signing time: Sat 01 Jan 2022 04:55:45 +0000
ROA not before: Sat 01 Jan 2022 04:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197886
IP address blocks: 45.12.40.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96482839 (0x5c03617)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3749975439fe4ffa9310262acbdd5f723cee2223
Validity
Not Before: Jan 1 04:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed35ac2a7f977ac9fbb5065724a10cb5f81d34df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:16:b0:48:02:11:87:68:1e:21:a4:34:01:82:
76:83:49:76:81:f0:79:fb:9d:c6:75:c7:27:8d:20:
7d:69:7f:fb:2a:98:da:6c:9b:e5:6a:7b:e4:50:17:
a6:18:93:5d:61:78:41:b0:94:ff:ca:45:51:0b:81:
c0:27:94:cf:e7:08:b5:7c:98:6c:8c:64:62:3a:20:
33:31:9d:1e:ac:20:2c:47:05:b3:38:47:f7:39:46:
e7:91:b2:a1:02:ef:15:1c:b9:4d:b6:ce:5c:ae:02:
ad:f5:bb:e7:6a:5f:c3:5a:03:28:e5:39:d1:63:3a:
8f:38:9f:f9:c4:ec:f3:2c:a6:bd:de:93:59:58:17:
5a:e4:9d:04:74:02:be:a2:9a:0c:4a:48:e1:4f:d0:
70:32:f9:d0:42:af:21:34:9b:80:a3:3a:b6:17:ea:
3b:01:62:a1:7e:3c:be:83:8f:c0:f6:8e:e7:d5:df:
b3:00:fb:c0:20:c3:4c:1c:09:d4:13:db:29:be:e2:
ad:fc:36:a0:19:d2:8a:94:74:1e:83:4a:d4:94:05:
ef:61:96:9d:10:2b:ec:c2:49:f4:91:6f:ef:d5:99:
88:c8:58:8e:2c:68:f6:93:11:72:dd:28:9c:9b:6b:
61:f3:a6:7c:63:e0:1c:c5:bf:4d:de:d1:c5:9c:96:
3a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:35:AC:2A:7F:97:7A:C9:FB:B5:06:57:24:A1:0C:B5:F8:1D:34:DF
X509v3 Authority Key Identifier:
keyid:37:49:97:54:39:FE:4F:FA:93:10:26:2A:CB:DD:5F:72:3C:EE:22:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N0mXVDn-T_qTECYqy91fcjzuIiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/7TWsKn-Xesn7tQZXJKEMtfgdNN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3fc4e0-eb5f-42d3-98e1-be00a65103ad/1/N0mXVDn-T_qTECYqy91fcjzuIiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.40.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:2e:ef:4c:28:61:4a:71:c6:6f:13:1e:1c:6c:5f:b4:7f:44:
9c:84:73:0e:81:c5:88:74:d2:f0:92:e6:d1:62:37:6a:0e:fa:
c1:c6:6c:67:fd:e6:8d:55:e5:8b:dc:86:23:23:00:7d:b4:ea:
64:ab:87:76:58:74:c4:11:e7:41:99:f6:e0:5d:16:c5:b1:a8:
02:0f:eb:13:46:85:58:f2:49:99:89:c7:f2:96:df:09:bb:de:
c4:7c:7c:a8:c9:2a:6d:10:21:bc:84:61:e8:92:9c:e8:4a:d9:
19:f3:d7:3f:15:5b:d5:52:f3:8a:0d:ce:86:23:10:d2:b1:3a:
8d:aa:4b:a5:eb:99:d1:91:80:83:1b:fa:7a:e6:40:24:1d:6e:
48:78:84:0d:65:f6:d3:17:1b:a8:ef:fa:5f:11:a4:a0:fc:8a:
1d:29:34:51:98:f5:db:1c:db:d3:cb:8c:b9:67:d4:1c:dc:af:
9d:03:4a:c9:cd:52:d2:23:c4:ec:2f:56:ed:be:ab:0d:d1:ba:
17:b4:f0:a4:96:99:0c:d9:c6:70:5f:8b:5f:4c:57:27:6b:01:
2f:64:71:cc:6a:18:1c:08:63:d1:51:9a:2c:8e:50:05:67:73:
2f:60:37:e0:5c:95:c1:04:2c:f9:b5:d2:97:a3:0e:49:32:9d:
7a:ee:17:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 05:47:20 2025 by rpki-client