Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/9xHRtOD20blLuagrj2ugkstU-os.roa
File: 9xHRtOD20blLuagrj2ugkstU-os.roa (raw, json)
Hash identifier: htwy5UxXmsSFbPtMOtcz9hKNaSy3o2XSpDaqBZVT8OI=
Subject key identifier: F7:11:D1:B4:E0:F6:D1:B9:4B:B9:A8:2B:8F:6B:A0:92:CB:54:FA:8B
Certificate issuer: /CN=8e3f1663996be1707611fdce1ddea8920dd398a3
Certificate serial: 018968F2C1E1D24660E4F3E07337BDDA2DD8
Authority key identifier: 8E:3F:16:63:99:6B:E1:70:76:11:FD:CE:1D:DE:A8:92:0D:D3:98:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jj8WY5lr4XB2Ef3OHd6okg3TmKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/9xHRtOD20blLuagrj2ugkstU-os.roa
Signing time: Tue 18 Jul 2023 12:21:27 +0000
ROA not before: Tue 18 Jul 2023 12:21:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64286
IP address blocks: 45.139.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:f2:c1:e1:d2:46:60:e4:f3:e0:73:37:bd:da:2d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e3f1663996be1707611fdce1ddea8920dd398a3
Validity
Not Before: Jul 18 12:21:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f711d1b4e0f6d1b94bb9a82b8f6ba092cb54fa8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ec:19:a0:9b:de:7b:99:a7:b9:c6:a4:3b:de:
dc:86:63:96:d0:11:07:19:47:bb:28:80:58:da:b9:
53:d9:26:18:74:d6:92:42:c1:b9:b8:b0:df:d1:a6:
2b:76:f9:13:fc:74:66:aa:12:3e:7e:2b:e2:d4:74:
15:5b:31:50:e1:85:49:04:ad:43:e2:b4:fb:9f:9f:
59:d7:6a:aa:23:94:32:a5:2e:bc:64:90:de:5f:20:
62:aa:b0:26:6f:eb:3d:49:21:af:87:86:65:bd:05:
9a:1e:8f:07:5a:fa:ec:f5:b4:3b:6c:3e:ed:85:c4:
c3:27:7c:37:4c:c8:31:4a:5e:5d:32:4a:f6:b6:a0:
ac:fd:f6:8a:49:4d:8a:7f:75:ac:3b:37:ac:f3:6b:
92:cc:27:12:f6:e6:6e:98:b1:d9:0b:9b:51:64:27:
5a:11:66:c7:da:03:b8:8b:58:70:12:aa:6a:04:29:
47:94:82:89:9f:66:44:29:df:a4:41:93:af:b6:d5:
60:63:89:79:dc:55:b5:72:18:15:39:4b:e8:84:09:
c1:07:10:49:ac:69:04:80:e2:f3:d1:3e:fb:76:ae:
00:7c:2e:58:41:89:c5:a4:e6:0e:fd:15:62:bd:d6:
5c:37:0a:94:41:0c:36:0f:43:b7:ab:00:52:fa:97:
f8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:11:D1:B4:E0:F6:D1:B9:4B:B9:A8:2B:8F:6B:A0:92:CB:54:FA:8B
X509v3 Authority Key Identifier:
keyid:8E:3F:16:63:99:6B:E1:70:76:11:FD:CE:1D:DE:A8:92:0D:D3:98:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jj8WY5lr4XB2Ef3OHd6okg3TmKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/9xHRtOD20blLuagrj2ugkstU-os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/jj8WY5lr4XB2Ef3OHd6okg3TmKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.210.0/24
Signature Algorithm: sha256WithRSAEncryption
68:1d:70:bc:95:e7:f8:4a:c4:65:04:b7:88:5e:0d:f7:09:1c:
48:d6:c3:b5:0f:3c:2c:7b:88:7a:d2:3b:78:ba:f9:4f:93:f1:
11:82:c4:37:6b:4a:eb:1a:da:fd:c4:14:d2:1c:c4:fa:e4:a4:
0a:c5:c0:d0:be:b1:b5:0a:86:46:9d:1c:87:d0:e8:2e:77:a1:
27:0f:b0:84:56:d5:a2:6c:89:e2:07:3f:0b:22:79:de:42:3c:
8d:61:e4:55:63:ba:ec:28:86:f0:4e:9f:73:12:cb:39:66:c4:
88:1d:77:9e:84:f9:dd:5e:e4:b6:63:6f:12:ca:a4:16:0f:3c:
13:bf:70:fb:59:e1:03:3a:fe:d1:30:8b:db:31:e8:19:e9:86:
5a:f2:aa:48:c1:69:42:ae:4d:57:b1:ae:42:95:a8:c7:f6:9a:
01:31:1c:02:d2:88:5e:2d:52:8c:17:2e:67:5d:16:a8:86:e5:
db:d2:8a:f8:a3:09:e7:2b:78:0c:cb:20:3c:ae:69:cc:97:e6:
94:aa:e1:08:9a:98:e0:41:ab:d4:b0:b6:61:e9:b2:fb:30:13:
52:a4:aa:14:c7:e5:b2:18:84:d2:79:61:8c:ac:7a:fa:6e:f0:
02:be:38:8d:29:00:2f:e2:16:43:fa:fb:65:26:60:45:d5:ea:
11:b7:77:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:03:03 2025 by rpki-client