Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/5a698d-998a-48ba-8dc5-333f0c99279e/1/T4pHPlmJ6J3STjNJGkEiJgqiFh4.roa
File: T4pHPlmJ6J3STjNJGkEiJgqiFh4.roa (raw, json)
Hash identifier: vUQEMmJVpn3XxulHFPpXdTUv95WmyCpmyhMdGnzsOqU=
Subject key identifier: 4F:8A:47:3E:59:89:E8:9D:D2:4E:33:49:1A:41:22:26:0A:A2:16:1E
Certificate issuer: /CN=66f90e75df98afb43019ce750350e769b99fbc13
Certificate serial: 38094C51
Authority key identifier: 66:F9:0E:75:DF:98:AF:B4:30:19:CE:75:03:50:E7:69:B9:9F:BC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZvkOdd-Yr7QwGc51A1DnabmfvBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/5a698d-998a-48ba-8dc5-333f0c99279e/1/T4pHPlmJ6J3STjNJGkEiJgqiFh4.roa
Signing time: Sat 01 Jan 2022 04:03:26 +0000
ROA not before: Sat 01 Jan 2022 04:03:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29075
IP address blocks: 46.23.240.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 940133457 (0x38094c51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66f90e75df98afb43019ce750350e769b99fbc13
Validity
Not Before: Jan 1 04:03:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f8a473e5989e89dd24e33491a4122260aa2161e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:65:e4:9d:04:9d:53:55:7c:2e:ea:d5:e6:92:
f7:3c:e4:1c:db:81:97:3c:44:ce:b7:8c:28:43:a1:
66:42:c1:20:a1:44:e8:d3:c7:50:1b:71:29:e0:4f:
7f:3a:de:b1:65:86:22:e2:59:54:2b:c1:70:33:a0:
b1:a3:4b:a3:58:8d:b5:71:f1:00:61:8a:4a:d4:df:
88:27:de:5c:25:b4:d8:55:4d:95:f1:b8:08:bc:f3:
99:65:af:6d:b3:9b:7b:8d:9c:4d:25:b2:97:db:19:
95:e2:c4:39:89:ff:bc:7c:5c:a5:49:64:aa:99:8a:
0b:b7:d9:a5:98:ae:a5:0f:04:20:1b:42:59:1e:7d:
d6:dc:d9:d3:e4:1b:6e:16:5e:26:e8:54:e1:a4:aa:
35:f1:fb:db:b1:00:55:6c:78:2b:ec:78:c0:ed:75:
2b:a4:22:d4:e7:0d:f8:b4:5e:b1:3b:dd:7a:6e:ee:
8e:03:df:00:31:52:8d:e5:34:32:1f:67:38:5b:95:
ae:c7:03:a7:15:51:1e:1f:f2:80:1e:ab:6b:36:a2:
38:74:18:65:8c:e1:2f:55:ba:54:2a:7f:0f:da:54:
40:76:50:bd:37:18:03:1b:2c:6f:cc:84:f2:0d:e7:
8a:48:18:ec:31:d5:37:12:ca:c0:84:f3:31:61:00:
d2:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:8A:47:3E:59:89:E8:9D:D2:4E:33:49:1A:41:22:26:0A:A2:16:1E
X509v3 Authority Key Identifier:
keyid:66:F9:0E:75:DF:98:AF:B4:30:19:CE:75:03:50:E7:69:B9:9F:BC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZvkOdd-Yr7QwGc51A1DnabmfvBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/5a698d-998a-48ba-8dc5-333f0c99279e/1/T4pHPlmJ6J3STjNJGkEiJgqiFh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/5a698d-998a-48ba-8dc5-333f0c99279e/1/ZvkOdd-Yr7QwGc51A1DnabmfvBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.240.0/20
Signature Algorithm: sha256WithRSAEncryption
72:21:69:94:0a:b5:19:bc:77:f6:c7:bf:1d:ff:56:bf:4f:8e:
c1:28:88:2c:f5:55:c8:72:d0:62:98:83:7e:d1:9c:b2:ea:50:
9e:05:d1:aa:59:57:7e:96:a6:ed:eb:c1:58:d4:9b:b4:81:cf:
71:3f:7c:69:a5:4d:87:9c:00:db:7f:dc:c1:ed:da:98:d5:cf:
d6:4b:77:da:1e:7e:76:10:1e:b0:a8:06:2a:19:fd:46:bb:e2:
08:e1:fd:21:d8:09:62:54:04:a6:31:de:60:8e:7d:0a:43:0b:
af:7e:b2:00:e8:bf:4d:82:87:6a:a4:c4:4c:ea:77:15:da:a0:
38:98:0d:e8:ee:9f:8f:cd:3d:2e:41:b8:af:7e:d8:2f:58:c1:
7f:aa:95:c5:95:bf:94:22:c6:81:6c:13:ab:9c:cc:fb:71:84:
75:73:0a:11:24:6b:56:b1:5a:26:fb:5a:08:bc:af:a6:16:0c:
98:00:62:ac:ad:40:b2:17:d1:3d:b2:cb:fe:7e:5b:cb:75:22:
85:53:04:dc:85:9a:6d:d8:30:bd:10:e9:ce:d0:89:6a:48:2a:
71:76:9a:85:df:ce:5f:8e:71:1b:28:c8:c9:cd:68:07:6e:c1:
17:79:b6:75:05:c2:79:99:c4:2d:50:47:fa:f5:05:77:18:9c:
61:34:66:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 04:58:57 2025 by rpki-client