Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/6uH3RmDSOITAjTs-TRvEteTvirE.roa
File: 6uH3RmDSOITAjTs-TRvEteTvirE.roa (raw, json)
Hash identifier: L0WlbHPxDt8O/Qj6Ktm3C4P24m/v1+5Xulv4cBhzTSU=
Subject key identifier: EA:E1:F7:46:60:D2:38:84:C0:8D:3B:3E:4D:1B:C4:B5:E4:EF:8A:B1
Certificate issuer: /CN=c5721737651598f56cf7195120777d7b5316f552
Certificate serial: 04017A41
Authority key identifier: C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/6uH3RmDSOITAjTs-TRvEteTvirE.roa
Signing time: Sat 01 Jan 2022 15:01:25 +0000
ROA not before: Sat 01 Jan 2022 15:01:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208766
IP address blocks: 45.85.228.0/22 maxlen: 22
2a0e:cc80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67205697 (0x4017a41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5721737651598f56cf7195120777d7b5316f552
Validity
Not Before: Jan 1 15:01:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eae1f74660d23884c08d3b3e4d1bc4b5e4ef8ab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:db:05:54:5c:63:f1:7c:24:53:8b:f1:cb:c2:
81:c1:d3:ec:94:6a:e3:d6:a3:cc:4b:84:79:bd:65:
17:0d:47:00:e1:2a:35:e8:90:63:16:3e:87:00:ab:
5e:44:2d:70:50:74:d4:a7:b9:5b:cd:84:99:f9:f5:
59:de:83:8c:d0:67:8d:e6:23:9f:1e:b9:b1:4b:e7:
36:fe:39:f1:8e:93:a3:c0:92:5b:fa:cb:83:94:19:
64:58:1d:49:c9:4f:24:00:6d:d2:87:16:e2:29:32:
12:92:df:1c:19:c2:ee:28:91:50:2a:49:7e:95:0f:
39:70:13:c9:d2:31:4e:7d:8e:52:a0:ce:08:80:c1:
11:71:b5:1f:36:68:4e:e2:1d:46:43:eb:40:54:eb:
44:d2:b6:82:83:4e:1a:0b:ef:69:01:d2:d9:64:52:
f7:d4:fb:b6:50:55:c9:97:e2:0e:29:16:05:9a:7c:
f9:bc:79:69:28:38:17:bc:1e:98:c0:e3:7c:3b:48:
21:1d:e8:ef:35:78:33:c5:47:f9:f5:bc:ad:46:4f:
f7:6d:cb:9d:31:65:d9:38:29:16:ae:65:74:5e:7c:
71:1d:b5:35:2c:b6:e2:d3:ba:f3:d0:68:5b:3e:c0:
4c:de:f6:bb:cd:ea:08:0b:3c:12:1c:6f:a5:ee:71:
96:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E1:F7:46:60:D2:38:84:C0:8D:3B:3E:4D:1B:C4:B5:E4:EF:8A:B1
X509v3 Authority Key Identifier:
keyid:C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/6uH3RmDSOITAjTs-TRvEteTvirE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.228.0/22
IPv6:
2a0e:cc80::/29
Signature Algorithm: sha256WithRSAEncryption
03:2e:b0:f1:08:1e:c3:eb:ba:ac:f4:e3:84:20:c7:13:7d:45:
48:b0:22:f6:94:06:64:0b:ad:8b:bd:bc:76:90:76:5d:98:1b:
dd:75:1c:10:2d:19:5a:65:58:c2:5e:11:05:9e:b2:b3:e7:cc:
8e:ca:fa:f7:bb:7d:ce:a2:46:cf:40:46:85:bf:7c:f0:00:93:
6a:30:78:db:3f:32:0e:51:d9:b4:2d:eb:76:cd:5b:da:d7:d9:
62:13:f2:6b:a5:ca:47:14:c6:95:b9:5f:25:63:4c:d4:6d:09:
6e:ce:50:65:4c:eb:91:f7:c3:a1:fb:91:21:a9:1c:54:f5:ac:
38:8e:a1:f6:9a:12:98:0d:35:52:a1:62:a9:ed:44:f4:b4:26:
4c:d6:e8:46:c3:fc:29:22:4c:78:77:41:b6:e3:d2:38:83:21:
0a:2d:77:f9:78:ab:ef:6d:16:b9:14:df:05:12:64:a5:22:3d:
9a:a5:b9:41:52:4b:84:c1:e2:0d:7a:c1:bb:dc:bc:58:f5:67:
6d:bd:f3:2f:23:b2:9a:ce:4a:95:79:cf:26:7b:32:f8:cd:da:
8f:d1:4a:3b:85:6c:75:ba:20:bf:e3:4c:3b:56:8d:1b:53:db:
73:64:d4:c4:35:da:d5:ef:f4:e2:04:3d:03:a5:18:ee:77:84:
ff:cd:84:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:14 2025 by rpki-client