Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/5ec794-1bb3-4c65-ac42-a18c06ec52e8/1/w1muVghrB0Vi5l9E1vmxuxE-nuI.roa
File: w1muVghrB0Vi5l9E1vmxuxE-nuI.roa (raw, json)
Hash identifier: 2OcYCFarZqgMt0w2SBLRaIM2GR1D95cgsB9wMOZrhw8=
Subject key identifier: C3:59:AE:56:08:6B:07:45:62:E6:5F:44:D6:F9:B1:BB:11:3E:9E:E2
Certificate issuer: /CN=7b08e16878744b88b84203eefe2d77a87dab90b1
Certificate serial: 013B708F
Authority key identifier: 7B:08:E1:68:78:74:4B:88:B8:42:03:EE:FE:2D:77:A8:7D:AB:90:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ewjhaHh0S4i4QgPu_i13qH2rkLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/5ec794-1bb3-4c65-ac42-a18c06ec52e8/1/w1muVghrB0Vi5l9E1vmxuxE-nuI.roa
Signing time: Tue 05 Jul 2022 07:23:25 +0000
ROA not before: Tue 05 Jul 2022 07:23:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34903
IP address blocks: 45.130.208.0/22 maxlen: 24
2a0e:c240::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20672655 (0x13b708f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b08e16878744b88b84203eefe2d77a87dab90b1
Validity
Not Before: Jul 5 07:23:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c359ae56086b074562e65f44d6f9b1bb113e9ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b3:de:ad:0a:ba:59:0f:83:35:80:e6:a3:5f:
37:a0:51:91:31:34:63:c8:64:bc:0b:12:98:48:8e:
bc:19:4e:6c:76:f5:18:1c:8c:fc:e1:bb:bd:57:08:
60:68:eb:5a:ef:8f:ad:6c:d7:04:e9:c6:0d:68:6a:
c1:2e:01:44:d6:fc:c3:d4:06:0e:2e:8a:06:08:89:
94:c7:4f:df:f1:f3:8e:af:dd:7f:5a:8f:da:40:48:
5c:80:62:f5:6e:6f:df:19:51:3a:ca:66:48:c8:9c:
cc:11:ca:57:44:7f:6d:c3:34:4f:ce:30:30:1c:86:
bd:7e:8f:d3:7f:52:d7:71:26:c3:ef:66:75:76:7e:
aa:3e:e5:17:4b:50:94:f2:99:73:81:0f:9e:1d:79:
9b:1f:0c:f7:0b:a9:70:79:21:f7:56:67:dd:eb:ab:
b8:4d:8a:f4:a9:79:c0:3c:1b:33:b2:77:01:44:0b:
f6:cb:b7:55:8f:a9:08:4a:fc:96:b5:47:39:8e:b2:
30:55:b6:f0:00:88:eb:f5:a4:9d:77:b7:b3:d4:29:
30:be:43:16:02:53:5c:d0:7f:3c:53:c4:05:f5:ac:
b1:4a:30:66:c6:b7:8d:7c:8a:ec:08:16:5a:dc:91:
30:c2:54:33:56:85:2f:11:5c:25:cc:b0:ce:3f:7a:
36:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:59:AE:56:08:6B:07:45:62:E6:5F:44:D6:F9:B1:BB:11:3E:9E:E2
X509v3 Authority Key Identifier:
keyid:7B:08:E1:68:78:74:4B:88:B8:42:03:EE:FE:2D:77:A8:7D:AB:90:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ewjhaHh0S4i4QgPu_i13qH2rkLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/5ec794-1bb3-4c65-ac42-a18c06ec52e8/1/w1muVghrB0Vi5l9E1vmxuxE-nuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/5ec794-1bb3-4c65-ac42-a18c06ec52e8/1/ewjhaHh0S4i4QgPu_i13qH2rkLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.208.0/22
IPv6:
2a0e:c240::/29
Signature Algorithm: sha256WithRSAEncryption
65:84:73:92:f8:7d:9a:40:6b:76:d6:db:d9:a3:3b:7e:bf:36:
cc:13:90:b7:a5:8d:eb:fd:de:58:bc:0e:ab:ba:74:9d:a9:1f:
b0:11:a7:80:81:e2:55:c7:27:1b:bd:ab:d0:d0:39:3a:7f:81:
b4:30:4b:83:88:60:72:a5:b8:80:b0:c7:18:28:7a:eb:2a:a6:
8a:4f:d5:17:d9:42:dd:7f:24:eb:fe:bf:bb:48:4c:d8:12:f2:
6e:10:9c:0d:9d:77:5e:7b:46:3a:dc:22:1d:8f:23:1e:cc:33:
0a:93:43:f1:15:3e:95:a5:35:5d:01:f5:56:c1:f1:eb:d2:e8:
52:16:3c:6c:22:e5:5a:70:ae:55:1b:cd:d8:32:1c:a8:d7:6d:
96:a8:48:1f:d4:80:b8:c0:16:9d:4c:ae:aa:d5:42:75:8d:92:
af:e2:b5:09:14:34:59:89:9a:1b:0f:bf:83:8c:8d:0f:c7:5c:
ef:4c:4a:4a:bc:a7:2d:49:4a:9f:ea:cb:21:18:ae:6c:a5:c9:
88:68:b0:48:ee:11:2a:2e:b7:50:e6:91:42:f2:9d:4a:99:d3:
e8:0d:3d:c4:6b:5f:ed:1c:a9:b5:30:a9:5c:3e:c7:60:95:33:
b0:4f:4b:ee:2f:29:05:af:11:f6:fa:fc:bd:a6:47:da:59:fc:
ce:04:99:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:30:21 2025 by rpki-client