Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/faSdcacGNfujJWLB1KhUOUpaiJQ.roa
File: faSdcacGNfujJWLB1KhUOUpaiJQ.roa (raw, json)
Hash identifier: 0zibfQp7fqs7EDDbDGSk88PJNXwdeYkevP1XJxYlprc=
Subject key identifier: 7D:A4:9D:71:A7:06:35:FB:A3:25:62:C1:D4:A8:54:39:4A:5A:88:94
Certificate issuer: /CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Certificate serial: 093ABBA5
Authority key identifier: 3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/faSdcacGNfujJWLB1KhUOUpaiJQ.roa
Signing time: Mon 28 Feb 2022 06:39:03 +0000
ROA not before: Mon 28 Feb 2022 06:39:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211366
IP address blocks: 45.9.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154844069 (0x93abba5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aca50858a1856ffa02e91356f14236e7c38b85a
Validity
Not Before: Feb 28 06:39:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7da49d71a70635fba32562c1d4a854394a5a8894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:36:15:33:a6:c6:f5:4e:8c:83:33:06:ef:88:
93:fa:2e:1d:1a:51:b6:81:8d:cd:7b:b4:b9:eb:7a:
f2:df:62:28:03:57:47:df:bd:bd:4c:62:61:08:c9:
7e:c1:66:69:44:d7:61:2d:07:31:49:f7:7d:6c:11:
0f:f0:0b:f9:9a:dd:39:1b:a2:60:bc:f3:c1:fe:dd:
a9:22:6a:67:db:d2:a8:ae:e7:c7:ac:36:22:af:53:
ae:43:d3:c0:54:cf:21:78:5c:af:67:eb:04:b1:39:
97:09:df:98:7d:62:a3:bd:b0:41:bf:10:0f:c0:8a:
b2:d0:da:b8:3a:5b:36:2b:a9:15:07:81:74:8d:6f:
2e:08:5e:78:7a:b9:be:f0:9f:5f:53:bf:be:b7:04:
4c:82:7f:fc:d0:52:b3:16:c2:a1:16:e3:50:d3:0b:
84:05:f4:fb:95:0f:d8:61:b1:60:9d:e7:84:93:03:
35:92:5b:df:0c:a6:1c:b4:c3:45:66:d7:ce:3b:64:
61:27:ef:8d:86:a2:2f:64:b4:60:36:96:56:dd:3d:
da:8d:3f:9d:e4:08:48:bf:c3:02:4e:ba:7c:65:2f:
1d:7b:65:94:63:6d:64:ed:8a:af:f9:88:f3:70:9b:
ee:5e:2f:2b:36:71:bb:68:c2:35:cd:27:57:c4:88:
2c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A4:9D:71:A7:06:35:FB:A3:25:62:C1:D4:A8:54:39:4A:5A:88:94
X509v3 Authority Key Identifier:
keyid:3A:CA:50:85:8A:18:56:FF:A0:2E:91:35:6F:14:23:6E:7C:38:B8:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OspQhYoYVv-gLpE1bxQjbnw4uFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/faSdcacGNfujJWLB1KhUOUpaiJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/12b937-890d-47b5-a041-331d7fc77bd4/1/OspQhYoYVv-gLpE1bxQjbnw4uFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.193.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:a1:4c:e4:e2:9d:08:8c:6d:7a:79:62:e4:4a:9a:49:bf:bf:
3c:9f:58:78:2c:7f:a0:44:9f:a7:aa:59:73:43:dd:97:29:a3:
6e:d9:c2:94:b1:90:7b:56:67:68:4d:ad:7e:dd:6c:7d:62:2c:
0b:d8:c1:d8:c9:ab:9b:83:81:16:1e:58:ac:d0:83:7c:dd:fe:
4c:d8:fc:9f:44:ef:76:c4:26:08:59:52:98:0b:13:0b:bb:7b:
db:c5:ba:e7:44:db:e7:d1:4d:77:40:61:67:d8:ea:08:b2:ff:
53:d0:48:a7:0c:dd:92:af:08:2d:4f:63:35:ab:ce:ac:e1:ba:
09:7a:02:9c:85:43:8d:4a:62:6f:cb:90:ba:ec:ad:5c:74:5b:
d9:55:cc:83:4e:13:1a:a8:87:3a:e0:3b:92:07:0c:76:73:a1:
55:db:3d:7f:7d:3b:b4:47:87:2b:38:b5:56:68:e4:c8:51:43:
f0:d2:a3:f7:64:c2:b9:cc:75:54:ca:ee:ad:86:d9:dc:2f:71:
82:c0:91:f5:54:a2:df:76:53:b9:62:d4:bf:2b:61:47:14:3a:
c3:2d:cc:4b:23:5b:1b:2b:8e:a1:a0:39:81:a6:12:0a:ad:dd:
b6:5f:99:f1:db:ac:0b:91:9b:d4:00:14:8c:cc:54:d9:6c:d6:
19:28:f9:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:04:47 2025 by rpki-client