Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/thlC7SoCfyHIhUvpcsgqZUgaEYE.roa
File: thlC7SoCfyHIhUvpcsgqZUgaEYE.roa (raw, json)
Hash identifier: hSZ9q91ZM3L+7Bb4npLT66LmNnlSFTF7vnx2PQNDZ8M=
Subject key identifier: B6:19:42:ED:2A:02:7F:21:C8:85:4B:E9:72:C8:2A:65:48:1A:11:81
Certificate issuer: /CN=55fad96dd05af8c2d26192c841131f2f97459fed
Certificate serial: 01856C0A51ACBB3A55C90271E3A3A04A52E3
Authority key identifier: 55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/thlC7SoCfyHIhUvpcsgqZUgaEYE.roa
Signing time: Sun 01 Jan 2023 06:34:53 +0000
ROA not before: Sun 01 Jan 2023 06:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59514
IP address blocks: 45.10.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:51:ac:bb:3a:55:c9:02:71:e3:a3:a0:4a:52:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55fad96dd05af8c2d26192c841131f2f97459fed
Validity
Not Before: Jan 1 06:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b61942ed2a027f21c8854be972c82a65481a1181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fb:df:44:77:8f:5e:04:a9:7d:1a:bd:c9:12:
30:12:32:28:4b:a4:f1:a8:1b:4b:d2:78:64:61:35:
c9:84:c5:49:c2:7f:c2:09:79:cb:bf:bf:7a:a7:07:
a9:0d:65:04:68:77:3b:b2:dc:74:f2:77:ee:72:ae:
3b:01:ae:d4:c0:91:23:1e:b7:84:cc:6b:d7:70:b0:
c7:cc:4a:36:0a:31:8c:37:b4:96:e5:ad:53:9e:7b:
0e:b6:f1:4b:49:79:1c:83:ad:df:ec:9b:97:46:2b:
df:ab:ff:17:bf:15:0c:87:bf:61:5c:e7:1a:86:7d:
d2:c2:53:43:08:c3:f0:85:55:82:69:03:0f:f7:f4:
1f:3e:23:00:0f:a5:d0:c3:91:2e:56:7a:19:5f:77:
5c:b7:07:67:06:0f:6d:7b:89:68:39:ed:48:87:f7:
e3:23:55:88:95:3d:24:9c:56:11:51:ec:30:15:96:
3a:f6:ae:99:e6:7a:aa:46:90:4f:35:0d:57:f7:fb:
77:70:a9:39:8f:3d:9a:8a:9a:ed:c5:ae:75:bd:d4:
75:b6:31:98:27:62:84:91:1b:cc:95:24:41:21:5e:
2e:6c:01:9f:4f:9a:c8:cb:b0:69:34:03:36:e8:5d:
1e:15:2d:2e:df:aa:15:84:1b:01:41:36:17:c9:61:
24:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:19:42:ED:2A:02:7F:21:C8:85:4B:E9:72:C8:2A:65:48:1A:11:81
X509v3 Authority Key Identifier:
keyid:55:FA:D9:6D:D0:5A:F8:C2:D2:61:92:C8:41:13:1F:2F:97:45:9F:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VfrZbdBa-MLSYZLIQRMfL5dFn-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/thlC7SoCfyHIhUvpcsgqZUgaEYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/30e582-4448-4952-94a0-30ff2c83f001/1/VfrZbdBa-MLSYZLIQRMfL5dFn-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.88.0/24
Signature Algorithm: sha256WithRSAEncryption
25:37:8f:fa:99:e3:b3:81:ca:ad:e2:e1:06:f3:31:05:a0:71:
62:18:83:fd:83:05:82:25:22:69:aa:6e:99:f7:70:56:74:78:
40:e0:04:87:c4:16:e3:03:6a:0d:16:f9:5f:e0:45:4b:2d:14:
0f:d1:0d:fa:b0:36:98:01:2f:4b:57:31:6d:cc:22:94:78:b5:
89:e4:0c:d2:c5:5c:00:ef:bc:21:6d:31:d0:a0:75:12:9a:4c:
86:1d:d0:2b:81:e8:ce:1b:33:90:20:45:80:55:77:a2:2e:6a:
5c:04:f9:67:19:b3:4d:79:9c:a3:78:83:29:cf:93:1e:29:39:
24:30:60:2f:10:2b:10:fc:96:ae:7a:cd:70:4a:76:06:99:f3:
f0:04:33:fb:2d:e5:5f:38:05:21:36:73:c1:4a:88:3f:da:cf:
7c:7c:c7:23:ca:68:51:be:2c:ac:66:e4:ca:2a:64:16:97:cc:
7b:20:01:2b:4d:ad:53:f7:df:58:f0:a4:93:ec:59:d5:89:5d:
23:1b:49:93:30:4f:16:2d:ba:89:57:35:b7:85:d7:00:2a:3b:
9d:7e:a0:ab:69:a7:f4:3e:ce:be:50:2a:29:b6:37:cc:e9:0c:
9e:8d:65:32:7a:d9:d5:e3:ef:4a:52:39:b4:32:73:c6:fa:a4:
53:ba:cf:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:46:26 2025 by rpki-client