Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/1cfce6-35f5-4c6e-882a-6eb14e5d0f85/1/wXuzJ1ayU-9vSRV7nsc0RPZGoKA.roa
File: wXuzJ1ayU-9vSRV7nsc0RPZGoKA.roa (raw, json)
Hash identifier: s26/tj1GbWgEKC0BtuJ7i9fMsf2eJNFekRmO7GaMjrg=
Subject key identifier: C1:7B:B3:27:56:B2:53:EF:6F:49:15:7B:9E:C7:34:44:F6:46:A0:A0
Certificate issuer: /CN=269580771c1f1b22292d771cd12fcfbbf621baf1
Certificate serial: 01856DB892F0AFE48B5DBA1C0921DC9D9DD5
Authority key identifier: 26:95:80:77:1C:1F:1B:22:29:2D:77:1C:D1:2F:CF:BB:F6:21:BA:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JpWAdxwfGyIpLXcc0S_Pu_YhuvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/1cfce6-35f5-4c6e-882a-6eb14e5d0f85/1/wXuzJ1ayU-9vSRV7nsc0RPZGoKA.roa
Signing time: Sun 01 Jan 2023 14:24:50 +0000
ROA not before: Sun 01 Jan 2023 14:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15830
IP address blocks: 45.154.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:b8:92:f0:af:e4:8b:5d:ba:1c:09:21:dc:9d:9d:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=269580771c1f1b22292d771cd12fcfbbf621baf1
Validity
Not Before: Jan 1 14:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c17bb32756b253ef6f49157b9ec73444f646a0a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7f:88:51:4e:a1:74:fa:4f:e5:c4:5c:1e:16:
0c:98:24:fb:f4:12:02:63:ec:0d:76:6a:c5:d0:51:
d4:a6:4e:d6:46:6e:91:c1:fe:34:ef:8a:65:76:62:
f4:bc:de:29:86:2b:c9:ec:1b:2d:68:8c:8d:ee:6a:
02:c7:41:a6:c0:26:00:76:be:28:a5:d2:9e:a5:cf:
03:a1:37:36:8f:3d:31:9c:2b:12:13:4c:8b:2e:1b:
a2:e6:b7:d7:ba:aa:f2:b7:9a:94:d3:fb:40:6d:3d:
c0:e0:eb:6e:17:23:df:a8:db:58:78:d6:37:27:92:
69:29:9e:bd:e5:74:61:b7:bd:27:76:49:f3:ed:0d:
e9:c1:7a:93:c3:af:56:9f:bd:9c:cf:ef:9d:88:ff:
95:a8:a4:c1:f7:b2:eb:a3:62:df:77:31:08:ad:cb:
cc:1a:f1:2c:eb:3e:37:b8:a5:f5:f6:5b:12:ee:f8:
16:1a:ee:8a:16:be:5c:71:84:a9:f3:61:24:8e:b5:
9d:68:3b:ef:ac:e9:d5:f2:9b:68:d9:c9:19:c9:ba:
5e:90:03:20:4c:55:e0:42:58:55:bf:46:bf:2a:2f:
a5:6d:e1:45:d6:b4:21:ee:10:26:ab:68:da:d9:18:
30:ff:19:ee:48:d4:b4:ac:ad:ab:b4:00:9a:8c:74:
0b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:7B:B3:27:56:B2:53:EF:6F:49:15:7B:9E:C7:34:44:F6:46:A0:A0
X509v3 Authority Key Identifier:
keyid:26:95:80:77:1C:1F:1B:22:29:2D:77:1C:D1:2F:CF:BB:F6:21:BA:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JpWAdxwfGyIpLXcc0S_Pu_YhuvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1cfce6-35f5-4c6e-882a-6eb14e5d0f85/1/wXuzJ1ayU-9vSRV7nsc0RPZGoKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/1cfce6-35f5-4c6e-882a-6eb14e5d0f85/1/JpWAdxwfGyIpLXcc0S_Pu_YhuvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.240.0/24
Signature Algorithm: sha256WithRSAEncryption
01:c4:fa:80:20:21:83:1f:1a:22:e3:b1:85:f2:46:54:96:63:
39:9e:c2:c9:e7:9a:2b:e7:09:46:55:d0:91:7c:f4:8f:30:7b:
d5:e6:8b:1d:13:6c:c4:2d:62:5b:a4:e6:5f:6d:f3:21:87:78:
09:07:94:d5:cf:df:f9:fe:62:c0:98:b2:eb:0c:58:93:ab:d4:
16:77:8f:1a:7c:20:aa:6a:03:07:fd:39:dd:93:d5:cc:d8:19:
95:04:ca:60:49:f9:95:cc:ab:cc:bc:2e:9c:9d:d9:63:01:56:
a7:01:bc:3c:14:dc:4c:2e:6c:fb:81:44:02:9b:41:be:7a:f0:
67:a1:9e:5b:8f:a9:48:2e:b2:a9:66:9f:d3:e6:d9:fc:5b:bd:
aa:ca:ce:c8:69:3d:03:c9:99:69:d5:c1:9f:8a:98:2e:39:b7:
8e:45:dc:90:0d:8b:80:a7:44:7d:f0:8a:00:5c:79:19:c2:2d:
74:4b:c1:3d:30:5c:8d:96:14:15:f4:f1:81:58:c2:aa:53:18:
4b:69:7a:a7:11:08:0a:09:8e:da:9b:43:dd:c9:2a:ab:4e:ea:
a8:c0:53:c6:64:eb:e5:a6:dc:f8:7f:ec:7a:bb:72:06:58:fc:
90:27:d5:00:ee:98:f0:66:c4:c4:7e:93:81:03:3c:a8:db:3a:
f6:ae:75:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:31 2025 by rpki-client