Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/723b15-faac-41ff-a1aa-88739e335053/1/eox1HkkYqlQ8kx68xVxlGAJIph4.roa
File: eox1HkkYqlQ8kx68xVxlGAJIph4.roa (raw, json)
Hash identifier: 22d3+xGfijvcwjy6Rm9HZ6JMegPL7TXNGY1jh5fT+Qg=
Subject key identifier: 7A:8C:75:1E:49:18:AA:54:3C:93:1E:BC:C5:5C:65:18:02:48:A6:1E
Certificate issuer: /CN=fbd32968aaaa919c52791ffb07f93436b74fd508
Certificate serial: 0184E2AE5DB73483BF3F6F3CA5A813E5FF71
Authority key identifier: FB:D3:29:68:AA:AA:91:9C:52:79:1F:FB:07:F9:34:36:B7:4F:D5:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-9MpaKqqkZxSeR_7B_k0NrdP1Qg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/723b15-faac-41ff-a1aa-88739e335053/1/eox1HkkYqlQ8kx68xVxlGAJIph4.roa
Signing time: Mon 05 Dec 2022 14:26:28 +0000
ROA not before: Mon 05 Dec 2022 14:26:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51812
IP address blocks: 46.148.48.0/20 maxlen: 20
46.148.48.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:ae:5d:b7:34:83:bf:3f:6f:3c:a5:a8:13:e5:ff:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbd32968aaaa919c52791ffb07f93436b74fd508
Validity
Not Before: Dec 5 14:26:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a8c751e4918aa543c931ebcc55c65180248a61e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:05:3f:28:a6:a3:69:95:b8:4f:b2:62:88:c8:
7f:1e:c7:a0:70:e1:2a:03:25:78:df:f9:db:71:e6:
ab:dd:d8:7c:0e:a1:5b:49:19:01:84:28:27:2b:a9:
9f:b0:72:e8:89:03:dc:32:ff:d1:bc:68:78:d6:1c:
14:cf:a9:f3:93:ac:a3:32:98:b8:7b:6e:83:98:fc:
31:4b:5c:82:d1:4d:66:f1:f8:9b:d4:3e:e1:d7:0b:
3a:1a:cc:98:54:4e:d0:7b:92:e2:b3:0f:ef:cb:8f:
0e:ea:eb:c5:43:54:07:aa:f9:aa:3f:dd:bd:c8:d1:
0c:51:5a:1b:3e:2d:3a:7c:c0:03:f1:f0:b2:dc:a6:
08:47:97:a5:4e:fd:2a:d6:3d:03:2a:b5:ca:1b:d9:
5a:7d:99:3f:33:38:e4:bb:41:0a:b8:c8:06:61:5e:
6a:76:61:6a:9a:a6:92:03:1a:06:03:0e:6d:1b:4d:
3d:e5:c3:cc:63:24:30:90:77:47:09:87:78:93:23:
3e:4a:40:78:44:4d:6c:e1:80:ab:70:ac:b4:ef:11:
db:83:cf:6e:ee:e8:1f:55:6a:ec:10:79:70:2b:c9:
90:2e:91:6c:8c:6d:ea:97:e3:58:36:69:ff:8b:04:
f5:63:88:7d:90:ef:73:e0:a3:82:1b:44:74:84:6d:
fb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8C:75:1E:49:18:AA:54:3C:93:1E:BC:C5:5C:65:18:02:48:A6:1E
X509v3 Authority Key Identifier:
keyid:FB:D3:29:68:AA:AA:91:9C:52:79:1F:FB:07:F9:34:36:B7:4F:D5:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-9MpaKqqkZxSeR_7B_k0NrdP1Qg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/723b15-faac-41ff-a1aa-88739e335053/1/eox1HkkYqlQ8kx68xVxlGAJIph4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/723b15-faac-41ff-a1aa-88739e335053/1/1-9MpaKqqkZxSeR_7B_k0NrdP1Qg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.148.48.0/20
Signature Algorithm: sha256WithRSAEncryption
40:48:4c:09:2c:88:ad:37:32:8b:57:eb:53:61:c0:8a:96:fe:
6e:07:ba:00:2d:fb:30:5d:41:4d:9f:d2:09:22:f1:95:8e:93:
09:2e:ac:f8:85:16:5c:ed:96:4d:6d:8c:c0:5b:7d:df:ce:cd:
4a:69:71:7b:58:bb:76:26:a8:22:87:ee:b3:7e:2a:d3:61:fb:
43:f7:16:2c:34:47:08:c7:69:1c:e0:72:3d:02:2b:97:f1:5d:
8a:d6:71:83:6d:26:60:98:2c:3e:cd:91:6b:d2:76:02:4d:2c:
07:ca:7d:fe:da:fb:19:24:e7:1c:21:da:2d:34:0b:9d:55:c3:
f8:21:93:4f:ce:7f:b7:a3:f4:9b:2e:a1:e6:41:e0:63:4d:1c:
90:ac:e7:d5:e3:cd:df:2f:5a:3c:67:c6:1f:49:53:39:02:76:
aa:67:7d:a9:86:4d:8d:69:b3:a7:fa:67:8e:e0:bd:68:7c:c2:
6e:3a:83:e5:2c:14:df:fa:49:f7:25:e3:b0:b0:21:c0:c7:7c:
55:cf:b2:7d:cc:23:c8:58:3b:63:e2:3d:07:3e:67:39:6b:86:
74:20:4c:8e:59:c1:c3:4d:93:b1:76:02:d1:49:d5:95:fc:50:
7f:0c:26:9c:64:9e:5a:ff:6e:bc:ec:c2:a5:6c:02:f7:d5:b4:
59:ad:df:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:49:26 2025 by rpki-client