Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f9e6c-e6b8-4ad4-9941-f46f9d674f6c/1/ODPUQaeWrLBdejQk6UPQQwjUyaM.roa
File: ODPUQaeWrLBdejQk6UPQQwjUyaM.roa (raw, json)
Hash identifier: h0fCszNadLpBEre5hc/c/iv296ROB/CPKlUFZhI8Hj8=
Subject key identifier: 38:33:D4:41:A7:96:AC:B0:5D:7A:34:24:E9:43:D0:43:08:D4:C9:A3
Certificate issuer: /CN=719e59b5017bfe634411949eff2d70ba0a07c540
Certificate serial: 018286A4B95C0449017F236F667962994F41
Authority key identifier: 71:9E:59:B5:01:7B:FE:63:44:11:94:9E:FF:2D:70:BA:0A:07:C5:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZ5ZtQF7_mNEEZSe_y1wugoHxUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f9e6c-e6b8-4ad4-9941-f46f9d674f6c/1/ODPUQaeWrLBdejQk6UPQQwjUyaM.roa
Signing time: Wed 10 Aug 2022 07:25:18 +0000
ROA not before: Wed 10 Aug 2022 07:25:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 46.28.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:86:a4:b9:5c:04:49:01:7f:23:6f:66:79:62:99:4f:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=719e59b5017bfe634411949eff2d70ba0a07c540
Validity
Not Before: Aug 10 07:25:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3833d441a796acb05d7a3424e943d04308d4c9a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5b:7d:83:80:7e:c1:83:0b:4d:77:6e:8e:18:
f3:9a:91:81:3e:e9:12:ef:15:6e:d1:90:7a:fb:b3:
b8:49:b0:ba:2c:6c:18:e1:5e:96:f8:79:d5:08:c1:
61:72:c4:69:37:f9:58:4b:96:f8:a7:20:6a:3b:19:
bf:72:8c:23:a5:3b:d9:89:a3:b2:c9:a7:07:97:7b:
aa:e2:a4:08:7a:53:f7:8e:57:28:f9:9f:26:3a:18:
c0:8d:30:e2:fc:92:b6:cf:a6:36:c2:68:62:fa:33:
47:4a:51:f5:5a:2e:61:3b:ea:90:db:f4:52:fe:84:
6d:27:e9:f7:3e:7f:54:6d:bf:5f:29:d2:3a:72:bf:
7f:ff:a6:b2:9f:25:77:2a:08:30:82:b7:d1:52:58:
77:4a:63:87:45:c3:b9:93:80:f5:de:f0:3a:cf:d3:
69:ec:40:22:ed:5d:25:2d:3d:5c:a4:e1:6e:55:64:
dc:d9:ba:32:e8:28:03:88:b9:0b:ce:30:fe:71:85:
ce:23:58:a4:ce:5e:75:8c:63:76:eb:f0:7b:33:fe:
44:13:15:15:93:56:22:25:9e:3f:c8:0f:4e:9c:55:
67:58:d1:70:98:fc:e7:d4:af:26:c7:89:af:b7:17:
ea:b3:de:ab:78:f9:8d:99:4c:43:d5:41:b2:3e:61:
0f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:33:D4:41:A7:96:AC:B0:5D:7A:34:24:E9:43:D0:43:08:D4:C9:A3
X509v3 Authority Key Identifier:
keyid:71:9E:59:B5:01:7B:FE:63:44:11:94:9E:FF:2D:70:BA:0A:07:C5:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZ5ZtQF7_mNEEZSe_y1wugoHxUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f9e6c-e6b8-4ad4-9941-f46f9d674f6c/1/ODPUQaeWrLBdejQk6UPQQwjUyaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f9e6c-e6b8-4ad4-9941-f46f9d674f6c/1/cZ5ZtQF7_mNEEZSe_y1wugoHxUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.58.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:f6:b8:76:33:cd:1e:b0:18:58:5b:cb:af:f8:ef:1d:a5:1c:
7d:54:1e:fb:82:63:32:73:ab:33:e7:82:36:ce:de:b3:8e:3f:
f7:23:56:dc:0a:f1:13:ad:c5:6d:6b:7f:8d:ad:6d:b7:11:17:
dc:73:48:3d:20:2a:0f:dd:8d:dd:34:4b:c1:a8:bf:3b:62:ca:
20:f6:23:e9:eb:ac:84:af:a9:94:88:a1:3b:19:48:fd:1a:7d:
3c:5a:8a:8f:a2:38:58:5d:06:67:8e:2f:3c:d0:64:a6:b0:91:
6d:7a:1b:b6:0a:3b:55:84:66:6c:d2:19:13:d3:82:59:b5:97:
c0:de:08:0e:87:42:90:2d:17:72:8d:53:ae:a7:a0:65:8d:f4:
5a:21:6f:d6:29:9f:c2:e7:d1:a3:9d:e8:c7:50:64:8d:64:3f:
8e:22:4e:d5:b8:00:ac:92:fd:0a:e2:c2:a2:98:eb:d1:ad:b7:
12:ff:ef:e3:53:03:0f:fd:d9:39:99:3f:f4:1c:4e:a0:11:64:
bb:7d:58:cc:7d:97:82:9d:85:5b:c6:f2:ae:50:b4:2d:e4:e3:
46:e8:80:f0:6f:a3:95:87:41:e8:2a:32:82:b4:b7:18:48:6d:
9c:d9:ec:ed:9f:ee:f6:dc:26:99:48:0c:57:46:74:f2:63:0c:
c2:b7:25:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:52:15 2025 by rpki-client