Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/xYyHnnf9zKkQSeJhfub-AwnyhCM.roa
File: xYyHnnf9zKkQSeJhfub-AwnyhCM.roa (raw, json)
Hash identifier: J89pxJdvACy/BiJ3NHeJkftAmTHvhczXfnHX8Nk7kf4=
Subject key identifier: C5:8C:87:9E:77:FD:CC:A9:10:49:E2:61:7E:E6:FE:03:09:F2:84:23
Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Certificate serial: 0182115CCC0B91F16E17BFFC611420F6D6AB
Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/xYyHnnf9zKkQSeJhfub-AwnyhCM.roa
Signing time: Mon 18 Jul 2022 12:51:10 +0000
ROA not before: Mon 18 Jul 2022 12:51:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46261
IP address blocks: 45.139.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:11:5c:cc:0b:91:f1:6e:17:bf:fc:61:14:20:f6:d6:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Validity
Not Before: Jul 18 12:51:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c58c879e77fdcca91049e2617ee6fe0309f28423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:df:29:62:1d:c2:3e:68:59:a2:20:d6:64:2a:
42:37:a5:c1:f3:89:aa:0c:d4:e6:fa:a1:bc:4f:67:
45:10:b5:f5:c2:8e:93:ba:4b:63:3c:67:c6:fc:6a:
ab:fd:93:13:59:86:16:fa:40:3c:b1:85:b1:ba:ee:
93:df:63:55:79:5f:60:89:a4:47:e7:3a:92:43:1a:
ae:aa:48:e8:44:01:c4:d8:41:2b:6c:52:d4:01:19:
e8:e5:19:86:e4:8f:85:2a:9c:bf:49:16:12:74:06:
31:85:ba:7c:f5:fc:fc:c2:eb:c3:fd:93:c5:bc:2b:
b5:5e:30:92:95:40:67:75:03:6e:9a:62:f6:17:9a:
00:61:32:32:f3:c8:29:d2:5b:8a:d1:de:2f:c3:15:
24:fd:22:4f:5a:45:b4:62:86:70:21:d5:3e:ca:33:
76:e2:df:f3:ab:1d:02:d4:55:64:13:52:89:d0:42:
4e:4f:cb:95:fe:03:cb:14:a5:18:5f:69:19:2d:1a:
7b:72:d5:63:a6:2c:62:bb:15:df:b4:9f:6e:1e:81:
eb:2e:2d:03:75:14:0b:8a:c8:80:cd:ff:d8:18:8f:
e0:23:62:5d:79:d5:66:7d:56:f5:9d:55:13:66:db:
48:4a:e0:ed:77:5f:e6:1d:4f:72:f7:7e:78:22:89:
65:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:8C:87:9E:77:FD:CC:A9:10:49:E2:61:7E:E6:FE:03:09:F2:84:23
X509v3 Authority Key Identifier:
keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/xYyHnnf9zKkQSeJhfub-AwnyhCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.0.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:2d:d6:55:ab:66:fe:f0:68:e5:35:c4:4e:e2:a8:cd:6b:06:
6d:40:6a:cf:83:98:d3:9f:bb:58:3b:18:42:49:67:44:d4:d6:
91:28:b9:0f:1e:f4:b5:d2:7c:a3:52:40:13:dc:bb:80:61:bd:
71:a0:2c:0a:25:ee:72:c9:71:0f:ab:e7:71:85:41:89:25:b7:
13:0a:93:dd:59:4d:be:0b:06:8c:11:db:3d:43:d1:33:30:e0:
54:06:8b:66:8e:9f:cf:26:2f:85:a2:1d:5a:34:81:c9:37:90:
14:a2:c9:de:cb:46:94:57:9f:12:e3:42:3b:ef:0b:a5:c8:69:
20:69:68:18:03:63:c4:af:32:f1:1a:97:60:96:3a:59:2a:28:
c5:96:54:c7:b4:1c:a8:c3:8e:61:11:91:dc:49:db:d3:16:b7:
dd:9a:ac:93:45:13:d3:41:89:61:b0:27:98:4b:37:6c:a6:de:
1e:e1:ee:f5:01:f4:23:a0:f5:96:ff:c1:1c:f8:58:e2:3a:bf:
23:e1:b0:7f:94:e3:fb:2a:77:83:c2:a7:ad:f8:7a:04:7a:c8:
93:4c:43:a5:33:0b:27:7d:fd:7b:43:1d:31:e0:2d:48:34:ee:
db:5e:9c:06:0e:95:63:99:08:51:37:6b:e0:4f:e6:41:2d:02:
5a:61:50:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:47:26 2025 by rpki-client