Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/7pjhEZ8KSSCqVKP8AMULxmqIX-g.roa
File: 7pjhEZ8KSSCqVKP8AMULxmqIX-g.roa (raw, json)
Hash identifier: 8ON2sbcb9hKTzHq1XrS7kv+NTl8bkONaCVi/K6uPwKE=
Subject key identifier: EE:98:E1:11:9F:0A:49:20:AA:54:A3:FC:00:C5:0B:C6:6A:88:5F:E8
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 0183E72F2BFA4F0337B0235BB151D017259D
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/7pjhEZ8KSSCqVKP8AMULxmqIX-g.roa
Signing time: Mon 17 Oct 2022 18:22:51 +0000
ROA not before: Mon 17 Oct 2022 18:22:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3223
IP address blocks: 45.131.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e7:2f:2b:fa:4f:03:37:b0:23:5b:b1:51:d0:17:25:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Oct 17 18:22:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee98e1119f0a4920aa54a3fc00c50bc66a885fe8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:72:3b:8c:04:59:40:47:8f:8d:fd:9e:77:e5:
44:eb:ee:dc:b5:fe:b0:e6:53:ad:20:2d:20:77:83:
2d:16:e2:40:d7:73:da:b4:d8:be:c2:e6:a3:71:a0:
a2:00:b8:91:b8:2c:58:cc:70:16:0a:42:61:fe:8d:
be:c0:ad:70:da:f1:a1:92:16:95:d8:3e:4b:80:bb:
52:00:50:f0:fb:59:bf:50:e8:df:49:3b:76:b5:36:
57:ed:6f:ff:be:09:23:41:de:3e:df:1d:5a:37:ba:
92:63:24:71:59:79:28:1f:d0:ed:4e:06:cd:1a:de:
a9:16:5a:ca:63:74:5f:e0:13:1c:f1:00:93:3a:69:
1b:32:6a:dc:56:b7:68:c9:7e:96:bb:49:5f:76:d3:
fa:5d:4d:f3:0b:9a:4e:9f:c0:3d:5a:9c:3c:82:28:
fa:db:b2:80:06:1c:6d:3b:e4:df:58:99:7a:47:81:
0d:3b:cd:82:4c:8d:c9:8e:74:dc:40:05:17:40:49:
d1:3b:c6:dc:5e:b7:1e:f6:bf:45:fb:97:49:02:77:
7d:85:e1:ab:b9:d3:34:97:89:a5:11:2b:1b:c3:89:
5e:b6:06:85:58:d6:54:0d:67:94:f1:39:dd:0a:6b:
11:4c:84:5c:27:c0:56:92:43:92:7a:20:14:59:7b:
75:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:98:E1:11:9F:0A:49:20:AA:54:A3:FC:00:C5:0B:C6:6A:88:5F:E8
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/7pjhEZ8KSSCqVKP8AMULxmqIX-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.106.0/24
Signature Algorithm: sha256WithRSAEncryption
81:77:f0:6a:21:3c:a5:5e:e6:3f:b0:9b:db:2a:ca:ea:46:8b:
62:67:c0:55:db:f8:4a:f8:60:c7:0e:47:c2:c2:cd:b4:20:95:
75:87:69:ea:7a:62:ea:ea:c7:f0:72:bc:2b:2e:05:a9:99:c2:
d9:b4:d2:3a:40:5c:aa:fd:1a:10:c8:df:ba:2a:e8:8f:7a:bc:
83:20:be:fa:9b:ee:65:30:fe:97:a9:ce:ba:78:67:20:41:bb:
59:5e:ce:cd:10:b8:ce:ff:9b:f6:27:eb:4c:ea:cc:6d:80:4b:
b3:7e:29:f7:34:31:4a:63:1c:7e:34:63:8c:d0:45:45:29:48:
b4:2e:d1:2a:eb:eb:69:34:fd:8c:7e:7c:a2:3c:40:4f:c7:2f:
a2:29:b8:3e:83:a5:62:c8:a5:4b:14:f6:41:47:9d:e3:8a:b1:
f4:92:e5:45:63:a0:cd:20:84:c5:4b:83:b1:44:d1:11:4a:99:
7c:cd:13:e7:e7:24:27:28:fb:f7:a8:4f:8d:21:b1:cd:6e:60:
57:65:30:29:c3:93:4d:f9:71:b1:0e:90:7c:53:59:af:3f:89:
68:01:73:b6:fd:87:89:fc:82:93:b9:2a:3a:21:5d:4a:65:10:
fc:fe:da:6b:43:65:9e:4f:f2:8f:41:94:52:77:8a:e2:bc:48:
44:06:4c:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:36 2025 by rpki-client