Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/5b6b06-9af6-4026-b47c-4e85897f309c/1/8gqdenOlkrYtyxtlgKRpuAXDA54.roa
File: 8gqdenOlkrYtyxtlgKRpuAXDA54.roa (raw, json)
Hash identifier: uByMv07V65MavozE1rq5Q/BTlhxEft3C8p8QTebwBko=
Subject key identifier: F2:0A:9D:7A:73:A5:92:B6:2D:CB:1B:65:80:A4:69:B8:05:C3:03:9E
Certificate issuer: /CN=7b48945b9d716cd47fbde2860d8100fcda987496
Certificate serial: 01E4284E
Authority key identifier: 7B:48:94:5B:9D:71:6C:D4:7F:BD:E2:86:0D:81:00:FC:DA:98:74:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e0iUW51xbNR_veKGDYEA_NqYdJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/5b6b06-9af6-4026-b47c-4e85897f309c/1/8gqdenOlkrYtyxtlgKRpuAXDA54.roa
Signing time: Sat 01 Jan 2022 06:05:59 +0000
ROA not before: Sat 01 Jan 2022 06:05:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 5.22.145.0/24 maxlen: 24
2a00:18e0:5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31729742 (0x1e4284e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b48945b9d716cd47fbde2860d8100fcda987496
Validity
Not Before: Jan 1 06:05:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f20a9d7a73a592b62dcb1b6580a469b805c3039e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:52:65:cd:6a:df:cd:0f:ff:d4:53:e6:e3:f4:
b3:a7:41:54:d4:ea:73:73:a7:ca:0f:89:2a:af:e3:
12:c2:30:b8:a9:f9:44:41:e4:a1:c9:70:c4:4a:a5:
52:97:42:3e:d9:3a:39:8d:e3:7e:2b:df:f8:c3:77:
36:51:c0:8a:5b:6b:fe:c5:15:3f:72:3d:54:21:99:
3c:4b:47:c7:de:ef:51:68:87:fe:e3:12:f6:62:0e:
e9:c5:e5:4f:e9:12:59:89:f2:37:45:f3:79:b3:91:
79:b2:55:97:4b:a7:cd:6c:44:c4:6b:27:06:97:70:
da:8a:c5:37:98:8c:bb:64:6b:f7:59:4a:c9:b9:36:
16:e4:48:26:bd:ac:3d:3f:67:39:c0:00:0e:05:b6:
bf:3c:3c:cb:fc:56:f0:29:dd:0a:b6:30:77:63:61:
6d:09:50:52:68:63:45:87:e1:a5:e3:9a:19:af:71:
c9:5e:63:2d:aa:c4:6a:b2:01:1e:21:5e:07:33:70:
4f:97:89:d5:3c:06:1a:8f:2f:05:17:c6:93:2a:5f:
bc:4a:4f:95:6f:55:62:3a:8a:22:ee:9e:29:e4:3b:
2b:c8:f1:10:7d:91:3d:90:cf:a4:f1:3e:d6:22:d8:
4b:4f:36:71:8a:f7:fe:a1:73:47:e2:eb:1c:2b:8f:
5b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:0A:9D:7A:73:A5:92:B6:2D:CB:1B:65:80:A4:69:B8:05:C3:03:9E
X509v3 Authority Key Identifier:
keyid:7B:48:94:5B:9D:71:6C:D4:7F:BD:E2:86:0D:81:00:FC:DA:98:74:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0iUW51xbNR_veKGDYEA_NqYdJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/5b6b06-9af6-4026-b47c-4e85897f309c/1/8gqdenOlkrYtyxtlgKRpuAXDA54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/5b6b06-9af6-4026-b47c-4e85897f309c/1/e0iUW51xbNR_veKGDYEA_NqYdJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.145.0/24
IPv6:
2a00:18e0:5::/48
Signature Algorithm: sha256WithRSAEncryption
28:9f:92:27:e0:0c:71:a2:b6:62:fd:e7:91:bb:68:bd:a0:1a:
93:a1:5f:54:08:17:05:9f:93:ef:05:71:81:0a:37:60:24:72:
2b:c7:80:ed:a5:23:b7:d0:53:17:5f:92:af:ba:71:02:e8:55:
e8:2b:22:2d:91:b4:18:82:e8:69:28:40:a0:29:df:5a:ed:a0:
f9:2a:48:ad:1d:29:2b:f9:df:c7:bb:29:50:a4:bb:bb:1f:85:
78:85:07:83:ef:8c:94:c9:16:a2:3c:14:fc:3d:76:e7:f4:84:
ae:d1:2b:eb:57:44:c7:25:9a:1c:62:58:bb:b0:7f:4d:8e:96:
8d:94:7b:10:75:d5:66:ce:e4:c1:1a:65:e7:ec:18:5c:28:0e:
ed:ce:dd:ba:e5:80:3f:f4:02:71:8c:2a:0d:8a:0b:53:4d:c2:
b0:3f:b4:e3:e0:5c:50:a5:31:ee:9d:5d:ee:bc:2f:57:89:e0:
f1:49:a1:83:4e:d5:0d:07:81:29:ff:8c:39:99:f6:b3:a0:1c:
8f:ea:a7:63:58:d1:9b:0f:63:c6:5e:dc:9d:b3:66:50:03:91:
43:a8:c6:f0:b7:3b:c5:24:2a:4a:c7:80:05:63:a9:45:c2:16:
99:4a:45:ef:84:d5:1b:1b:89:3c:3f:64:4a:1e:23:c1:d3:6e:
57:cc:f8:19
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEAeQoTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YjQ4OTQ1YjlkNzE2Y2Q0N2ZiZGUyODYwZDgxMDBmY2RhOTg3NDk2MB4XDTIyMDEw
MTA2MDU1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjIwYTlkN2E3M2E1
OTJiNjJkY2IxYjY1ODBhNDY5YjgwNWMzMDM5ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM5SZc1q380P/9RT5uP0s6dBVNTqc3Onyg+JKq/jEsIwuKn5
REHkoclwxEqlUpdCPtk6OY3jfivf+MN3NlHAiltr/sUVP3I9VCGZPEtHx97vUWiH
/uMS9mIO6cXlT+kSWYnyN0XzebORebJVl0unzWxExGsnBpdw2orFN5iMu2Rr91lK
ybk2FuRIJr2sPT9nOcAADgW2vzw8y/xW8CndCrYwd2NhbQlQUmhjRYfhpeOaGa9x
yV5jLarEarIBHiFeBzNwT5eJ1TwGGo8vBRfGkypfvEpPlW9VYjqKIu6eKeQ7K8jx
EH2RPZDPpPE+1iLYS082cYr3/qFzR+LrHCuPWykCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBTyCp16c6WSti3LG2WApGm4BcMDnjAfBgNVHSMEGDAWgBR7SJRbnXFs1H+9
4oYNgQD82ph0ljAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2UwaVVXNTF4Yk5SX3ZlS0dEWUVBX05xWWRKWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWUvNWI2YjA2LTlhZjYtNDAyNi1iNDdjLTRlODU4OTdmMzA5Yy8x
LzhncWRlbk9sa3JZdHl4dGxnS1JwdUFYREE1NC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWUv
NWI2YjA2LTlhZjYtNDAyNi1iNDdjLTRlODU4OTdmMzA5Yy8xL2UwaVVXNTF4Yk5S
X3ZlS0dEWUVBX05xWWRKWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAAUWkTAPBAIAAjAJAwcAKgAY4AAF
MA0GCSqGSIb3DQEBCwUAA4IBAQAon5In4AxxorZi/eeRu2i9oBqToV9UCBcFn5Pv
BXGBCjdgJHIrx4DtpSO30FMXX5KvunEC6FXoKyItkbQYguhpKECgKd9a7aD5Kkit
HSkr+d/HuylQpLu7H4V4hQeD74yUyRaiPBT8PXbn9ISu0SvrV0THJZocYli7sH9N
jpaNlHsQddVmzuTBGmXn7BhcKA7tzt265YA/9AJxjCoNigtTTcKwP7Tj4FxQpTHu
nV3uvC9XieDxSaGDTtUNB4Ep/4w5mfazoByP6qdjWNGbD2PGXtyds2ZQA5FDqMbw
tzvFJCpKx4AFY6lFwhaZSkXvhNUbG4k8P2RKHiPB025XzPgZ
-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:32 2025 by rpki-client