Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/5b6b06-9af6-4026-b47c-4e85897f309c/1/ogJUlmFJOvIyQaB3xpOFxAzKKKk.roa
File: ogJUlmFJOvIyQaB3xpOFxAzKKKk.roa (raw, json)
Hash identifier: Q4GJxESlFpoM4FIOAkY5PnD24hzUs90XoaRMxFYQvxQ=
Subject key identifier: A2:02:54:96:61:49:3A:F2:32:41:A0:77:C6:93:85:C4:0C:CA:28:A9
Certificate issuer: /CN=7b48945b9d716cd47fbde2860d8100fcda987496
Certificate serial: 01E46067
Authority key identifier: 7B:48:94:5B:9D:71:6C:D4:7F:BD:E2:86:0D:81:00:FC:DA:98:74:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e0iUW51xbNR_veKGDYEA_NqYdJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/5b6b06-9af6-4026-b47c-4e85897f309c/1/ogJUlmFJOvIyQaB3xpOFxAzKKKk.roa
Signing time: Sat 01 Jan 2022 06:06:00 +0000
ROA not before: Sat 01 Jan 2022 06:06:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 5.22.145.0/24 maxlen: 24
2a00:18e0:5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31744103 (0x1e46067)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b48945b9d716cd47fbde2860d8100fcda987496
Validity
Not Before: Jan 1 06:06:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a202549661493af23241a077c69385c40cca28a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:09:8e:67:6f:bf:68:f1:9d:a8:f8:68:8f:9a:
87:ce:52:de:a6:97:43:ca:ae:5c:64:c8:ff:9c:4f:
f8:11:0a:cd:aa:fc:f2:25:fb:85:92:ad:1b:e4:1e:
d8:fd:10:8e:fd:09:bb:ce:5b:82:4d:e2:df:2a:8c:
a1:83:28:8f:61:12:ef:ee:c0:9e:21:aa:91:0e:60:
b8:0e:5a:95:8f:7e:88:9a:9b:07:50:ea:b2:d3:3f:
4e:2d:a6:83:fa:51:37:ff:96:de:ae:2d:ca:91:e3:
a2:b3:c8:f8:bb:2f:13:dd:bd:99:f2:ab:5a:85:e6:
63:17:f4:22:cc:18:84:76:fc:1b:57:88:69:8d:e3:
47:71:c1:94:61:c0:75:07:96:33:a9:d9:cc:20:17:
34:86:6e:75:85:41:43:99:55:35:7a:ac:f9:6f:14:
b6:67:ab:f9:d7:fb:dc:24:75:ed:9c:7f:cf:ce:9c:
b6:56:17:c5:38:e2:d4:e0:b4:3f:a7:05:71:b0:5b:
31:b4:24:a3:22:1f:78:2c:83:b3:3b:07:3e:d5:84:
89:32:80:1d:98:b4:87:97:72:de:08:d7:af:38:68:
ce:17:fd:4a:40:67:db:fe:e7:2e:ad:ba:fe:7e:45:
4a:c0:30:65:1a:a4:2a:2f:12:d7:89:9c:63:f6:1a:
26:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:02:54:96:61:49:3A:F2:32:41:A0:77:C6:93:85:C4:0C:CA:28:A9
X509v3 Authority Key Identifier:
keyid:7B:48:94:5B:9D:71:6C:D4:7F:BD:E2:86:0D:81:00:FC:DA:98:74:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0iUW51xbNR_veKGDYEA_NqYdJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/5b6b06-9af6-4026-b47c-4e85897f309c/1/ogJUlmFJOvIyQaB3xpOFxAzKKKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/5b6b06-9af6-4026-b47c-4e85897f309c/1/e0iUW51xbNR_veKGDYEA_NqYdJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.145.0/24
IPv6:
2a00:18e0:5::/48
Signature Algorithm: sha256WithRSAEncryption
21:9a:75:0f:b9:87:95:3b:f8:cb:16:94:ea:7e:fd:54:6b:c8:
5e:8e:79:ac:0c:05:74:c6:0c:c3:6d:8c:75:c4:fd:eb:58:8d:
d5:0b:73:7c:8f:a7:87:c1:8c:d3:49:2f:ab:14:b3:06:87:94:
b1:0c:86:db:b3:db:0e:8c:e0:2b:02:a7:49:63:e2:46:be:4a:
7f:e9:a3:83:70:8a:32:35:ce:64:ef:1f:0e:b7:cd:34:85:c9:
2c:7b:5b:69:6e:c5:6b:4e:aa:98:22:ae:6b:b1:42:8f:81:3f:
a8:91:38:3e:ae:f7:40:9a:bb:8b:f2:5c:1b:51:d3:6c:e7:17:
cb:41:ea:8f:37:b2:f2:35:da:8c:e1:8f:b5:cd:02:42:b2:58:
12:89:09:a5:b3:1b:63:42:9e:a7:3c:02:48:94:27:de:c9:65:
b7:e9:40:56:db:83:d9:3c:95:38:10:b6:34:df:85:8a:b6:c2:
61:41:6f:0a:5c:a7:09:7d:8b:fb:0a:76:69:8b:0e:6b:f2:6f:
81:f4:54:e5:e0:85:6c:09:ec:99:43:86:05:43:b4:96:b7:70:
77:96:4d:46:60:01:49:e5:6a:3a:b4:77:db:c3:b6:45:cd:05:
ed:fd:9c:5a:aa:4a:de:8f:fa:9b:2a:07:07:49:b3:c2:0b:94:
27:33:09:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:03:01 2025 by rpki-client