Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/46431e-4951-4e1a-9195-68a4551f68a8/1/5eQkXA5X571z5GApu7_dMW5eDRM.roa
File: 5eQkXA5X571z5GApu7_dMW5eDRM.roa (raw, json)
Hash identifier: u12q7gZZs1SMY9osJ7beCnNyfhd77Nx2E5fAuQgmCZM=
Subject key identifier: E5:E4:24:5C:0E:57:E7:BD:73:E4:60:29:BB:BF:DD:31:6E:5E:0D:13
Certificate issuer: /CN=ebf36087c3fcecfb006f518d7811b255ea57c90d
Certificate serial: 02A7E769
Authority key identifier: EB:F3:60:87:C3:FC:EC:FB:00:6F:51:8D:78:11:B2:55:EA:57:C9:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_Ngh8P87PsAb1GNeBGyVepXyQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/46431e-4951-4e1a-9195-68a4551f68a8/1/5eQkXA5X571z5GApu7_dMW5eDRM.roa
Signing time: Sat 01 Jan 2022 12:04:34 +0000
ROA not before: Sat 01 Jan 2022 12:04:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203712
IP address blocks: 37.18.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44558185 (0x2a7e769)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf36087c3fcecfb006f518d7811b255ea57c90d
Validity
Not Before: Jan 1 12:04:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5e4245c0e57e7bd73e46029bbbfdd316e5e0d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:97:b4:ce:36:da:50:c0:3b:c8:e9:06:d4:82:
0b:3e:44:cb:e7:28:19:19:11:be:e9:de:f6:5b:4c:
66:82:4d:e3:8f:bd:7b:7f:46:40:5f:63:c3:67:b0:
63:b5:4d:75:05:25:a5:fa:51:77:40:15:d7:db:fe:
f3:fe:96:a7:d1:68:d3:da:e3:c2:48:18:c3:47:8e:
02:9a:e9:37:3a:58:1e:ab:5c:1e:0a:4d:11:c2:1d:
33:12:ee:4b:cf:9b:60:d1:c1:ef:52:02:7c:1d:4a:
4e:25:13:c6:a0:e0:10:50:08:7b:cf:db:5e:3d:a3:
ca:94:8c:cf:90:bf:85:17:f3:71:30:2e:7c:af:4d:
ad:0f:df:bf:c9:a4:53:9c:ec:64:52:a9:0c:14:fe:
ce:e0:42:88:ad:3b:08:f1:0e:ed:d8:ba:a3:53:18:
5c:39:dd:d1:32:1e:d0:94:4e:d3:bd:24:1f:37:7e:
05:85:90:1d:25:2d:84:40:18:f2:01:8a:21:f8:ef:
e0:ea:90:d4:06:61:9b:c9:4f:72:73:03:3c:d7:13:
c5:21:52:5d:27:1b:b4:87:6a:8e:13:e0:56:ca:31:
93:3d:90:8d:0e:b4:08:84:4e:6e:1b:b6:d2:03:ff:
66:90:92:54:17:7f:2a:8a:4d:bd:f5:78:ba:40:3b:
a8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E4:24:5C:0E:57:E7:BD:73:E4:60:29:BB:BF:DD:31:6E:5E:0D:13
X509v3 Authority Key Identifier:
keyid:EB:F3:60:87:C3:FC:EC:FB:00:6F:51:8D:78:11:B2:55:EA:57:C9:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_Ngh8P87PsAb1GNeBGyVepXyQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/46431e-4951-4e1a-9195-68a4551f68a8/1/5eQkXA5X571z5GApu7_dMW5eDRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/46431e-4951-4e1a-9195-68a4551f68a8/1/6_Ngh8P87PsAb1GNeBGyVepXyQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.132.0/22
Signature Algorithm: sha256WithRSAEncryption
52:a0:84:97:56:69:dd:c6:2f:a7:2b:50:c6:60:c7:6b:b6:7b:
00:a1:60:52:a1:19:97:92:41:a1:fb:b6:b9:e7:22:f4:6a:a6:
3a:82:8d:91:41:c3:8a:09:ee:4a:1e:6e:d0:df:c0:ae:b4:5a:
c8:b5:63:65:e0:8c:05:86:0c:af:6a:8c:50:0f:1e:1e:39:b6:
20:d2:81:32:65:0f:df:3e:18:88:f4:07:a5:ca:f0:7a:a2:3c:
71:3a:71:d3:6d:e0:cd:39:4f:53:50:a9:19:6b:7b:ab:e3:76:
8c:67:af:81:7a:2e:b1:8d:ed:46:f9:b1:b3:22:c4:f6:63:da:
12:81:9f:b6:5e:8e:51:fa:f2:fa:21:73:9b:d7:3e:56:53:74:
7a:d4:c8:31:14:00:57:f0:59:1e:a7:c6:17:1c:7c:ad:d8:c3:
1f:c3:bb:95:89:54:1b:c5:fb:69:03:f7:f9:a4:08:31:59:2a:
6b:eb:aa:2c:ec:8d:4d:af:a8:d9:6e:31:6a:88:b8:1b:fa:be:
d8:a8:8b:8f:13:81:cd:6b:9f:d9:16:cc:0c:eb:14:45:c5:ca:
83:5f:d4:28:9d:db:a5:72:f9:a7:fc:d4:76:28:27:c6:77:e2:
6b:2c:cb:46:a1:a7:d9:20:20:c4:49:c1:10:93:95:17:b2:8d:
d3:5c:57:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:57:57 2025 by rpki-client