Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/a565fb-50bd-4bb6-875c-0e2bbd4337aa/1/SLSePaowkFK1cFBFEu-SfGp7g5M.roa
File: SLSePaowkFK1cFBFEu-SfGp7g5M.roa (raw, json)
Hash identifier: UkAnavlgmnM9O3c0grFpyGYR+qaUg3ZiJrCridSJYtI=
Subject key identifier: 48:B4:9E:3D:AA:30:90:52:B5:70:50:45:12:EF:92:7C:6A:7B:83:93
Certificate issuer: /CN=b1c208a23b2d4d87be93f89d532bc6f44908819b
Certificate serial: 0184D25207E6E0902551DD9BB622D37E6F40
Authority key identifier: B1:C2:08:A2:3B:2D:4D:87:BE:93:F8:9D:53:2B:C6:F4:49:08:81:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/scIIojstTYe-k_idUyvG9EkIgZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/a565fb-50bd-4bb6-875c-0e2bbd4337aa/1/SLSePaowkFK1cFBFEu-SfGp7g5M.roa
Signing time: Fri 02 Dec 2022 10:11:42 +0000
ROA not before: Fri 02 Dec 2022 10:11:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59848
IP address blocks: 213.109.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d2:52:07:e6:e0:90:25:51:dd:9b:b6:22:d3:7e:6f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1c208a23b2d4d87be93f89d532bc6f44908819b
Validity
Not Before: Dec 2 10:11:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48b49e3daa309052b570504512ef927c6a7b8393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:df:7f:1d:4c:28:c2:fe:4f:65:17:eb:46:83:
fd:fc:53:ff:ac:95:31:0a:bb:01:81:7c:0b:00:2a:
3b:68:f6:c4:17:2f:a8:26:e7:14:46:0e:af:92:57:
ac:33:3c:43:85:c3:6d:f1:4f:9c:65:60:09:0d:b9:
7f:b1:4a:7c:6f:95:54:6c:6a:3f:43:2c:9d:a1:af:
8a:b0:51:65:5d:61:da:31:c3:8f:8f:95:e6:01:a2:
de:ce:10:06:6c:f6:59:d4:bd:25:4e:9b:a5:60:0e:
31:48:e4:d5:b3:29:3a:2a:88:75:55:cd:f9:ec:35:
05:41:70:41:52:21:42:4c:68:03:56:d0:c8:20:da:
e8:8c:97:79:8b:a6:2d:34:8e:56:bf:b9:f5:ac:b3:
58:08:4f:a2:ea:46:bb:4e:05:bb:90:85:5a:47:2b:
0c:2a:23:23:69:e4:78:c2:9d:d9:b6:5f:7c:37:4f:
2c:85:96:75:e9:5b:46:e7:b5:8a:24:fd:d4:e0:2f:
30:f0:2d:35:90:7a:81:a5:18:05:80:3b:7e:24:6e:
1d:8b:e3:bc:ff:2e:97:71:a0:86:7b:c8:00:4f:ac:
17:13:81:b4:dc:71:e1:af:ca:e3:3e:83:e2:b3:1a:
b8:70:af:a1:6d:36:f0:99:c0:63:30:9d:4b:de:9b:
7d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B4:9E:3D:AA:30:90:52:B5:70:50:45:12:EF:92:7C:6A:7B:83:93
X509v3 Authority Key Identifier:
keyid:B1:C2:08:A2:3B:2D:4D:87:BE:93:F8:9D:53:2B:C6:F4:49:08:81:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/scIIojstTYe-k_idUyvG9EkIgZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/a565fb-50bd-4bb6-875c-0e2bbd4337aa/1/SLSePaowkFK1cFBFEu-SfGp7g5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/a565fb-50bd-4bb6-875c-0e2bbd4337aa/1/scIIojstTYe-k_idUyvG9EkIgZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.145.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:ce:ab:58:60:d8:c5:12:8b:c4:2e:2a:99:94:dc:91:4c:b4:
2e:9e:e9:fa:91:52:9d:2f:e8:c3:0c:5d:7f:8a:06:3c:52:2e:
b3:83:8d:a4:3f:ce:5a:30:39:b6:5e:c0:5b:cc:69:fb:c0:f9:
28:25:12:db:3e:80:09:c0:c6:e3:fb:e8:71:07:bb:5d:01:72:
ca:da:00:40:58:e7:ab:74:8e:be:da:a2:1f:96:54:b2:53:29:
59:21:ee:ab:27:55:5f:6a:4c:90:71:d3:6b:90:b2:82:0d:e6:
8a:23:e3:39:ef:1d:e4:1e:2a:b7:4b:e5:b4:09:ba:ea:bd:43:
3b:80:fb:48:1e:79:cf:bb:c6:1d:06:1a:14:7d:95:80:eb:d8:
38:07:08:d2:f5:c0:8f:5d:e4:e2:e1:80:2a:ac:c4:14:3b:5d:
ad:2e:8f:c3:c6:a9:62:14:c9:3f:94:5e:6d:32:07:de:5a:14:
17:06:0a:7c:4f:52:fb:f0:06:9d:6d:9a:5e:93:1c:dd:50:6b:
5e:e0:0e:0f:19:55:2c:ab:ca:25:36:68:c7:ad:82:10:9d:e5:
ba:39:24:6d:06:84:3f:3d:dc:9e:b8:84:5f:69:62:8f:a6:cc:
b7:32:97:a7:e6:fe:4c:bf:9a:af:e1:63:b0:a5:0b:e8:a6:e1:
ef:e2:9a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:29:49 2025 by rpki-client