Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/oaopGcBW6M5U1Lyj6CM-IW9gw28.roa
File: oaopGcBW6M5U1Lyj6CM-IW9gw28.roa (raw, json)
Hash identifier: S0p6RJ3xTwgM51+rbKD+lEm0omBKMjcQmSZEf/pX9u0=
Subject key identifier: A1:AA:29:19:C0:56:E8:CE:54:D4:BC:A3:E8:23:3E:21:6F:60:C3:6F
Certificate issuer: /CN=6228417361c1c406ae9a7257daa9fb0620782d35
Certificate serial: B8C39C
Authority key identifier: 62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/oaopGcBW6M5U1Lyj6CM-IW9gw28.roa
Signing time: Fri 18 Feb 2022 11:58:13 +0000
ROA not before: Fri 18 Feb 2022 11:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207732
IP address blocks: 45.129.93.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12108700 (0xb8c39c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228417361c1c406ae9a7257daa9fb0620782d35
Validity
Not Before: Feb 18 11:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1aa2919c056e8ce54d4bca3e8233e216f60c36f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:66:99:5f:a3:15:57:f7:c4:69:d6:06:a5:fc:
0d:8e:6f:4c:0c:d8:02:3c:82:ea:06:76:08:00:ea:
7e:0d:a4:74:99:6e:14:40:7a:3c:21:b2:f0:d4:27:
c7:d1:6b:ef:8e:f8:09:c5:ec:01:1f:f1:d6:9d:5d:
7c:02:77:4e:8b:d8:39:74:4e:9e:49:1c:cb:88:3f:
50:b7:97:9d:4e:0f:1a:7d:dd:bd:2f:0e:2e:e8:0c:
03:60:f9:ba:b0:2b:ce:ed:de:73:b9:65:d0:e7:60:
e4:15:36:e1:70:8c:e8:06:05:9c:ee:2e:5f:99:90:
f6:cd:f0:36:ee:03:7e:b6:3c:47:ed:e1:21:f6:c7:
55:50:93:9f:ee:85:54:d5:7f:7d:16:7e:29:86:6a:
75:fa:b4:aa:9d:6c:4f:e5:09:97:f3:bb:bd:d6:7b:
bb:08:6b:38:da:2b:6e:ef:5f:fe:49:a8:38:61:d9:
bc:92:4f:e3:82:72:a1:2b:6e:64:d4:0c:25:1e:dd:
bf:cb:ab:32:31:b3:67:5b:51:8e:87:1e:ea:04:43:
f2:84:13:ff:87:9f:48:ff:3b:5a:b2:6e:6e:90:f4:
aa:43:1e:3a:31:6c:3d:8d:16:65:82:45:9f:c0:26:
24:45:3d:66:7c:7b:e6:6f:6d:73:29:73:b2:41:64:
42:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:AA:29:19:C0:56:E8:CE:54:D4:BC:A3:E8:23:3E:21:6F:60:C3:6F
X509v3 Authority Key Identifier:
keyid:62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/oaopGcBW6M5U1Lyj6CM-IW9gw28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.93.0/24
Signature Algorithm: sha256WithRSAEncryption
01:ec:df:ef:54:a1:94:f0:23:88:d2:ac:cb:d6:6b:ae:6c:b5:
49:eb:76:1a:8c:14:28:46:ca:f3:29:f9:9e:fd:f7:7a:5d:52:
20:8d:a8:5a:db:95:cc:a6:3b:92:cf:76:19:fe:cd:2a:2f:88:
d2:bc:d1:c2:5c:e3:ba:bb:63:5e:84:e5:1a:2e:af:b0:00:04:
47:4c:10:8e:91:31:e6:30:96:f0:34:2a:13:f2:9c:f6:f4:29:
7d:bc:3a:39:e3:65:85:28:ff:77:48:f9:16:ef:3e:c5:9b:b1:
81:fa:d8:f2:29:87:ac:17:6f:14:2f:0a:cc:80:e6:ad:54:ce:
30:ff:1e:83:ef:2e:fe:76:8a:6d:60:82:0d:7a:17:71:d2:09:
7c:4e:01:b8:05:59:b2:7c:4f:42:f5:7a:0d:ea:fd:08:14:e9:
23:0a:60:ca:70:a6:a0:f7:c1:62:6a:9e:d2:7a:75:40:b5:54:
85:de:42:08:13:98:88:24:2f:c3:23:af:8e:fd:06:ad:65:51:
ae:66:f7:e7:1f:f4:07:fd:19:e0:a8:70:2f:33:c4:37:94:ef:
0b:1a:82:c6:bf:3e:3d:d2:de:4e:94:7f:83:49:b9:c5:af:37:
fe:0c:03:a4:c8:f1:89:06:cc:a6:5b:fe:71:a4:7d:99:8b:ac:
aa:01:4e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:10:41 2025 by rpki-client