Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/FG8nW8Rts3zSKe323cml1jU0yNM.roa
File: FG8nW8Rts3zSKe323cml1jU0yNM.roa (raw, json)
Hash identifier: 5cqhnCksNVV1Scb2VparZKC5rvYrLG/p+QhK7d/moxo=
Subject key identifier: 14:6F:27:5B:C4:6D:B3:7C:D2:29:ED:F6:DD:C9:A5:D6:35:34:C8:D3
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 07D8B2CC
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/FG8nW8Rts3zSKe323cml1jU0yNM.roa
Signing time: Sat 01 Jan 2022 10:57:01 +0000
ROA not before: Sat 01 Jan 2022 10:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208094
IP address blocks: 45.141.55.0/24 maxlen: 24
2a05:4741:20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131642060 (0x7d8b2cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 1 10:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=146f275bc46db37cd229edf6ddc9a5d63534c8d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:fb:69:8b:5d:e8:2b:c1:44:72:80:ca:f8:58:
0d:b6:99:e6:91:c4:dc:19:f8:e3:8f:47:fc:d2:ea:
07:45:92:6d:6c:68:09:08:89:f9:c7:67:a6:09:4c:
f9:5d:1a:40:5a:ed:86:4a:13:87:e3:e8:3a:d0:80:
b3:9a:46:cb:e4:bb:f1:3a:8f:11:db:f6:a9:64:b6:
35:29:e9:5d:19:3e:49:ef:45:31:0d:7d:02:70:fc:
c1:60:44:27:e5:92:0a:d3:6b:c8:c7:ce:39:89:13:
97:3f:ac:e9:04:67:d8:8a:a7:ff:37:b2:26:96:d4:
89:cc:a6:5c:c7:00:4e:0c:53:45:02:43:7c:41:9b:
81:85:ed:7a:83:eb:bf:23:bf:12:b9:6f:93:2a:c0:
ef:6c:ed:42:4c:87:e2:82:64:b2:4d:c6:c1:24:ef:
72:04:83:18:94:6f:0f:ba:4c:cb:a6:9f:fc:f7:de:
26:6e:15:de:ce:2b:0a:2c:11:92:25:ec:7f:66:e6:
87:8d:be:a8:dd:51:ab:25:87:0d:18:b1:26:15:20:
54:cb:e9:b4:36:57:20:f4:a7:94:1f:69:26:65:e9:
3b:73:47:0b:eb:e4:f3:64:31:d2:78:48:d1:d4:e5:
7a:11:c6:5d:a8:ba:53:b0:6b:fb:e2:a6:64:9c:53:
12:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6F:27:5B:C4:6D:B3:7C:D2:29:ED:F6:DD:C9:A5:D6:35:34:C8:D3
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/FG8nW8Rts3zSKe323cml1jU0yNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.55.0/24
IPv6:
2a05:4741:20::/48
Signature Algorithm: sha256WithRSAEncryption
70:f2:a1:f3:70:2e:8d:b0:92:a5:b9:11:11:c4:35:8d:18:0e:
7a:71:00:e5:f3:42:8d:cd:2d:02:e4:01:7b:c1:a1:15:16:f5:
db:05:21:f6:ab:07:7e:8a:21:48:25:70:ad:7f:9d:3d:9e:c7:
0a:1d:bd:5d:40:d8:e8:3c:fa:29:5a:40:ff:5c:7b:5c:45:20:
80:92:1e:1b:f4:ac:18:17:8e:0c:80:09:c4:dd:73:48:f8:a0:
4f:d7:c3:ed:8a:f0:8f:98:1c:40:f1:61:b0:70:be:8c:e6:73:
b4:36:ab:a1:35:f8:ab:f1:7d:2d:62:da:7c:3b:f3:73:5c:20:
2d:41:57:b0:b7:56:e7:69:62:ee:6e:e0:06:67:5f:5e:08:ae:
fe:e6:0e:ed:38:63:87:f8:5b:3c:3e:d8:96:c8:25:70:74:0f:
a9:71:45:13:81:07:3f:d7:1f:17:a8:32:58:16:6a:ac:51:a9:
c7:4b:15:c2:23:73:24:23:1c:e8:00:56:bc:1d:df:6a:39:3e:
63:cc:b4:1f:0e:b1:fe:7e:eb:be:81:eb:46:7a:ea:fa:1f:00:
09:d3:4a:a8:8e:82:26:1b:be:c4:9d:b1:59:dc:c9:84:c3:42:
04:f4:c9:23:25:5a:70:8e:e4:b1:9e:6d:5e:ac:0d:f9:5d:db:
5c:b9:65:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:38 2025 by rpki-client