Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2FbylOlZHj6gACDwX02VzklhfOI.roa
File: 2FbylOlZHj6gACDwX02VzklhfOI.roa (raw, json)
Hash identifier: 22LO+CYkTvzW1vTma3kPOlamachruazAsAulyGT0ETw=
Subject key identifier: D8:56:F2:94:E9:59:1E:3E:A0:00:20:F0:5F:4D:95:CE:49:61:7C:E2
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01874D4DC41586CAC7EDABC7A9148F252E63
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2FbylOlZHj6gACDwX02VzklhfOI.roa
Signing time: Tue 04 Apr 2023 17:25:54 +0000
ROA not before: Tue 04 Apr 2023 17:25:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211373
IP address blocks: 45.141.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4d:4d:c4:15:86:ca:c7:ed:ab:c7:a9:14:8f:25:2e:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 4 17:25:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d856f294e9591e3ea00020f05f4d95ce49617ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6d:c7:6f:4e:f0:c8:5b:81:a4:da:e1:f2:7f:
61:ee:e8:4c:60:38:ff:62:19:2c:26:1a:26:44:0f:
09:ff:b6:42:df:b0:3a:84:e7:d4:9d:cb:e5:7d:e5:
16:b6:f7:1c:77:bb:8e:fb:cd:d6:22:77:51:54:96:
ec:5b:f0:56:34:71:7a:0f:79:54:3a:4c:85:65:34:
2f:02:48:9a:57:fe:65:7d:39:3c:aa:8a:eb:d1:7e:
9d:34:20:5e:bc:ba:c8:a8:f4:00:6f:20:73:dc:3d:
10:e9:b4:ba:6c:c6:b0:15:ae:7a:7c:bc:76:08:b7:
12:c5:74:d7:85:f0:f2:02:16:63:47:b0:f9:01:f0:
e5:ed:94:9f:a5:52:d7:3f:56:3c:9f:6a:a4:b4:db:
e3:dd:09:fe:43:8d:cf:8f:71:18:70:d6:d4:41:58:
44:5e:a4:09:c9:e3:f9:49:e7:be:ba:45:45:c4:40:
af:99:54:9d:5e:88:98:26:64:6f:b8:81:85:a3:05:
19:88:8b:66:be:c9:5f:e8:f4:c4:b5:61:34:51:c3:
95:6e:46:9c:b2:b8:08:11:a3:0f:90:17:3e:66:6f:
31:c6:0d:d7:4c:2b:f7:fe:d4:f9:c3:91:44:24:f3:
75:87:f2:29:b0:9f:5f:8e:2c:7d:95:d0:f2:a1:d0:
56:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:56:F2:94:E9:59:1E:3E:A0:00:20:F0:5F:4D:95:CE:49:61:7C:E2
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/2FbylOlZHj6gACDwX02VzklhfOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.178.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:8f:50:38:78:b2:c6:7a:54:a2:72:8b:56:c0:3a:a5:83:ad:
a3:ca:f5:8f:35:88:a1:7c:18:b0:c8:5e:bf:34:5c:04:46:ee:
c8:4a:bd:1e:84:60:d4:17:40:45:ab:70:c5:dd:f6:5a:97:0a:
60:b7:98:e1:96:ab:2f:ee:55:0b:59:a6:f3:b2:8d:7d:c4:59:
7b:05:31:68:57:72:06:b8:84:e0:44:d5:5b:36:09:2f:c5:21:
60:3b:f8:3a:55:03:bf:61:dc:01:a8:1c:3b:db:72:c8:d0:4d:
f3:43:ed:37:ac:f5:eb:1a:53:47:2b:98:3c:75:d3:9c:ed:c8:
93:8b:de:ef:26:c3:fd:46:3d:b7:8d:b6:e1:ba:b6:d7:fc:2b:
a7:36:50:b4:1f:df:80:29:0c:b1:87:71:a8:40:ac:c8:1c:8b:
2c:17:c6:66:d2:37:c5:65:fc:fc:0a:25:a2:8d:d2:cb:85:c6:
eb:a9:bf:ab:97:34:e6:58:e5:05:95:b1:20:81:95:8e:dc:2f:
1e:df:39:ee:c6:5c:8c:e2:0d:b5:1e:26:6a:76:06:91:1b:6f:
a0:83:01:44:0d:07:69:2c:5d:89:35:5c:64:21:2f:06:7e:8f:
e8:8b:7d:e2:6b:5e:06:30:2f:55:c3:22:02:8e:8a:95:bb:2a:
cc:21:50:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:15:01 2025 by rpki-client