Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7NZh4Bo_6VwwJ9V925GswtCnPWI.roa
File: 7NZh4Bo_6VwwJ9V925GswtCnPWI.roa (raw, json)
Hash identifier: U7WcwqS/xeiPy2vi+Fw3jpcT+Ldqfka83WUlxSUJzmI=
Subject key identifier: EC:D6:61:E0:1A:3F:E9:5C:30:27:D5:7D:DB:91:AC:C2:D0:A7:3D:62
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01573B55
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7NZh4Bo_6VwwJ9V925GswtCnPWI.roa
Signing time: Sat 01 Jan 2022 05:55:08 +0000
ROA not before: Sat 01 Jan 2022 05:55:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 45.137.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22494037 (0x1573b55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 1 05:55:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecd661e01a3fe95c3027d57ddb91acc2d0a73d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e9:58:05:26:db:e2:b3:1d:a6:18:ff:5c:8f:
26:41:f1:7b:70:3a:6d:56:79:46:ab:d0:c0:33:e9:
1c:36:da:76:ce:c5:6b:7b:45:8e:39:bb:44:59:37:
dd:4d:dc:ec:a7:ad:9e:53:ef:4d:09:b2:41:af:9f:
e9:d1:a5:2d:b9:b2:3a:00:90:58:00:a4:b2:38:c0:
05:09:3b:d6:9c:0a:0a:a2:d9:ea:f8:40:e3:72:cc:
73:d9:9b:c4:75:83:6e:78:24:05:2f:a0:54:19:d6:
a6:aa:01:b9:2b:82:80:dd:e1:68:9d:49:79:ff:34:
3a:60:ac:72:68:15:b2:ee:fa:c4:c3:86:11:d6:22:
52:3c:89:c3:b3:5f:60:b7:34:3f:4c:ef:55:33:e7:
93:0a:42:14:6b:05:f8:4a:ca:46:ac:3f:56:b4:b8:
6c:16:b6:c4:d6:e4:23:82:77:ff:7b:68:bf:ac:99:
68:58:17:80:27:d1:80:c5:b3:3e:db:4b:6b:b7:a2:
bc:c3:e6:0d:6d:1b:8c:95:e8:96:a7:5e:1a:0d:99:
59:95:2a:ae:78:be:0f:00:f2:12:94:ce:a9:95:43:
71:c6:41:59:4b:86:78:b1:ea:c9:96:d9:ec:5a:bd:
6b:69:67:58:b6:a3:70:73:90:a3:de:78:00:ce:da:
70:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D6:61:E0:1A:3F:E9:5C:30:27:D5:7D:DB:91:AC:C2:D0:A7:3D:62
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/7NZh4Bo_6VwwJ9V925GswtCnPWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.85.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:f5:f9:2d:85:37:14:3b:06:0c:19:6e:04:c9:ae:cb:45:ee:
65:56:0c:69:cd:5a:95:c7:8b:42:80:df:c7:4d:1c:2b:de:47:
78:24:96:70:48:ab:60:b8:2e:02:d6:e3:c3:34:4d:68:bb:0f:
a2:98:52:08:20:42:be:6f:0a:39:22:d5:7c:3f:43:75:9a:56:
27:11:d9:4e:da:a3:62:38:5f:34:77:c9:f2:73:7e:67:c9:b6:
6d:27:f6:ba:d3:32:c7:d7:b5:71:a8:ea:18:1e:a9:ba:bc:6c:
58:8e:8a:3a:c1:3c:d9:41:32:a3:ce:c8:2e:b1:41:32:27:d8:
e8:c0:2c:ac:c6:fe:72:87:81:df:06:b7:e7:61:a5:6a:6b:2e:
ec:84:c0:c4:a6:f7:41:8b:a4:24:d4:e9:e9:28:4b:36:e1:71:
6f:34:84:91:35:b5:3a:2d:4a:93:0c:29:bb:fa:71:1c:e9:cb:
a2:98:38:35:05:dc:63:d2:d2:4b:1e:1c:c4:45:26:c7:d2:4d:
4e:a3:8f:f4:fb:bc:47:34:59:0a:2e:1a:ce:ae:f6:a3:69:98:
29:80:92:23:9b:20:0b:db:45:f7:db:a4:7e:d6:5c:01:f0:f9:
4a:ef:8d:b8:e7:84:95:77:de:fb:cb:7b:b6:42:c1:85:51:2c:
6d:5d:7f:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:40:25 2025 by rpki-client