Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8xIT3HJsClVvkpRRk_hcA3WEZbg.roa
File: 8xIT3HJsClVvkpRRk_hcA3WEZbg.roa (raw, json)
Hash identifier: 5WH5+F5nAxyxh3ogmbRxVPBToYbsTNhvw/Q7XSwafZo=
Subject key identifier: F3:12:13:DC:72:6C:0A:55:6F:92:94:51:93:F8:5C:03:75:84:65:B8
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 020EB22F
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8xIT3HJsClVvkpRRk_hcA3WEZbg.roa
Signing time: Wed 23 Feb 2022 18:19:21 +0000
ROA not before: Wed 23 Feb 2022 18:19:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.152.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34517551 (0x20eb22f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 23 18:19:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f31213dc726c0a556f92945193f85c03758465b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d5:b3:e4:09:0a:b2:7b:4f:a1:0e:ba:fc:e3:
63:32:d5:74:0f:24:f4:f7:6f:a0:41:37:f1:72:a6:
3b:16:e4:ab:87:a1:62:40:78:5b:25:03:cf:cd:60:
f9:1f:e0:24:46:63:67:dd:4a:0f:61:74:e5:21:2c:
dd:27:57:eb:01:5a:97:ce:34:be:ef:63:21:03:b3:
a6:94:6d:02:e1:e6:84:e0:1e:bd:2e:71:da:48:5f:
76:07:39:37:90:79:56:a9:5e:72:a7:87:cc:72:de:
f3:64:56:6a:1c:47:20:ee:85:fd:83:6b:88:ac:ad:
f5:93:13:64:cb:5c:f5:5e:cc:7b:b7:2d:b8:d5:b5:
f2:51:0c:ba:1b:cc:44:b7:e8:62:6f:7c:aa:93:e3:
52:37:7f:40:8a:0f:2d:77:47:fb:48:5b:1c:cd:43:
ec:51:2e:26:b1:a0:75:45:2b:47:d9:3f:12:19:2f:
ae:64:2f:10:cd:82:a0:ee:6d:50:9a:8a:31:0d:0a:
84:0b:72:cb:49:b2:bf:2e:3b:1b:0f:8d:61:53:c9:
c4:87:41:3a:33:6b:de:48:9c:85:b2:be:32:49:d3:
2e:01:fc:7a:ab:91:66:69:a2:af:c2:4c:85:51:01:
f1:45:59:eb:88:db:05:69:8e:eb:63:7a:ce:f0:98:
f2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:12:13:DC:72:6C:0A:55:6F:92:94:51:93:F8:5C:03:75:84:65:B8
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/8xIT3HJsClVvkpRRk_hcA3WEZbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.197.0/24
Signature Algorithm: sha256WithRSAEncryption
06:6b:17:25:08:c8:93:8d:58:2b:e1:ee:49:b5:17:b6:e3:46:
2e:9c:17:ce:90:34:ef:2c:f3:87:08:52:3c:fa:b9:45:d7:5b:
15:c1:15:51:1a:42:71:21:d6:f2:5c:bb:cb:38:75:2f:d6:ac:
b5:ae:4a:67:2f:29:14:d0:8a:82:27:77:d1:55:64:fe:0e:a9:
ad:95:04:44:9a:78:24:2b:fe:85:5d:07:9f:53:4a:7f:29:d4:
68:64:6c:d6:b3:5e:b9:25:c6:d1:f1:de:c1:3b:54:f3:8e:a8:
ca:f7:ad:3f:ad:d2:af:86:55:d2:21:4d:2f:2e:fd:d0:7f:6b:
9a:d2:4a:36:a5:0e:9d:b3:7e:67:92:60:1e:eb:91:a1:41:40:
95:11:f5:fc:8d:4c:11:eb:b6:55:1b:4e:53:b8:92:23:62:11:
ce:fe:5e:4f:65:1a:b7:44:91:ac:c7:2d:35:95:c3:f2:d9:e8:
26:e4:ef:69:26:02:77:64:97:00:b0:8b:08:99:45:28:92:0a:
2c:ed:1a:eb:0c:08:21:b3:2e:a1:ea:94:ac:db:6e:88:1d:5a:
17:57:4e:86:7d:71:de:4b:90:5c:6d:fb:a1:ff:3e:13:a0:f0:
7f:ac:2b:07:8d:f5:3d:97:23:98:62:29:e2:f2:34:c7:05:6e:
b2:78:4f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:13:08 2025 by rpki-client