Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AJhzcHwjWX-n0hz_Lssskrdunxo.roa
File: AJhzcHwjWX-n0hz_Lssskrdunxo.roa (raw, json)
Hash identifier: KDtApYPam2mMUwH8hXUJxGiThLXJxd2ATnaTaf8e8Fs=
Subject key identifier: 00:98:73:70:7C:23:59:7F:A7:D2:1C:FF:2E:CB:2C:92:B7:6E:9F:1A
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018832C86B6A6771BA523651E61B2EFF9E11
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AJhzcHwjWX-n0hz_Lssskrdunxo.roa
Signing time: Fri 19 May 2023 06:52:55 +0000
ROA not before: Fri 19 May 2023 06:52:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135377
IP address blocks: 93.190.246.0/24 maxlen: 24
45.128.79.0/24 maxlen: 24
45.128.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:32:c8:6b:6a:67:71:ba:52:36:51:e6:1b:2e:ff:9e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 19 06:52:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=009873707c23597fa7d21cff2ecb2c92b76e9f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9a:ea:2d:f3:2d:14:f8:98:18:3e:95:77:25:
74:84:26:40:c2:db:fe:6c:ad:ef:6d:69:75:17:9b:
95:d1:8f:5c:84:ac:03:63:51:4f:85:b0:91:b1:1c:
a3:01:38:81:c8:62:3e:52:ed:bb:dd:d1:eb:c0:7c:
2a:66:84:5b:00:92:f2:ac:c2:2d:43:42:8b:fc:87:
4f:ca:48:94:60:ce:e6:c8:e0:de:bc:20:42:b4:19:
ec:84:0d:78:26:34:7c:80:90:e5:f7:9c:52:cd:75:
08:6b:25:8d:67:0b:8b:29:82:e8:89:c9:f9:f0:1a:
9c:5e:74:1a:c4:c6:8b:d9:82:ff:2d:d7:ca:b0:c8:
4c:d3:76:fa:ad:db:40:bc:1f:62:4b:37:58:a7:ed:
4e:5c:d9:7c:9a:41:21:82:a9:14:a5:b7:0e:a9:37:
8f:e3:c4:b0:29:bb:25:62:37:fa:fc:aa:8c:ce:55:
0b:a0:15:2f:ea:57:18:75:03:e2:de:f8:08:f4:fe:
06:62:df:08:e9:42:5a:9e:7d:1a:69:be:f6:b2:14:
1e:b1:f0:ca:4d:7b:d6:73:aa:fb:82:30:1d:4c:10:
f4:2f:8d:79:a8:bc:73:d7:c6:ef:3d:c8:ae:4b:15:
75:91:b7:8d:e8:b6:b4:ff:f5:3d:69:a4:e1:b1:b2:
92:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:98:73:70:7C:23:59:7F:A7:D2:1C:FF:2E:CB:2C:92:B7:6E:9F:1A
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/AJhzcHwjWX-n0hz_Lssskrdunxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.26.0/24
45.128.79.0/24
93.190.246.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:d1:8b:a4:ba:fc:99:dd:98:53:fb:b0:63:53:64:67:bc:bc:
89:7c:3a:85:19:00:76:df:39:77:a7:d2:86:4d:b8:ac:05:8e:
05:f0:82:17:8f:52:26:25:e9:96:ee:b9:2d:b2:48:fc:44:7a:
69:2b:8e:67:27:51:1c:fb:74:66:40:92:b3:9c:36:9e:0f:13:
5f:e4:17:ba:87:32:76:a6:46:5f:7b:87:00:fe:44:fb:8b:36:
06:04:23:78:16:0f:10:02:aa:3f:7e:d1:13:56:cd:d4:fa:f0:
9f:ea:11:7a:e9:09:de:4a:8e:49:10:95:14:d5:f5:d6:66:7b:
b3:85:4c:c8:1b:77:51:3d:74:33:e6:ed:d3:a8:52:91:a6:9c:
5b:17:37:fc:6d:fe:6f:2e:d5:c7:54:62:9b:55:59:8f:3a:16:
0a:53:08:cb:5c:84:75:07:27:b0:87:45:cc:a3:c3:2f:4b:36:
69:97:62:11:40:09:17:a4:81:29:f0:e7:04:d9:4d:3c:ee:f4:
83:72:92:c8:49:6e:ad:ab:a1:72:d3:d4:27:e4:86:db:c4:20:
1d:86:b6:4e:c4:d1:5f:58:9c:14:b5:b2:4f:64:8e:65:e1:1e:
7b:9c:50:6a:7b:b3:13:bb:94:5d:ac:39:8b:dc:1c:54:3e:98:
62:24:48:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:28:10 2025 by rpki-client