Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/B1ly7-7lJTU7Jm8swlG8LNNikfM.roa
File: B1ly7-7lJTU7Jm8swlG8LNNikfM.roa (raw, json)
Hash identifier: Nfs5Ty6qMfzbX02tIl3pP7a7RSsmkUE7usj5eXkHLrI=
Subject key identifier: 07:59:72:EF:EE:E5:25:35:3B:26:6F:2C:C2:51:BC:2C:D3:62:91:F3
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0157929B
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/B1ly7-7lJTU7Jm8swlG8LNNikfM.roa
Signing time: Sat 01 Jan 2022 05:55:09 +0000
ROA not before: Sat 01 Jan 2022 05:55:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213035
IP address blocks: 45.137.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22516379 (0x157929b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 1 05:55:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=075972efeee525353b266f2cc251bc2cd36291f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:91:e2:94:ff:91:58:e9:c0:74:ce:19:56:b9:
f8:32:6c:91:83:c8:ac:b6:f4:24:d7:a9:40:67:1c:
31:b6:62:f2:97:5f:1f:40:ea:a1:17:4c:63:0c:d3:
96:f3:24:3f:ea:30:7b:8b:03:7b:af:f8:2b:3d:03:
88:08:11:b1:c3:ee:fb:f2:33:40:8f:d8:4d:51:e4:
ea:95:43:9f:c8:fe:96:82:54:f7:23:99:a5:ed:72:
30:d5:00:ee:48:35:85:b3:17:30:2e:c8:b7:5b:64:
f1:02:9b:7e:f7:8d:4e:b6:63:02:5a:50:8c:71:29:
20:7d:5a:ec:78:5b:47:d6:dd:5e:43:4f:db:ce:ac:
9b:de:39:16:85:6e:b5:77:d3:3d:c5:bd:30:f5:ea:
c8:70:4b:f2:6d:76:b7:7f:62:12:26:ed:43:54:25:
34:85:fa:92:4b:2b:8e:ae:a2:c5:7b:0e:44:aa:4f:
ae:56:de:f3:87:1f:21:4c:92:ab:a0:c6:2d:26:41:
4c:7a:3c:25:fd:f2:a9:51:56:53:4d:35:ef:ac:06:
99:06:97:ec:b9:bf:2a:54:33:0c:97:cc:ed:21:95:
2d:1a:90:be:95:e4:57:98:65:1f:f0:fe:7e:fd:ac:
9a:5d:df:76:f3:3b:1a:79:59:25:27:24:f4:61:e7:
65:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:59:72:EF:EE:E5:25:35:3B:26:6F:2C:C2:51:BC:2C:D3:62:91:F3
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/B1ly7-7lJTU7Jm8swlG8LNNikfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.86.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ed:4a:63:9e:35:b9:aa:5a:63:46:de:b8:ac:db:71:e2:11:
4c:22:84:88:1f:c5:fa:91:13:b9:d3:fd:58:f5:a4:8f:1b:9c:
66:fe:6e:46:8e:2a:40:f1:a3:35:ba:42:bb:24:3c:78:f7:ad:
88:b3:1a:d5:f5:6c:76:7f:2a:d1:5b:c6:03:c8:dd:0b:a6:3e:
b5:81:a6:7d:51:b7:e8:be:f1:46:54:60:a5:1c:8a:92:aa:2f:
59:6f:eb:81:4e:e5:2e:de:9c:d4:6b:b6:45:2c:b4:28:8c:88:
7c:24:9e:af:87:2c:6b:d5:53:c0:36:a4:42:24:0c:9f:88:f7:
20:b7:d7:8a:a3:8d:4d:ce:f2:44:67:3d:be:46:a0:5d:08:77:
a8:5d:1b:79:25:c1:95:65:a4:c4:d1:0d:a6:1c:b0:1f:53:0f:
dc:1e:49:cc:0c:63:9c:52:ed:25:31:3c:06:53:ca:8a:c6:bf:
63:d3:e7:c1:93:2b:56:5e:bb:73:9e:af:40:93:96:9f:b5:b1:
c0:b1:d7:49:8b:fb:f7:13:cf:e7:20:5e:72:bb:a3:ab:07:a4:
17:6b:86:0f:54:7a:a1:8c:1f:1e:08:13:89:0c:20:d2:72:bc:
c2:19:cd:32:ec:8e:69:02:3a:b5:55:59:16:48:f2:5a:9c:72:
8d:f1:05:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:50:26 2025 by rpki-client