Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/P54stZ5VvL9woKkJpqvblrchJGo.roa
File: P54stZ5VvL9woKkJpqvblrchJGo.roa (raw, json)
Hash identifier: zkocIHtlXPi/obOCKaYdp0PrOM/vUTAiVqr/yXJKZ0U=
Subject key identifier: 3F:9E:2C:B5:9E:55:BC:BF:70:A0:A9:09:A6:AB:DB:96:B7:21:24:6A
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0183EB9370DD63A6A602238D25C28EF29FB8
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/P54stZ5VvL9woKkJpqvblrchJGo.roa
Signing time: Tue 18 Oct 2022 14:50:51 +0000
ROA not before: Tue 18 Oct 2022 14:50:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60871
IP address blocks: 45.157.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:93:70:dd:63:a6:a6:02:23:8d:25:c2:8e:f2:9f:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 18 14:50:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f9e2cb59e55bcbf70a0a909a6abdb96b721246a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:40:fc:f1:52:f1:96:c3:f3:42:79:a6:1b:56:
d9:6a:55:20:fd:34:23:c2:24:35:bc:a7:48:c7:2a:
3b:fd:cb:23:b9:0d:87:e9:62:88:1f:dc:5c:89:07:
47:61:c6:fe:35:35:dd:81:9f:10:b3:8a:64:bc:9f:
57:d3:d4:80:ba:af:33:05:5b:f2:3c:6c:c0:7a:4a:
b4:c6:60:0a:d6:32:0e:d0:4f:6f:b5:0a:8c:55:f8:
fd:0d:8d:9f:2a:48:9c:cd:cd:58:15:4c:71:d2:84:
04:7a:07:95:1c:ab:42:12:2c:56:14:7c:4a:81:49:
b7:9e:c1:83:5b:e2:11:83:c5:61:e8:89:96:cb:72:
e5:27:9e:d6:bd:6f:ba:73:19:6a:1d:0e:8a:19:43:
41:da:77:89:44:b5:29:df:69:ec:11:81:f2:96:2b:
3d:0d:3a:a2:e1:f8:85:38:58:9f:94:ca:f7:05:2d:
99:a0:46:54:81:a2:f3:a3:14:16:68:18:77:8b:5f:
f0:2d:40:17:60:80:46:ff:f9:8e:ca:9c:33:63:2f:
ed:92:4d:e5:22:be:58:19:e5:b9:66:0c:17:17:bf:
c6:17:3a:89:4b:fd:0d:19:d4:4f:22:8a:72:27:fa:
82:cb:6a:51:e7:bc:b9:0e:16:24:e5:d0:72:fd:55:
95:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:9E:2C:B5:9E:55:BC:BF:70:A0:A9:09:A6:AB:DB:96:B7:21:24:6A
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/P54stZ5VvL9woKkJpqvblrchJGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.39.0/24
Signature Algorithm: sha256WithRSAEncryption
64:4c:57:43:55:53:a1:79:6f:97:51:c9:27:50:55:db:c1:3c:
37:8b:f3:50:b2:e1:86:c6:0c:b3:62:32:df:35:32:b6:7f:24:
2e:9e:d2:92:7a:55:09:97:87:18:ea:6c:90:ee:d2:fd:08:64:
a0:ed:80:5b:9a:17:b8:c4:5e:ed:47:a8:42:90:4f:39:a8:60:
02:27:bc:93:13:a8:ba:2c:72:be:fe:23:11:14:dd:a6:87:56:
0b:a3:4d:b1:21:53:b0:37:c6:67:bf:fc:13:31:97:0b:6c:0b:
bf:40:33:66:3d:46:de:15:54:ba:b7:fc:dd:5e:69:bf:75:43:
8c:56:94:e7:d8:db:e0:23:af:a2:7f:71:c0:a4:4a:b5:ff:42:
22:21:3c:46:34:30:6c:7a:d3:25:6f:78:33:1c:06:0b:b1:58:
54:76:3d:75:4e:95:f1:b3:86:bd:d0:15:44:2c:d7:e2:84:66:
46:dd:29:82:81:a2:37:81:71:b6:ef:7d:e9:8c:ce:07:b7:a4:
bc:f8:cd:b7:39:fe:1f:7e:9b:ab:57:5e:51:b6:50:7c:87:68:
a7:6c:1f:a4:3e:9d:42:06:41:fd:42:f0:fc:fa:d9:8b:07:1f:
b0:82:57:0f:ab:e2:d9:08:09:36:04:2b:cf:c0:ce:ac:73:54:
ac:df:1e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:09:23 2025 by rpki-client