Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/XVeit3iCciLMqKcIqlLN-waQNSE.roa
File: XVeit3iCciLMqKcIqlLN-waQNSE.roa (raw, json)
Hash identifier: x18wfAc2CjbhOzQYWKAr71yUAQJjCsqhnhwbnTBV7a4=
Subject key identifier: 5D:57:A2:B7:78:82:72:22:CC:A8:A7:08:AA:52:CD:FB:06:90:35:21
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 01830C7A91BE8A3E818487535A28A59E8CD0
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/XVeit3iCciLMqKcIqlLN-waQNSE.roa
Signing time: Mon 05 Sep 2022 07:08:22 +0000
ROA not before: Mon 05 Sep 2022 07:08:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7979
IP address blocks: 45.130.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0c:7a:91:be:8a:3e:81:84:87:53:5a:28:a5:9e:8c:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Sep 5 07:08:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d57a2b778827222cca8a708aa52cdfb06903521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d7:c9:73:9b:c9:50:e5:22:7b:73:bf:a3:e0:
6d:03:3b:0b:f0:0e:a6:f7:b3:63:06:f2:27:31:a7:
70:8f:03:dc:40:f0:c4:81:18:f4:24:b7:15:7a:a8:
68:a7:07:69:a2:d7:b5:e0:7a:c5:a7:49:27:f5:c7:
ef:bd:76:17:af:52:90:9c:e9:56:f4:78:6d:fd:58:
07:3a:e1:5d:5f:99:ce:1d:25:8e:88:3a:4a:8c:a3:
62:87:6c:ff:ec:d9:48:5a:bf:d0:5b:da:f2:42:32:
77:ac:4e:d1:d0:51:b0:ec:4c:7e:e9:48:c5:ad:c6:
76:59:9e:53:4a:a9:89:72:ea:57:45:3d:a0:10:de:
2f:41:a3:66:58:94:de:96:ee:4c:cc:50:9f:0e:fa:
d4:47:6c:d0:4e:f8:40:1d:2c:76:fe:11:d6:3c:9a:
af:bb:00:e6:59:2d:30:30:dd:8d:86:df:f3:06:f0:
34:a3:42:05:7d:23:34:d6:5a:8d:80:ea:74:d7:13:
f0:5f:52:fa:3d:3a:9d:b6:ed:e8:90:87:4e:fa:83:
7c:a1:5b:b1:b7:da:41:cc:ff:3f:8c:bc:c2:2e:cd:
fb:cb:53:0c:d1:69:4d:4f:cc:aa:23:b9:b2:40:c5:
0b:46:49:a5:7d:3f:1d:6b:03:3d:66:48:0f:59:ed:
58:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:57:A2:B7:78:82:72:22:CC:A8:A7:08:AA:52:CD:FB:06:90:35:21
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/XVeit3iCciLMqKcIqlLN-waQNSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.253.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:dc:b8:16:1e:e7:d9:23:53:21:9b:35:1e:a7:42:a3:ae:55:
d3:c9:d3:4b:ed:72:7c:cc:33:75:57:c3:2e:83:9e:19:70:4f:
7d:1f:50:e4:81:8e:a0:b1:68:ff:8c:d2:e4:e0:54:f5:e9:1d:
14:26:42:c1:23:8c:50:c3:9e:1e:05:69:6b:0b:d8:78:89:26:
cc:24:ec:03:02:d3:77:3a:be:63:78:9d:40:0c:76:a8:aa:5c:
fa:5c:f4:d2:58:77:db:fa:d3:eb:01:54:ff:e8:ed:45:b4:d0:
09:64:4e:3f:77:d0:9b:98:92:57:e3:aa:7e:b1:73:d1:60:d3:
58:0a:1d:83:31:5f:1c:4e:e6:c5:67:30:d2:55:11:92:54:51:
fa:09:03:2e:73:b3:ae:4c:40:9a:55:57:2b:53:18:28:8f:20:
ed:ff:13:35:73:bf:70:91:b2:95:74:6c:b1:04:f4:70:d2:ed:
96:b7:61:47:7e:f0:20:8f:26:46:74:93:cd:ff:22:a3:72:d7:
ba:1b:2f:c7:31:cd:74:36:08:6f:66:2e:84:99:55:a8:bd:75:
a0:1e:f3:ab:35:b2:1f:fd:c3:4c:10:7e:6a:65:0f:4c:10:f1:
60:a5:c0:9f:7f:fc:06:38:83:32:e3:70:26:49:0a:f3:4c:3e:
0c:83:87:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:03:47 2025 by rpki-client