Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/apLFxD-0UTQ5NdFXys7SqnQOR-k.roa
File: apLFxD-0UTQ5NdFXys7SqnQOR-k.roa (raw, json)
Hash identifier: V3rcoQii0SJmCTGqwseZJgK4gloB7TOhSn0s65WEc6o=
Subject key identifier: 6A:92:C5:C4:3F:B4:51:34:39:35:D1:57:CA:CE:D2:AA:74:0E:47:E9
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 032C48C7
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/apLFxD-0UTQ5NdFXys7SqnQOR-k.roa
Signing time: Mon 16 May 2022 11:13:29 +0000
ROA not before: Mon 16 May 2022 11:13:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7979
IP address blocks: 45.130.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53233863 (0x32c48c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: May 16 11:13:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a92c5c43fb451343935d157caced2aa740e47e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:46:4d:61:b2:ab:cd:08:31:29:bb:4a:38:4c:
8e:18:11:8a:e4:98:d6:5d:0e:2f:1d:ca:6b:6b:6e:
5b:53:47:67:f1:61:a9:41:20:f0:cb:99:a2:9c:4c:
b8:fd:e1:de:99:37:d0:46:10:68:fe:56:e5:61:f9:
19:03:d1:db:e0:2a:6b:8c:d1:05:14:60:4e:38:3e:
e3:d8:60:76:0d:b2:21:4f:aa:ac:2f:7b:d0:af:05:
c6:93:10:4a:67:19:fb:26:fe:d3:01:a3:3c:6a:ed:
de:fd:b5:ff:96:d4:56:b7:07:54:04:92:98:b1:7f:
e0:3b:15:78:6b:46:fe:55:12:e1:62:d0:fc:05:46:
6e:47:b3:2f:85:cf:3a:eb:c8:ab:b4:14:b7:df:b5:
2d:aa:fb:2f:7d:b3:64:e9:64:e3:9d:2b:9b:99:d1:
87:f7:fd:de:e8:16:c4:0f:42:ba:a5:21:41:05:26:
45:b3:bb:40:62:12:be:d7:61:7a:5c:a3:73:be:de:
df:c1:63:0e:53:53:bb:50:16:43:5a:aa:89:f9:d7:
57:df:16:e4:7b:c9:43:21:91:66:44:38:f9:67:0c:
21:94:82:9e:59:f7:89:46:92:ba:9d:07:ed:39:cb:
18:4a:83:5c:8a:89:cf:fb:62:4a:4e:a4:a6:c4:a7:
cd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:92:C5:C4:3F:B4:51:34:39:35:D1:57:CA:CE:D2:AA:74:0E:47:E9
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/apLFxD-0UTQ5NdFXys7SqnQOR-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.253.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:f6:c5:a9:d2:a7:91:0e:d9:17:21:c3:2b:dd:59:3c:99:0d:
59:58:43:b4:97:79:be:6e:90:e5:2a:36:0f:56:13:a8:92:18:
26:85:4b:e6:97:63:d8:6d:9d:64:eb:f8:9b:86:6f:4e:fd:c9:
95:53:ef:87:25:53:94:67:04:63:63:b9:6c:b9:e5:05:6e:de:
93:b5:e6:e0:b1:6f:52:52:ee:a3:3b:de:4f:8a:26:74:cc:2b:
28:ef:16:13:bc:94:c6:81:5b:d1:26:51:7f:36:5d:e3:e2:10:
83:1f:22:6a:ad:92:54:17:d7:3b:02:65:1f:1a:a9:ca:c8:d6:
33:00:24:08:7b:98:45:20:4a:d8:de:3a:30:29:c9:a4:6b:7e:
32:1f:0b:a9:23:f6:31:09:4b:eb:00:04:aa:7e:03:f3:b0:85:
bf:95:0d:eb:46:dd:9a:7a:fc:16:6c:1d:c1:d7:2e:c4:46:2a:
7e:b2:59:78:d2:9f:78:98:99:f8:87:78:46:ba:1d:3f:1d:ef:
0d:53:5a:72:84:9c:3c:40:90:2e:94:c3:50:ed:b5:08:84:49:
97:b2:2b:8c:66:3c:32:c9:10:8c:dd:dd:6a:b0:92:e5:ba:d5:
44:80:20:bd:6d:95:73:dc:1d:d0:52:28:66:3b:e6:67:7d:df:
9d:32:2d:85
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAyxIxzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDU1OWFhZmJmYzA5MzEyNDJlMWQ2MzcyOThjZjFkZDIyM2U0YzI2MB4XDTIyMDUx
NjExMTMyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmE5MmM1YzQzZmI0
NTEzNDM5MzVkMTU3Y2FjZWQyYWE3NDBlNDdlOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANhGTWGyq80IMSm7SjhMjhgRiuSY1l0OLx3Ka2tuW1NHZ/Fh
qUEg8MuZopxMuP3h3pk30EYQaP5W5WH5GQPR2+Aqa4zRBRRgTjg+49hgdg2yIU+q
rC970K8FxpMQSmcZ+yb+0wGjPGrt3v21/5bUVrcHVASSmLF/4DsVeGtG/lUS4WLQ
/AVGbkezL4XPOuvIq7QUt9+1Lar7L32zZOlk450rm5nRh/f93ugWxA9CuqUhQQUm
RbO7QGISvtdhelyjc77e38FjDlNTu1AWQ1qqifnXV98W5HvJQyGRZkQ4+WcMIZSC
nln3iUaSup0H7TnLGEqDXIqJz/tiSk6kpsSnzfECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRqksXEP7RRNDk10VfKztKqdA5H6TAfBgNVHSMEGDAWgBR9VZqvv8CTEkLh
1jcpjPHdIj5MJjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZWV2FyN19Ba3hKQzRkWTNLWXp4M1NJLVRDWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzAvNDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8x
L2FwTEZ4RC0wVVRRNU5kRlh5czdTcW5RT1Itay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
NDlhZGM2LWJhODktNDAzZi1hZGE5LThjNTAwN2MyYTRiNi8xL2ZWV2FyN19Ba3hK
QzRkWTNLWXp4M1NJLVRDWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2C/TANBgkqhkiG9w0BAQsFAAOC
AQEALPbFqdKnkQ7ZFyHDK91ZPJkNWVhDtJd5vm6Q5So2D1YTqJIYJoVL5pdj2G2d
ZOv4m4ZvTv3JlVPvhyVTlGcEY2O5bLnlBW7ek7Xm4LFvUlLuozveT4omdMwrKO8W
E7yUxoFb0SZRfzZd4+IQgx8iaq2SVBfXOwJlHxqpysjWMwAkCHuYRSBK2N46MCnJ
pGt+Mh8LqSP2MQlL6wAEqn4D87CFv5UN60bdmnr8FmwdwdcuxEYqfrJZeNKfeJiZ
+Id4RrodPx3vDVNacoScPECQLpTDUO21CIRJl7IrjGY8MskQjN3darCS5brVRIAg
vW2Vc9wd0FIoZjvmZ33fnTIthQ==
-----END CERTIFICATE-----
Generated at Mon Apr 21 19:11:58 2025 by rpki-client