Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/hxcDp1wyHYonVqPTB_bpsF9ppNo.roa
File: hxcDp1wyHYonVqPTB_bpsF9ppNo.roa (raw, json)
Hash identifier: CYXFpJnQui3tB9YI/XvlNuirlAz3mh4JFaX3RtnvUJw=
Subject key identifier: 87:17:03:A7:5C:32:1D:8A:27:56:A3:D3:07:F6:E9:B0:5F:69:A4:DA
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0182A5F6FDEE04321BF3287245D53E448BF6
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/hxcDp1wyHYonVqPTB_bpsF9ppNo.roa
Signing time: Tue 16 Aug 2022 09:23:23 +0000
ROA not before: Tue 16 Aug 2022 09:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7979
IP address blocks: 45.152.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a5:f6:fd:ee:04:32:1b:f3:28:72:45:d5:3e:44:8b:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 16 09:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=871703a75c321d8a2756a3d307f6e9b05f69a4da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6b:11:17:02:59:e2:25:35:62:11:d1:32:73:
51:98:bc:34:6b:d4:a1:4c:cf:c8:20:48:ad:23:56:
36:13:0c:08:f0:59:89:67:84:73:d6:d1:39:f5:3e:
82:69:53:fa:bb:34:6e:76:c8:47:7c:83:9b:9c:1a:
73:8d:bf:78:6f:3b:5b:f9:d5:11:96:ef:c6:44:84:
69:c7:d9:ca:fb:83:3f:9e:59:bd:7a:11:6c:15:2a:
68:28:b9:b7:87:d5:9f:bf:78:cb:be:90:54:c9:50:
3a:79:3d:6c:93:41:e9:73:75:88:dc:e8:c5:fb:40:
57:a2:2d:a4:ba:2c:ee:4a:3d:34:d4:22:6d:43:ec:
10:c0:d1:bc:6f:19:67:81:20:6c:9e:91:39:95:5f:
68:f3:bc:b4:a6:da:c0:95:9a:27:6c:c4:b8:96:aa:
6f:0d:d5:88:55:a2:5a:09:53:73:c4:a7:c3:1a:00:
38:0d:7f:95:a1:18:c5:1f:71:9b:91:4e:18:b6:3f:
d7:c3:b3:48:7d:f4:3b:43:77:60:a9:96:ef:e3:69:
e2:5f:50:a2:43:58:ff:4c:f6:b2:18:35:92:fe:3a:
cb:5c:e3:49:34:e4:63:be:3d:ed:e1:1a:9e:8d:5f:
8e:be:8f:78:c5:b6:03:3a:26:49:ad:e1:c8:b0:45:
a4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:17:03:A7:5C:32:1D:8A:27:56:A3:D3:07:F6:E9:B0:5F:69:A4:DA
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/hxcDp1wyHYonVqPTB_bpsF9ppNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.197.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:ca:49:b1:67:60:5b:4d:55:31:e5:30:62:2e:08:06:9b:66:
4c:5c:7c:a6:d5:b0:8e:d3:8c:fa:30:bb:bb:5e:12:fe:f7:e5:
fe:5b:8f:8a:2a:5a:a2:13:f1:9b:82:ea:54:20:5a:1e:69:c1:
84:cd:f1:bf:ab:6d:69:93:f6:31:0a:96:d7:2c:6c:46:90:3c:
ba:f6:76:51:d6:c1:de:fd:0b:25:73:b1:cf:58:65:28:f4:07:
87:29:75:df:00:10:20:e6:1f:8f:81:1b:f8:04:61:09:d3:14:
1a:1a:7c:3b:a5:c8:bf:fa:57:4f:ad:9c:26:f7:a7:1d:64:4f:
34:aa:06:dd:b2:3d:38:fa:bd:2f:c9:d8:d8:0d:4c:50:df:8c:
9d:b0:d7:85:f7:35:51:56:9c:1d:1e:be:8c:74:ee:d6:59:bd:
fb:39:e7:0f:06:5c:9b:e0:62:74:dd:92:ba:20:cf:9b:f8:fe:
77:72:4a:3d:99:77:25:7b:6c:1f:bd:fb:ec:68:91:a6:26:4d:
ba:fd:26:83:7d:3b:8e:7e:63:a3:16:0e:45:89:74:95:82:9e:
d7:fa:95:5d:e2:3d:9f:bd:2f:9a:6f:8f:ce:3b:57:c4:34:f9:
71:ad:2a:5b:20:64:7f:24:a1:81:fd:7f:d1:33:c6:c1:4c:2f:
b0:1b:22:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:57:49 2025 by rpki-client