Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/i2XfJ1hkhwNmXr_W39wh0gwf7uw.roa
File: i2XfJ1hkhwNmXr_W39wh0gwf7uw.roa (raw, json)
Hash identifier: zk4IhLXjTjuTNGG4SLJjp/ZZaDyhgZqTzSMFWYPWe4I=
Subject key identifier: 8B:65:DF:27:58:64:87:03:66:5E:BF:D6:DF:DC:21:D2:0C:1F:EE:EC
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0153916A
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/i2XfJ1hkhwNmXr_W39wh0gwf7uw.roa
Signing time: Sat 01 Jan 2022 05:55:06 +0000
ROA not before: Sat 01 Jan 2022 05:55:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 45.158.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22253930 (0x153916a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jan 1 05:55:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b65df2758648703665ebfd6dfdc21d20c1feeec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:64:e7:5d:cf:28:0d:63:29:ec:f2:7f:29:c2:
95:63:89:af:18:9d:7c:69:3a:dc:28:a8:7b:7d:01:
ba:94:57:36:10:58:e3:62:7c:08:7a:e5:87:70:76:
5b:d0:2a:2b:4e:c7:27:bd:8d:8d:b7:f4:f7:c0:5e:
34:ca:a4:f5:1d:71:6a:19:2b:c8:f4:c3:7e:0a:cf:
45:6c:a7:1d:26:d0:02:ff:12:84:6a:d4:2c:b1:43:
5a:e3:b9:cb:28:7a:96:65:29:45:d4:12:de:c7:05:
8a:a6:a6:a9:77:cd:21:af:84:eb:b8:e8:29:ed:c0:
f8:bd:a4:4b:73:7b:d3:fa:f9:ef:57:89:b3:a2:bf:
3c:00:13:07:e9:00:d8:fb:30:ec:96:ba:6e:02:34:
69:03:03:df:04:a6:49:fe:4e:0b:3e:8b:9f:5b:7c:
1b:d9:1d:4f:9f:ed:09:16:84:c9:d6:64:e0:c3:4d:
65:43:51:89:00:0e:dd:e4:97:41:89:52:b3:40:29:
be:3b:ab:ee:63:8d:ba:64:b9:18:91:de:c0:ae:76:
93:50:4e:dc:b2:70:f3:40:c1:46:99:1f:ee:43:e5:
90:00:12:b0:cb:8b:04:c1:b8:7c:37:4f:ab:2c:51:
de:0b:2c:30:89:05:71:34:37:70:6b:0e:74:64:6a:
07:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:65:DF:27:58:64:87:03:66:5E:BF:D6:DF:DC:21:D2:0C:1F:EE:EC
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/i2XfJ1hkhwNmXr_W39wh0gwf7uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.197.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:6d:ad:2e:97:05:39:ac:54:e2:62:f7:cb:66:07:16:84:53:
c7:e9:14:52:25:d6:e3:44:e0:b1:90:b8:0c:04:04:f5:e7:4e:
5f:65:dc:66:a6:89:81:c1:11:a0:00:d8:fe:a1:6d:31:4b:65:
b5:53:c5:f7:1a:63:d5:7e:38:73:91:4e:28:e6:60:5d:58:09:
26:c5:bb:55:f4:18:a5:ee:bc:ce:94:fc:af:00:8a:90:13:47:
09:a6:32:94:ec:12:8a:eb:a8:33:12:a1:80:22:1f:2e:8d:83:
c2:89:7c:b5:ce:85:60:be:60:53:24:d0:2b:31:83:23:1b:09:
84:fe:70:8a:c7:00:66:61:e7:3a:24:b0:06:ee:3e:26:27:04:
b4:c7:51:35:96:1d:72:05:e9:53:e1:e4:61:5a:7d:e3:1a:bc:
61:2e:d4:a0:01:d0:81:b0:5e:c5:4d:c7:1b:9f:1c:8f:36:0b:
95:61:df:b2:24:f9:d1:f2:a2:27:d5:2a:74:98:98:64:ee:40:
7a:56:2e:b8:11:8c:ce:f1:31:3c:f5:5b:6c:11:a7:a0:a1:98:
53:3e:95:27:c2:60:14:c6:9d:70:5f:82:cd:a4:d4:af:67:3a:
d7:5a:b8:fb:94:d6:96:1c:fa:3c:21:b3:79:9b:07:38:7f:cc:
c9:fc:4c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:57:39 2025 by rpki-client