Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lF7mqVsaAES3fuS9r3BGKpcmG_Q.roa
File: lF7mqVsaAES3fuS9r3BGKpcmG_Q.roa (raw, json)
Hash identifier: jP76QG7yMKCIRJSo84CjYpegGvqoDXbwNuyfsQ9Msa0=
Subject key identifier: 94:5E:E6:A9:5B:1A:00:44:B7:7E:E4:BD:AF:70:46:2A:97:26:1B:F4
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 03B992CC
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lF7mqVsaAES3fuS9r3BGKpcmG_Q.roa
Signing time: Thu 30 Jun 2022 06:28:02 +0000
ROA not before: Thu 30 Jun 2022 06:28:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 45.157.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62493388 (0x3b992cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 30 06:28:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=945ee6a95b1a0044b77ee4bdaf70462a97261bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:fb:e3:06:40:2c:d1:c2:20:6d:cb:23:fa:eb:
f8:ad:99:9d:1b:30:34:8a:c9:49:a7:db:99:d9:7a:
cc:57:41:6a:e5:cf:81:46:9a:26:9b:96:17:ba:9b:
47:4a:03:dc:8b:4c:79:96:89:7f:7c:7a:0d:19:3a:
86:92:96:15:a4:0e:2a:89:59:59:da:b4:ad:a4:91:
b2:c1:97:63:cc:3c:82:a0:b8:66:a0:e0:42:1c:78:
53:ba:fc:d8:83:d8:35:df:54:1c:2b:22:6d:05:11:
29:8b:55:37:ee:fb:e5:cf:e7:d6:a2:43:9b:13:05:
53:9e:5c:cd:16:c8:58:05:e2:3e:0f:44:21:9d:0b:
68:f6:98:61:15:9a:9c:58:18:17:e4:d0:d9:78:28:
4c:ea:67:6a:54:ea:e7:a4:13:e3:d4:bb:93:4b:1d:
9b:eb:91:3d:fb:08:cf:f6:cf:82:08:37:12:f4:48:
e5:8c:8a:cc:02:13:db:dd:68:1a:b9:cd:6b:6f:07:
93:97:f8:41:7e:98:5a:c2:7b:01:74:e9:fb:0c:d7:
d0:b2:32:69:ba:91:06:d0:9c:63:e3:66:fa:67:19:
be:14:a2:bb:2f:b0:09:fe:01:63:52:9a:f2:79:c6:
28:51:54:3c:d6:8e:6c:37:71:be:ed:49:53:3c:16:
73:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:5E:E6:A9:5B:1A:00:44:B7:7E:E4:BD:AF:70:46:2A:97:26:1B:F4
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/lF7mqVsaAES3fuS9r3BGKpcmG_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.37.0/24
Signature Algorithm: sha256WithRSAEncryption
76:c9:e7:4a:5c:16:90:9d:6a:7c:d1:af:2d:cb:aa:da:7f:4e:
de:e4:e5:fd:00:36:56:9a:c8:3c:5f:ce:29:dc:e9:e6:85:ca:
11:3e:42:07:b6:b3:15:8a:84:c5:78:b8:d8:60:15:10:b6:46:
f0:41:bb:e6:39:68:df:7b:55:80:a2:07:cf:63:3a:90:37:ec:
a5:5f:a0:df:58:38:9c:36:27:90:12:a7:f9:9b:7d:32:fb:83:
e3:86:26:af:c4:2e:62:3e:c0:12:a6:b2:21:98:55:b1:eb:ce:
15:e5:95:76:72:fd:14:c7:28:a1:0f:da:bd:44:a6:82:58:87:
7e:89:3a:61:5c:d5:7f:a3:7a:9b:5f:8d:1f:80:e0:2a:44:1d:
24:7e:a5:21:8f:d3:b1:0b:ee:d5:14:36:04:11:cb:5b:80:55:
69:bc:8e:03:26:90:01:70:56:2c:e2:cf:4c:75:d5:78:23:18:
d3:55:f7:76:bd:d3:7c:51:4a:2b:2e:96:9b:c0:1d:52:b4:cd:
5b:37:f1:bf:33:4d:ac:db:d6:1f:08:d9:b0:0e:ac:f3:a7:eb:
1b:39:3e:d7:bd:92:58:ca:75:52:92:0a:12:79:83:23:9b:eb:
73:ea:0c:c8:40:64:4a:d8:4a:d8:3c:8f:05:e9:ed:dc:e1:b5:
68:76:f3:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:58:14 2025 by rpki-client