Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/q8ZSHa99rSsom3BfU3TCgghO-Jg.roa
File: q8ZSHa99rSsom3BfU3TCgghO-Jg.roa (raw, json)
Hash identifier: tSJ/feujJ/7qZ3k+Mw4Ot5a8Ilii9gyVpLF6u5jXlPM=
Subject key identifier: AB:C6:52:1D:AF:7D:AD:2B:28:9B:70:5F:53:74:C2:82:08:4E:F8:98
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0189C52F9922A14C5F4C13686526716F12CD
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/q8ZSHa99rSsom3BfU3TCgghO-Jg.roa
Signing time: Sat 05 Aug 2023 10:12:58 +0000
ROA not before: Sat 05 Aug 2023 10:12:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 45.141.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c5:2f:99:22:a1:4c:5f:4c:13:68:65:26:71:6f:12:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Aug 5 10:12:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abc6521daf7dad2b289b705f5374c282084ef898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b6:48:40:72:a0:03:82:0e:0f:20:5b:b1:f1:
81:57:7f:5b:ff:0d:04:98:c9:f8:bc:be:d4:53:15:
30:e3:b2:58:4a:c1:55:f1:14:cd:6a:3c:66:5f:ff:
62:ec:53:83:5e:98:68:af:f7:68:4a:8e:65:92:22:
0f:d7:43:37:9f:f1:42:aa:ce:a1:db:49:60:0d:0c:
e6:31:a1:0a:d3:5b:0c:e6:a3:ea:7a:79:2f:8f:5b:
db:d5:21:35:5b:3c:f4:7d:3d:7e:d2:e0:5d:c2:a7:
ae:02:19:42:b7:b8:e3:09:26:e9:69:6c:a5:1a:aa:
72:12:a0:d7:0b:5e:d5:3a:4a:a7:03:25:37:b5:af:
61:84:ca:a7:12:6b:9c:16:d8:a5:bd:74:e3:5e:8a:
ff:f4:57:a5:0d:c1:b6:e3:53:6f:d8:69:e1:ff:02:
c7:f2:6b:a7:cd:0d:2a:22:08:56:ab:85:9d:e8:9b:
e1:14:3d:e1:64:6d:d0:f8:2b:41:93:96:c5:a9:3f:
e5:11:f5:59:ef:13:77:5f:df:f5:ef:9e:7f:cb:64:
a9:f8:e0:25:43:9f:4a:96:8c:23:4a:16:63:99:f2:
b0:9e:c7:c4:78:a1:2f:ed:96:45:01:7f:13:90:8f:
dd:39:0b:82:52:f4:ba:fd:58:76:37:4c:64:db:85:
b2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C6:52:1D:AF:7D:AD:2B:28:9B:70:5F:53:74:C2:82:08:4E:F8:98
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/q8ZSHa99rSsom3BfU3TCgghO-Jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.177.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:ed:ea:03:68:14:34:b3:75:79:7f:30:a7:ec:93:0d:45:c6:
77:f4:39:d4:9d:dc:85:6c:52:b1:6e:81:6b:8c:66:29:4c:4a:
d3:34:a9:50:c3:b9:0a:46:5f:9f:65:73:51:12:ee:73:26:0b:
c6:4a:a6:f9:e1:aa:d3:95:85:c5:0c:17:00:3e:e0:e6:d7:21:
e6:b3:da:3e:c9:5f:cc:ec:cd:7a:bf:c6:9b:11:19:c1:7c:f2:
9b:df:f9:21:70:25:ea:5f:4d:ec:60:86:8d:ae:97:8e:93:f5:
02:d8:b5:23:c0:2c:fa:5f:55:57:e8:21:61:99:54:50:39:ee:
a6:8f:b8:61:13:87:10:ec:b1:cb:d6:11:e8:56:88:8e:57:f6:
6f:34:7c:81:0b:68:86:68:a0:e7:2c:97:6e:c6:6c:d3:99:e8:
b5:b0:0d:80:83:71:d2:54:f9:a3:18:27:49:56:93:7a:65:6b:
87:e6:a0:4d:0f:96:7b:15:9d:d2:89:ec:28:24:c8:81:31:73:
6b:ec:f6:8d:e4:af:4e:92:1d:2c:a2:b4:b9:16:ff:e2:35:43:
b7:6c:92:54:69:47:64:9f:9e:3d:1e:cb:4e:04:85:54:e0:47:
ae:61:7d:15:4c:fc:f9:78:0d:f6:29:5a:68:2c:4a:5f:d1:56:
e9:79:e0:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:05:10 2025 by rpki-client