Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/eh7psqsCs4Ma_XLYLkJhVUBBBxw.roa
File: eh7psqsCs4Ma_XLYLkJhVUBBBxw.roa (raw, json)
Hash identifier: LHN/YjFceeSPSVkFlCV1oi+kkV5LMl1oTG3/yREh75s=
Subject key identifier: 7A:1E:E9:B2:AB:02:B3:83:1A:FD:72:D8:2E:42:61:55:40:41:07:1C
Certificate issuer: /CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Certificate serial: 1B132C29
Authority key identifier: D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/eh7psqsCs4Ma_XLYLkJhVUBBBxw.roa
Signing time: Sat 01 Jan 2022 13:57:13 +0000
ROA not before: Sat 01 Jan 2022 13:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58267
IP address blocks: 5.145.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 454241321 (0x1b132c29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Validity
Not Before: Jan 1 13:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a1ee9b2ab02b3831afd72d82e4261554041071c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fa:43:b7:5a:44:58:57:b8:50:4f:55:7c:47:
41:44:58:25:76:7d:97:53:22:92:9c:30:8e:c6:37:
b6:88:f1:d4:cc:7a:4b:10:76:47:7f:69:cb:79:dd:
e3:3f:f3:15:73:0c:97:62:dd:c9:25:39:d7:99:9a:
c0:b2:ad:80:7d:4f:b1:10:ed:14:6c:23:c7:6d:da:
88:4b:50:84:21:d9:02:74:41:74:14:69:3f:35:6e:
b8:3f:ba:98:2b:1a:55:e9:75:d2:30:78:a0:99:10:
50:64:11:14:51:61:5d:ed:9f:7c:c6:c3:1c:7b:d7:
3b:ad:85:6a:6a:95:b0:e5:24:9a:20:de:e8:e8:e5:
d3:32:38:c6:7f:f5:ec:2f:f5:51:a8:1d:07:de:16:
03:e3:da:79:08:4a:80:58:24:bd:d1:2f:33:f3:30:
57:30:2b:03:b2:ca:bd:00:6d:17:2a:da:e4:b8:63:
81:07:b7:c8:39:41:eb:7a:84:1b:f4:53:4b:10:8d:
73:ac:85:12:0b:f3:c7:83:80:18:aa:29:ed:a7:6e:
72:10:8c:fa:4f:94:27:3a:0b:04:72:ae:b8:8b:80:
ff:57:a4:cc:b4:b2:83:f9:16:56:2c:61:e9:2c:33:
93:82:6e:5c:c4:da:8f:f0:ed:2b:a8:2c:b1:a0:e8:
28:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:1E:E9:B2:AB:02:B3:83:1A:FD:72:D8:2E:42:61:55:40:41:07:1C
X509v3 Authority Key Identifier:
keyid:D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/eh7psqsCs4Ma_XLYLkJhVUBBBxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.116.0/24
Signature Algorithm: sha256WithRSAEncryption
27:68:9a:ab:43:c4:03:67:96:68:5a:3a:cf:e5:77:bc:fb:a0:
6b:fa:5a:dc:f0:dd:b9:86:96:dd:ca:e1:69:6b:f0:d9:c6:4d:
cb:41:29:3e:05:33:b1:93:d8:f8:d9:3c:e2:2e:f5:45:f0:0c:
19:99:c4:63:3b:f4:ec:32:a1:06:d5:70:dc:1d:5f:dd:04:b8:
1d:ac:ba:a3:fa:67:60:63:28:ad:ef:67:71:cc:0b:5b:83:22:
20:78:22:d6:bb:e9:b7:a7:2a:8d:87:2b:20:7c:75:fc:38:a7:
eb:68:0b:88:a6:e4:69:f7:7f:52:9f:3b:12:71:f2:06:94:dd:
7f:f3:44:f8:ea:5c:3d:0c:ea:81:18:3b:87:f7:ea:dc:26:be:
a4:01:5d:53:63:7a:4c:91:c4:37:8b:09:e6:c0:0e:b6:17:57:
de:fe:a8:a3:e3:9b:f5:7d:ae:06:d9:dd:bc:b9:94:ea:77:b7:
e4:bb:4b:87:80:9f:29:69:02:44:bd:cc:b4:4f:4b:8f:3a:00:
b9:29:57:fa:d8:ad:d7:90:21:fd:99:d2:ce:2d:91:de:db:08:
25:79:87:b1:5f:9f:c5:a1:f8:96:77:d4:5c:6f:98:81:b2:14:
db:59:24:c8:82:3c:77:78:e4:7a:59:37:58:1f:31:c7:07:ed:
68:c1:b7:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:28 2025 by rpki-client