Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/gjStVqM2n9PVCZWouQBDxScRHfA.roa
File: gjStVqM2n9PVCZWouQBDxScRHfA.roa (raw, json)
Hash identifier: RdhBlUnd3U2jfgEVa0YOULvZWJUNoJ0NbDGCrJ21Z0E=
Subject key identifier: 82:34:AD:56:A3:36:9F:D3:D5:09:95:A8:B9:00:43:C5:27:11:1D:F0
Certificate issuer: /CN=2719412918a6627f99cce55c7aca139057b8574e
Certificate serial: 0186F3440AB24728A2F951E0693EB08B510B
Authority key identifier: 27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/gjStVqM2n9PVCZWouQBDxScRHfA.roa
Signing time: Sat 18 Mar 2023 05:49:28 +0000
ROA not before: Sat 18 Mar 2023 05:49:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211415
IP address blocks: 45.149.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f3:44:0a:b2:47:28:a2:f9:51:e0:69:3e:b0:8b:51:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2719412918a6627f99cce55c7aca139057b8574e
Validity
Not Before: Mar 18 05:49:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8234ad56a3369fd3d50995a8b90043c527111df0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9f:ca:6c:63:57:14:4b:13:7c:f8:04:69:cf:
8e:4e:23:91:59:79:9e:e4:55:3e:e1:c2:56:a0:d8:
8d:6b:88:be:0a:87:00:7d:5c:35:1b:88:2d:cd:6f:
a4:76:2c:5c:59:34:a8:43:88:72:73:8b:68:b1:a8:
04:ca:ff:8b:df:56:aa:4d:2e:b3:ea:10:56:11:48:
b9:50:e4:ae:f9:91:8e:0a:25:89:a4:9b:4f:ef:8d:
9a:f2:b1:ca:4f:64:67:0b:03:89:79:45:c5:e9:35:
57:23:07:fc:80:61:ca:5b:34:aa:92:88:87:b6:25:
d5:4f:43:ec:fd:fa:64:f3:b8:50:66:29:71:d8:ce:
c4:89:a7:e0:77:59:a2:7d:c1:02:e1:a5:17:e0:e3:
49:dc:53:75:7f:77:a4:16:58:5b:ec:cd:65:ad:62:
3f:7e:09:17:11:1e:d8:fa:76:02:b3:55:75:ca:ff:
e9:de:c9:45:64:21:1a:c5:f6:db:91:3d:6e:f2:2f:
4b:fc:83:8e:6f:fb:46:a8:62:13:f7:3a:71:47:3d:
be:eb:51:88:cb:19:70:a2:0b:54:c6:5d:a1:ca:96:
cc:ca:8b:44:0c:8f:e4:5a:34:23:11:a6:1b:0f:d2:
e4:10:78:06:0c:01:07:3b:27:9b:32:1a:70:bf:40:
e9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:34:AD:56:A3:36:9F:D3:D5:09:95:A8:B9:00:43:C5:27:11:1D:F0
X509v3 Authority Key Identifier:
keyid:27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/gjStVqM2n9PVCZWouQBDxScRHfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/JxlBKRimYn-ZzOVcesoTkFe4V04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.60.0/24
Signature Algorithm: sha256WithRSAEncryption
85:6a:a2:8e:37:26:2d:0d:11:aa:fe:a9:d8:1b:f5:53:fb:9c:
19:3f:b4:fe:b8:55:4e:28:76:52:f3:14:0b:27:f6:df:7a:92:
cb:50:b9:8e:72:cf:f6:e1:de:45:15:20:ae:1c:38:08:b5:4a:
44:38:26:c9:d8:51:bd:c4:9a:89:74:f1:e6:2d:5d:c1:30:e7:
f4:ea:56:99:22:b1:f5:cf:50:e1:7f:7a:c2:cf:97:0b:19:c6:
cb:99:9e:e2:ad:58:f3:c7:c0:38:52:2d:08:5e:97:fa:4b:e7:
d6:64:2a:68:d7:53:de:58:70:54:2a:71:4f:20:34:b5:5f:af:
94:79:51:09:59:1f:57:73:79:bd:1a:af:03:72:de:e6:d2:28:
ab:45:e5:92:64:21:07:0a:7d:b3:e3:0f:ab:1d:93:e2:28:33:
88:26:16:50:2d:d2:e7:ea:c9:4b:15:62:b7:8f:50:ba:83:04:
99:2c:c2:4c:ea:42:67:d8:f1:ec:17:14:7b:84:48:e1:fe:13:
25:60:87:47:4c:83:45:15:7d:dc:c6:60:ed:33:ef:50:f9:44:
7f:1d:85:bb:3c:38:aa:08:b2:79:ab:0a:11:de:00:19:71:41:
2c:6d:7f:6d:34:c6:31:01:c5:c3:d7:e6:e8:01:c5:24:f3:2d:
eb:f8:5e:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:08 2025 by rpki-client