Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/4bcb1b-ff41-48e0-8db8-6212ac49ca3b/1/yAVBXz-6-EUH03MDkkWf6SJUWRk.roa
File: yAVBXz-6-EUH03MDkkWf6SJUWRk.roa (raw, json)
Hash identifier: 5h7eU0HV9ZMYjp9B8OYPXDgEwL2QpK1aXDm1vnlYtDU=
Subject key identifier: C8:05:41:5F:3F:BA:F8:45:07:D3:73:03:92:45:9F:E9:22:54:59:19
Certificate issuer: /CN=ddb71471373bb0603c356eeded4b918292b5beee
Certificate serial: F554
Authority key identifier: DD:B7:14:71:37:3B:B0:60:3C:35:6E:ED:ED:4B:91:82:92:B5:BE:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3bcUcTc7sGA8NW7t7UuRgpK1vu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/4bcb1b-ff41-48e0-8db8-6212ac49ca3b/1/yAVBXz-6-EUH03MDkkWf6SJUWRk.roa
Signing time: Wed 25 May 2022 15:47:14 +0000
ROA not before: Wed 25 May 2022 15:47:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1136
IP address blocks: 145.8.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62804 (0xf554)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddb71471373bb0603c356eeded4b918292b5beee
Validity
Not Before: May 25 15:47:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c805415f3fbaf84507d3730392459fe922545919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c2:10:9a:82:8f:31:c3:44:a5:71:39:64:c4:
28:bd:b8:15:bd:cc:75:25:98:c8:9d:87:be:d4:84:
61:b5:b0:cd:94:32:79:6f:ec:5d:1f:70:0d:e9:a4:
ea:07:4e:83:7f:3b:40:64:00:e9:06:d1:51:89:5d:
bb:14:12:d4:cc:9f:98:3f:f2:d7:9e:93:af:54:ce:
37:7b:87:63:6a:3f:fc:34:0e:85:1e:37:f1:94:4b:
4b:dd:0d:58:3f:de:8d:46:5a:a1:c6:94:b6:70:ad:
26:81:f5:4f:b2:65:57:18:14:80:99:c8:79:61:0f:
a2:a2:01:00:ca:ad:91:ae:92:26:17:97:95:e7:88:
99:7c:60:c9:00:b6:50:fa:23:b4:30:8f:61:e3:e3:
04:63:4d:94:b5:d9:bd:5b:2d:e6:cb:e6:f5:b1:3a:
cd:58:06:43:99:68:03:a2:97:e7:f0:34:68:89:5b:
83:85:e9:8e:0f:77:e9:82:38:c2:3e:3c:1a:b3:28:
0a:41:3a:a9:75:2f:5a:a3:83:b3:20:6d:17:f4:7b:
6f:d1:fe:6f:43:51:d7:de:f3:73:44:33:6a:8e:3b:
1a:ed:0d:cf:ed:5d:92:2b:2e:b7:e3:d7:9d:b0:e1:
eb:aa:0c:cb:48:2b:6d:f6:3a:17:3e:d3:49:2a:34:
68:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:05:41:5F:3F:BA:F8:45:07:D3:73:03:92:45:9F:E9:22:54:59:19
X509v3 Authority Key Identifier:
keyid:DD:B7:14:71:37:3B:B0:60:3C:35:6E:ED:ED:4B:91:82:92:B5:BE:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3bcUcTc7sGA8NW7t7UuRgpK1vu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4bcb1b-ff41-48e0-8db8-6212ac49ca3b/1/yAVBXz-6-EUH03MDkkWf6SJUWRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4bcb1b-ff41-48e0-8db8-6212ac49ca3b/1/3bcUcTc7sGA8NW7t7UuRgpK1vu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.8.178.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:87:6b:89:fd:95:76:b2:89:8f:a4:f3:14:c4:af:ab:7b:4e:
ee:be:f8:bc:ac:c0:2b:5b:39:bb:11:64:10:74:d0:3f:0c:60:
a5:cb:6d:99:75:ea:73:45:8b:29:81:de:ef:b5:26:66:00:ad:
95:cc:19:e3:9a:b3:93:a7:63:ea:f0:91:e8:1f:12:56:47:63:
4c:9d:77:8f:5c:17:c4:58:f3:ca:74:47:7c:bd:e9:8f:f6:91:
dd:cb:8c:79:c5:a2:29:bc:e1:7e:e9:fa:ad:c5:f6:af:fe:39:
89:54:d1:8c:34:16:f7:70:28:03:06:c5:59:25:65:5f:9c:a9:
cc:f2:6e:3d:0c:d3:b5:c8:79:26:b1:76:0b:ec:47:9e:76:48:
c4:68:44:50:8d:80:e8:12:8b:c2:b8:28:73:0f:ac:23:dd:7f:
e7:65:34:91:99:dc:a1:c2:17:ed:a4:28:96:b6:93:79:bd:d6:
ad:4b:ce:e9:bf:7f:70:57:a7:47:d8:15:d4:0f:8b:d4:f0:1e:
38:42:bd:4c:52:48:4d:c5:e7:38:e7:2e:4e:d3:f5:fa:52:57:
d7:d4:18:9d:15:d0:ba:14:4d:c1:6c:8a:c6:71:36:f1:91:87:
b5:ed:93:55:83:ef:d2:71:aa:27:b1:21:c0:3c:b0:7e:d3:0d:
2e:b9:4e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:27:50 2025 by rpki-client