Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/6c953b-0763-4b6d-bf1a-6ce444ebeaf0/1/U9AthNittbn4Ml5FpzDRXtDklKs.roa
File: U9AthNittbn4Ml5FpzDRXtDklKs.roa (raw, json)
Hash identifier: QoIh6EnQECBemsvADiz6FQQU0Z0VWgTL7Wbdcyn0mys=
Subject key identifier: 53:D0:2D:84:D8:AD:B5:B9:F8:32:5E:45:A7:30:D1:5E:D0:E4:94:AB
Certificate issuer: /CN=05a97ff404808ad34f9aa8251767d1aec890601f
Certificate serial: 030C8894
Authority key identifier: 05:A9:7F:F4:04:80:8A:D3:4F:9A:A8:25:17:67:D1:AE:C8:90:60:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bal_9ASAitNPmqglF2fRrsiQYB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/6c953b-0763-4b6d-bf1a-6ce444ebeaf0/1/U9AthNittbn4Ml5FpzDRXtDklKs.roa
Signing time: Sat 01 Jan 2022 13:04:30 +0000
ROA not before: Sat 01 Jan 2022 13:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208416
IP address blocks: 45.138.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51153044 (0x30c8894)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a97ff404808ad34f9aa8251767d1aec890601f
Validity
Not Before: Jan 1 13:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53d02d84d8adb5b9f8325e45a730d15ed0e494ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1a:5d:f1:b9:28:4a:0b:74:3c:80:d9:34:3e:
c8:53:31:ce:03:4b:5c:f8:bd:81:a3:cc:43:65:64:
67:fe:2d:8d:36:9a:38:a6:cf:8e:af:78:18:65:9b:
d0:7d:77:67:a9:fa:cd:29:fe:a8:d1:ab:45:9b:8b:
ce:76:9a:94:8c:7b:30:4e:ff:dc:86:90:44:a4:6e:
c8:72:02:e9:e1:00:10:82:65:91:bb:71:e2:b3:bf:
cd:c2:b4:c8:9f:8d:ee:23:ea:ae:56:92:2a:a2:d1:
ed:17:ba:6a:f5:0d:66:c0:95:cc:c3:69:f1:d8:8d:
7b:55:fc:4d:6e:b7:b4:3d:c6:93:2c:07:16:7d:cf:
b9:42:33:78:a3:f9:58:63:7b:0f:ba:af:52:9c:73:
78:3e:89:b1:fa:7a:a5:cd:03:8f:15:b1:1b:44:99:
b5:f5:49:a2:6b:73:1b:09:31:4b:6b:c4:cf:48:35:
33:ca:5c:81:6e:b4:45:30:75:06:ed:59:25:cf:4a:
8c:ea:04:38:e6:24:46:f3:bd:a1:6e:15:95:1d:3b:
71:0a:b9:98:e9:89:22:2b:20:8d:79:85:64:0a:b8:
5e:3b:71:6d:66:f7:9e:56:2f:01:e7:c0:61:b3:90:
8a:9a:12:bf:b1:ad:60:cf:00:d8:e7:75:c8:41:88:
f8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D0:2D:84:D8:AD:B5:B9:F8:32:5E:45:A7:30:D1:5E:D0:E4:94:AB
X509v3 Authority Key Identifier:
keyid:05:A9:7F:F4:04:80:8A:D3:4F:9A:A8:25:17:67:D1:AE:C8:90:60:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bal_9ASAitNPmqglF2fRrsiQYB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6c953b-0763-4b6d-bf1a-6ce444ebeaf0/1/U9AthNittbn4Ml5FpzDRXtDklKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/6c953b-0763-4b6d-bf1a-6ce444ebeaf0/1/Bal_9ASAitNPmqglF2fRrsiQYB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.121.0/24
Signature Algorithm: sha256WithRSAEncryption
25:90:26:fb:fe:34:79:8d:df:7d:0c:89:9d:27:b4:36:27:20:
4c:ef:90:87:77:fd:15:63:fd:1d:14:af:4f:fc:f2:3c:d7:c3:
33:b4:fb:3e:d6:2d:e1:06:2d:8c:1e:f8:28:57:fc:09:e9:09:
31:27:12:11:88:ec:30:ab:3d:41:12:a1:59:4d:a7:3c:e5:e5:
0e:3e:22:18:7c:52:c8:d2:a5:5c:e8:e7:9b:f0:e4:93:cc:a3:
fa:9a:4e:2a:7d:a6:9b:c2:b1:7c:65:5c:07:4a:4c:0d:14:c2:
09:1a:58:ac:4d:3c:06:66:b4:d5:7e:bf:cd:91:f6:49:2e:5b:
79:d5:6a:0a:97:b6:aa:49:29:b9:f4:4f:62:31:f6:62:1b:c0:
e7:a3:13:54:f2:95:04:f8:3c:09:e7:c2:6f:80:67:e9:1d:8e:
32:94:ca:3f:f0:0a:61:17:6b:e4:06:bc:25:65:f0:d1:b1:da:
0d:84:56:39:24:92:22:5d:cc:85:db:96:0b:08:28:8e:b6:d5:
9e:fb:81:a7:f7:bb:20:e2:df:f4:39:e0:35:eb:35:48:9f:b6:
10:0e:90:da:c8:01:13:e7:1d:c5:1b:21:75:09:a1:38:a5:cd:
a5:76:44:94:f9:fb:75:ae:62:0e:0b:02:18:0e:bc:80:e2:a8:
b4:5b:c4:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:11 2025 by rpki-client