Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/Ben-bWDVLVeStDMfvOb5-VADYdY.roa
File: Ben-bWDVLVeStDMfvOb5-VADYdY.roa (raw, json)
Hash identifier: g+RfMDPGDK6pvGBtbeQ9Qk8m7aXlQaqdOfNIsn89F+w=
Subject key identifier: 05:E9:FE:6D:60:D5:2D:57:92:B4:33:1F:BC:E6:F9:F9:50:03:61:D6
Certificate issuer: /CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Certificate serial: 883D6A
Authority key identifier: 35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/Ben-bWDVLVeStDMfvOb5-VADYdY.roa
Signing time: Sun 26 Jun 2022 13:48:42 +0000
ROA not before: Sun 26 Jun 2022 13:48:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141384
IP address blocks: 45.129.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8928618 (0x883d6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f1e3b80551e98a16fc2bbcb7dd87c9a0efe25
Validity
Not Before: Jun 26 13:48:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05e9fe6d60d52d5792b4331fbce6f9f9500361d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d9:18:24:f6:6f:d5:85:c6:7b:da:f4:78:05:
8b:90:13:5c:7d:0b:3c:dc:1d:55:a2:65:fc:63:02:
1d:0c:c1:56:6b:76:16:9d:ff:6b:ba:48:18:0c:33:
4e:c1:db:04:88:f9:30:1f:5e:a8:ac:81:f8:a6:3d:
33:40:3f:3c:e3:f8:fe:c5:97:fe:d8:32:ba:08:f3:
7c:10:76:5c:62:16:0e:26:03:62:c2:5e:9a:9c:58:
78:b2:ed:dd:e1:39:c6:e6:77:bd:6f:7f:89:2e:42:
ba:2b:a4:48:9e:b8:6e:c1:7a:cf:86:a5:26:f5:1a:
d9:59:5e:ab:49:d9:f8:b7:2d:81:4d:75:b5:44:5f:
28:af:36:53:07:b2:07:38:46:f8:ae:24:5d:39:29:
73:e7:7a:e6:aa:3f:64:1d:75:ee:37:72:20:d8:19:
75:8f:cd:13:21:7a:7b:f6:6f:95:b2:df:60:43:6e:
0c:45:bb:12:82:12:4b:ec:7f:09:23:fc:71:e0:0a:
5d:c7:73:22:fa:ec:4a:4e:de:92:48:54:2b:2c:1a:
fe:6e:d1:89:5f:d9:ea:f4:ba:2b:9d:d1:99:57:c9:
be:cc:55:30:10:b8:82:86:89:2b:cb:2d:fe:42:c3:
dc:af:57:67:82:76:02:b7:33:be:71:61:0b:20:8b:
a8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:E9:FE:6D:60:D5:2D:57:92:B4:33:1F:BC:E6:F9:F9:50:03:61:D6
X509v3 Authority Key Identifier:
keyid:35:9F:1E:3B:80:55:1E:98:A1:6F:C2:BB:CB:7D:D8:7C:9A:0E:FE:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8eO4BVHpihb8K7y33YfJoO_iU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/Ben-bWDVLVeStDMfvOb5-VADYdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/89fd43-54f0-4a15-b2b1-3f3a02748c2a/1/NZ8eO4BVHpihb8K7y33YfJoO_iU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.227.0/24
Signature Algorithm: sha256WithRSAEncryption
58:a9:58:17:d2:38:c2:5c:ad:0f:b6:e0:98:ab:b5:e5:d5:81:
2a:76:6a:f1:74:e4:0a:30:d0:95:75:66:e8:23:8a:df:4a:74:
d8:19:a1:fe:61:3a:85:8b:d5:a5:71:d4:a9:62:53:37:bd:b0:
47:81:19:79:75:0a:10:dd:ab:31:8d:8a:a7:a3:6e:55:1f:c7:
fd:49:a9:b2:7d:e8:c0:f1:bb:20:9f:1a:ee:a1:be:a4:3f:3c:
14:71:31:a2:c2:43:a3:be:45:5e:c9:e9:9a:a1:01:9d:a6:b7:
e2:b9:86:5d:51:28:29:f1:ed:0e:b3:f5:52:e3:6c:c2:d6:0f:
50:94:bc:22:5e:cd:d2:76:6d:3a:18:5b:54:1b:4e:d5:c5:e1:
2d:64:81:71:46:49:6e:72:93:0b:31:93:52:b8:2d:db:44:d2:
80:4f:72:b6:30:bc:75:25:ed:15:58:1f:c3:0a:2b:c0:be:f8:
c8:02:02:4a:94:bb:f3:08:c0:d0:7b:67:e7:4c:f1:fe:94:22:
8d:29:aa:f1:58:37:52:69:f9:bd:8b:77:c8:17:c7:0d:af:93:
5a:c8:f7:7a:93:9e:fd:82:d8:ae:85:9e:73:2b:52:39:06:eb:
f0:cb:2c:72:8f:17:25:da:73:f1:b0:7e:0e:ad:4d:15:67:38:
ff:c4:13:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 06:56:58 2025 by rpki-client