Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/tcL7STHBckQvzrIENYipo5doRAE.roa
File: tcL7STHBckQvzrIENYipo5doRAE.roa (raw, json)
Hash identifier: 14uUbj0jzGdFs7BPEr8T4p02d46waDqAK73JRcruDAg=
Subject key identifier: B5:C2:FB:49:31:C1:72:44:2F:CE:B2:04:35:88:A9:A3:97:68:44:01
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 08342930
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/tcL7STHBckQvzrIENYipo5doRAE.roa
Signing time: Mon 11 Apr 2022 21:25:39 +0000
ROA not before: Mon 11 Apr 2022 21:25:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208475
IP address blocks: 45.147.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137636144 (0x8342930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Apr 11 21:25:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5c2fb4931c172442fceb2043588a9a397684401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:06:c1:ae:7b:b9:ca:ce:3f:61:8d:8f:6d:39:
ea:97:0c:50:2c:a3:98:29:a4:56:44:53:cf:7d:94:
6e:8c:bf:98:89:b6:be:64:79:55:75:45:a6:4a:bf:
13:2b:7a:3d:01:4e:95:8e:73:3a:0c:65:43:02:7c:
a9:b7:7d:8c:af:14:75:0e:5d:c0:22:5d:97:cd:a4:
15:98:87:0f:00:d9:53:35:42:e7:5f:c6:42:e6:ab:
0d:7b:17:3d:fa:c4:fd:70:e7:db:5c:b3:cb:cd:53:
88:3a:dd:8a:bf:f8:71:f0:85:9c:15:85:6d:ee:0c:
ab:22:4d:17:36:91:f9:d3:26:72:1f:98:4a:dd:b4:
7f:81:ab:ca:2a:93:d0:4b:df:bb:ca:68:43:de:7a:
55:20:e1:b6:af:6d:52:75:34:fe:4c:d8:79:8a:68:
48:ad:ff:3b:98:c3:91:23:2b:73:b3:d8:ab:0e:77:
66:c8:73:1c:89:b8:a8:18:c4:eb:48:25:32:e5:72:
25:bb:dc:15:da:f5:c2:f9:43:4b:ff:25:e9:54:d3:
20:5c:ee:fb:f1:d8:a0:e0:4b:59:ac:f5:2c:1f:34:
91:1e:78:48:9d:ca:d9:da:7f:31:5f:60:b8:f6:8c:
5a:f5:1b:12:a0:2e:df:45:db:1c:54:cb:d1:7c:82:
c0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C2:FB:49:31:C1:72:44:2F:CE:B2:04:35:88:A9:A3:97:68:44:01
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/tcL7STHBckQvzrIENYipo5doRAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.47.0/24
Signature Algorithm: sha256WithRSAEncryption
66:02:82:da:00:eb:af:f9:40:9b:bb:65:e3:f3:11:bf:38:c6:
65:1f:be:2f:a9:d4:da:fb:19:5b:0a:cb:c2:d2:74:a3:f0:39:
9f:1c:5d:c0:d7:86:6a:0c:26:17:b8:f0:13:d0:c5:91:06:d3:
48:cb:85:84:c9:b3:a9:97:20:1e:f1:d1:6b:d5:d6:1f:4a:07:
34:3a:c4:90:b7:58:a3:cf:82:a3:ab:c3:d8:69:f5:07:07:80:
64:4d:e5:b1:98:33:a6:c3:59:2f:1f:05:2f:73:65:e5:56:ca:
9c:b0:e5:6c:b9:30:1d:65:d7:05:42:dd:ee:65:e0:70:5d:64:
2e:eb:13:ad:e8:44:09:2c:ef:17:62:b8:57:75:3f:52:06:88:
79:2c:70:56:5a:20:0b:57:92:85:28:a2:79:af:50:71:40:85:
a4:03:85:05:e4:0c:43:85:07:4f:cc:64:62:0b:e5:b4:fa:ee:
1f:4d:ca:64:bd:72:ad:d8:c6:1d:90:5b:ab:5b:84:c7:92:a6:
65:32:e6:65:64:b8:c2:cf:05:e5:0a:c3:8e:da:17:32:83:47:
19:fa:f4:ca:9a:af:67:f1:2a:76:19:cd:2f:e1:81:29:13:82:
4f:ad:6c:5a:69:a7:b7:42:68:2a:d1:07:a0:73:4f:51:ec:23:
04:66:61:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:20 2025 by rpki-client