Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/wZ4hY6SYHdgkxsXLH3L2SMmx4_E.roa
File: wZ4hY6SYHdgkxsXLH3L2SMmx4_E.roa (raw, json)
Hash identifier: FTY/ISuZBXoDFDXOkQ/MLM7R8/qTF9WoicWMTcX7HRU=
Subject key identifier: C1:9E:21:63:A4:98:1D:D8:24:C6:C5:CB:1F:72:F6:48:C9:B1:E3:F1
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 089CB95C
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/wZ4hY6SYHdgkxsXLH3L2SMmx4_E.roa
Signing time: Mon 23 May 2022 19:26:30 +0000
ROA not before: Mon 23 May 2022 19:26:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211114
IP address blocks: 45.131.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144488796 (0x89cb95c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: May 23 19:26:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c19e2163a4981dd824c6c5cb1f72f648c9b1e3f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:aa:05:51:b4:a1:dc:5b:5e:75:2e:45:be:c9:
9f:f6:4d:8f:a5:b3:3a:1b:95:39:7a:4f:13:db:3e:
88:5d:f8:bf:24:f8:2c:99:aa:96:f9:10:34:7b:0f:
84:5b:c5:06:85:15:6c:74:df:88:ea:7b:08:6b:91:
d4:20:b6:7c:de:07:05:5a:3f:9f:1b:65:bf:f9:f1:
48:d8:ef:67:79:b5:d5:ec:15:3b:0f:3b:49:e8:da:
88:34:01:62:32:0c:c7:09:f8:ed:4d:7d:02:f0:a0:
7f:47:a5:d8:fa:56:cf:4d:5b:27:63:bd:fd:34:de:
d9:80:28:55:8e:39:9a:17:74:cf:91:33:40:0e:1b:
31:24:cb:35:bd:93:c9:ab:96:9f:61:30:0f:bb:85:
92:79:64:42:c3:30:d6:01:4c:ef:df:53:01:2e:2d:
4e:81:d0:e0:20:df:89:f1:a2:35:cc:c8:e0:5f:0c:
ba:de:99:8e:64:32:37:fd:a3:dd:a8:c3:f8:4e:b6:
a7:9b:0e:bc:78:10:8a:9c:b5:20:ef:21:1b:91:f5:
74:b5:22:fd:6a:4b:cb:60:c2:47:42:7f:1b:d6:8f:
a1:b4:ca:ce:c4:20:d6:3e:6c:a1:6d:d5:a7:8e:7e:
97:e5:fe:11:d3:8a:24:c5:04:8d:21:2d:09:f0:47:
24:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:9E:21:63:A4:98:1D:D8:24:C6:C5:CB:1F:72:F6:48:C9:B1:E3:F1
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/wZ4hY6SYHdgkxsXLH3L2SMmx4_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.2.0/24
Signature Algorithm: sha256WithRSAEncryption
22:96:85:cc:2d:5c:23:61:00:0f:6a:a4:8d:2b:73:14:f1:42:
ba:1e:a1:5b:93:1f:4a:8b:41:22:2d:a5:d2:a5:0e:a4:c2:c9:
f0:d4:b5:00:59:9d:e0:01:bb:5a:89:57:66:65:6b:e9:3e:86:
49:0e:5f:a3:1b:80:db:05:97:2a:b6:86:67:03:b9:ec:2c:d3:
b6:dd:38:f4:e3:0b:50:53:99:9f:8b:64:f9:5b:3d:a0:f2:10:
3c:d2:1f:a9:37:d3:74:b2:64:c4:c4:2f:c8:34:44:c7:7b:cb:
a4:47:50:85:8c:64:ff:ee:06:c7:67:cf:9d:5c:36:5e:16:93:
0b:94:1f:1a:7d:67:f3:73:fd:10:88:cf:72:0f:79:7a:8d:c5:
28:ee:04:6c:3e:8a:cd:f2:ec:6c:b3:ec:a6:8e:29:ec:d6:a5:
6e:70:16:e8:0e:c6:5f:b3:27:6f:51:14:7a:da:97:d2:20:a5:
b9:44:5d:0c:82:41:8e:39:8d:5b:d6:43:d6:29:11:d6:37:99:
eb:97:fa:4f:56:b4:02:af:7f:ed:b8:c2:ee:ae:e4:b2:95:58:
25:0a:0c:ad:b9:76:fc:e4:f0:a4:5d:86:a5:ff:83:9c:06:69:
58:b9:2f:00:8e:72:5d:35:4a:d3:61:ba:11:57:94:77:db:bd:
e7:21:a3:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:04 2025 by rpki-client