Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/wBtp-1rrxyRG8L_iaMOo4zLWxS4.roa
File: wBtp-1rrxyRG8L_iaMOo4zLWxS4.roa (raw, json)
Hash identifier: gEHCEr4NOtM+JUQnU7hGCnb5+6dYDTifYkDrkaZOYnc=
Subject key identifier: C0:1B:69:FB:5A:EB:C7:24:46:F0:BF:E2:68:C3:A8:E3:32:D6:C5:2E
Certificate issuer: /CN=b39c70f7ce3831b8f2cce89db14a27ddaa0e99c2
Certificate serial: 07DE27D1
Authority key identifier: B3:9C:70:F7:CE:38:31:B8:F2:CC:E8:9D:B1:4A:27:DD:AA:0E:99:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s5xw9844MbjyzOidsUon3aoOmcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/wBtp-1rrxyRG8L_iaMOo4zLWxS4.roa
Signing time: Sat 01 Jan 2022 05:06:20 +0000
ROA not before: Sat 01 Jan 2022 05:06:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208504
IP address blocks: 45.130.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131999697 (0x7de27d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39c70f7ce3831b8f2cce89db14a27ddaa0e99c2
Validity
Not Before: Jan 1 05:06:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c01b69fb5aebc72446f0bfe268c3a8e332d6c52e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f8:29:97:77:e2:f8:c4:81:c1:e7:bd:b1:6b:
a1:23:78:b2:ac:11:c7:ce:3e:38:c3:22:42:24:84:
63:15:1d:85:26:33:6b:e7:7b:55:7a:08:e2:34:9f:
3e:03:a7:9e:f6:c2:41:1a:b7:9d:fd:98:a8:60:d1:
47:0e:54:11:88:5f:9f:12:f0:0d:10:65:21:2a:3a:
fa:e3:1d:ef:b0:32:f4:7c:6d:71:91:00:cf:c8:4d:
64:84:ec:c7:c5:8e:35:9c:fd:bc:c8:2f:32:3f:fa:
d6:ea:c1:0d:29:62:57:b6:36:53:64:07:63:1a:d5:
86:86:56:58:de:4e:5a:5d:8a:c4:4d:ce:a8:53:84:
32:44:24:48:48:f8:9b:4f:2b:d6:4f:f7:67:e2:d9:
18:d8:6d:d5:c0:e4:ec:c6:35:03:76:35:b8:ef:a5:
05:6c:43:ad:eb:5a:ac:ce:d0:58:2e:4e:6d:02:e7:
55:a0:d1:df:25:0e:49:58:c1:a7:c5:76:ce:1d:40:
91:ca:ab:89:42:3c:15:d8:bc:d4:c8:93:f6:4f:32:
e0:8d:20:3d:55:b4:35:2a:41:b8:f7:c4:0d:e1:d7:
7c:89:7d:06:6d:24:0a:75:5a:4a:77:3d:e9:95:47:
a3:70:a8:23:f7:b6:63:3b:18:39:76:9b:f8:87:00:
37:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:1B:69:FB:5A:EB:C7:24:46:F0:BF:E2:68:C3:A8:E3:32:D6:C5:2E
X509v3 Authority Key Identifier:
keyid:B3:9C:70:F7:CE:38:31:B8:F2:CC:E8:9D:B1:4A:27:DD:AA:0E:99:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5xw9844MbjyzOidsUon3aoOmcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/wBtp-1rrxyRG8L_iaMOo4zLWxS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/s5xw9844MbjyzOidsUon3aoOmcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.12.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:f5:95:5f:64:3d:a9:8f:77:3c:f9:5d:f8:3a:60:5f:5d:60:
20:06:42:cc:1b:0c:64:81:cc:a0:11:81:99:31:3e:fa:82:6c:
68:c0:1c:54:22:93:2b:4f:7a:7c:c7:b5:73:08:8a:f1:28:d2:
30:2d:0a:e3:ee:e9:3e:6f:33:1c:25:48:00:da:cd:ff:6d:25:
04:82:49:fc:8b:2e:db:7e:67:ae:45:23:65:01:58:b8:90:de:
6c:0c:31:b9:11:b9:b7:16:b3:27:c6:47:ad:6c:ff:9f:32:61:
82:4a:22:41:d5:b7:36:86:0f:96:e0:11:ff:be:f6:15:22:2b:
42:4e:d5:7f:be:12:81:30:c8:34:ca:64:a1:ca:5b:9d:af:c4:
cd:72:c5:d7:96:91:8d:fb:d5:8a:b8:ea:e9:cb:6f:c0:e1:36:
54:0b:fc:ef:74:7d:9b:40:55:66:fe:77:3a:d2:38:6c:ab:cc:
0b:cc:86:79:9f:e7:9c:63:43:33:11:c9:62:31:b0:de:b7:26:
77:d2:64:17:1b:0d:9d:8a:00:24:2f:8f:5e:28:70:ba:4c:c5:
59:eb:6e:d5:ad:57:fe:84:b9:74:33:5d:00:a7:aa:6d:78:ba:
6e:ea:93:c9:8a:69:aa:ce:96:61:c0:35:99:6b:92:a9:80:c3:
da:d5:25:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:23 2025 by rpki-client